Mock Version: 1.3.4
Mock Version: 1.3.4
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target aarch64 --nodeps /builddir/build/SPECS/nss.spec'], printOutput=FalsechrootPath='/var/lib/mock/module-7e01f122edf0cdba-build-8455091-747358/root'logger=<mockbuild.trace_decorator.getLog object at 0xffff849515c0>nspawn_args=[]user='mockbuild'gid=425shell=Falsetimeout=172800uid=1000env={'HOME': '/builddir', 'TERM': 'vt100', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash', 'LANG': 'en_US.UTF-8', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin'})
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --target aarch64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'HOME': '/builddir', 'TERM': 'vt100', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash', 'LANG': 'en_US.UTF-8', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin'} and shell False
Building target platforms: aarch64
Building for target aarch64
Wrote: /builddir/build/SRPMS/nss-3.29.1-2.1.module_7e01f122.src.rpm
Child return code was: 0
ENTER ['do'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --target aarch64 --nodeps /builddir/build/SPECS/nss.spec'], printOutput=FalsechrootPath='/var/lib/mock/module-7e01f122edf0cdba-build-8455091-747358/root'logger=<mockbuild.trace_decorator.getLog object at 0xffff849515c0>nspawn_args=[]user='mockbuild'gid=425shell=Falsetimeout=172800uid=1000env={'HOME': '/builddir', 'TERM': 'vt100', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash', 'LANG': 'en_US.UTF-8', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin'})
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --target aarch64 --nodeps /builddir/build/SPECS/nss.spec'] with env {'HOME': '/builddir', 'TERM': 'vt100', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'SHELL': '/bin/bash', 'LANG': 'en_US.UTF-8', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin'} and shell False
Building target platforms: aarch64
Building for target aarch64
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.r4GTPj
+ umask 022
+ cd /builddir/build/BUILD
+ cd /builddir/build/BUILD
+ rm -rf nss-3.29.1
+ /usr/bin/gzip -dc /builddir/build/SOURCES/nss-3.29.1.tar.gz
+ /usr/bin/tar -xof -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd nss-3.29.1
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
Patch #2 (add-relro-linker-option.patch):
+ echo 'Patch #2 (add-relro-linker-option.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .relro --fuzz=0
patching file nss/coreconf/Linux.mk
Hunk #1 succeeded at 179 (offset 5 lines).
Patch #3 (renegotiate-transitional.patch):
+ echo 'Patch #3 (renegotiate-transitional.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .transitional --fuzz=0
patching file ./nss/lib/ssl/sslsock.c
Hunk #1 succeeded at 65 (offset -7 lines).
Patch #16 (nss-539183.patch):
+ echo 'Patch #16 (nss-539183.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .539183 --fuzz=0
patching file ./nss/cmd/httpserv/httpserv.c
Hunk #1 succeeded at 969 (offset 16 lines).
patching file ./nss/cmd/selfserv/selfserv.c
Hunk #1 succeeded at 1678 (offset -33 lines).
Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):
+ echo 'Patch #40 (nss-3.14.0.0-disble-ocsp-test.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .noocsptest --fuzz=0
patching file nss/tests/chains/scenarios/scenarios
Hunk #1 succeeded at 18 (offset -32 lines).
Patch #47 (utilwrap-include-templates.patch):
+ echo 'Patch #47 (utilwrap-include-templates.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .templates --fuzz=0
patching file nss/lib/nss/config.mk
Patch #49 (nss-skip-bltest-and-fipstest.patch):
+ echo 'Patch #49 (nss-skip-bltest-and-fipstest.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .skipthem --fuzz=0
patching file ./nss/cmd/Makefile
Patch #50 (iquote.patch):
+ echo 'Patch #50 (iquote.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .iquote --fuzz=0
patching file ./nss/cmd/certcgi/Makefile
patching file ./nss/cmd/certutil/Makefile
patching file ./nss/cmd/lib/Makefile
patching file ./nss/cmd/modutil/Makefile
patching file ./nss/cmd/selfserv/Makefile
patching file ./nss/cmd/ssltap/Makefile
patching file ./nss/cmd/strsclnt/Makefile
patching file ./nss/cmd/tstclnt/Makefile
patching file ./nss/cmd/vfyserv/Makefile
patching file ./nss/coreconf/location.mk
patching file ./nss/gtests/pk11_gtest/Makefile
patching file ./nss/gtests/ssl_gtest/Makefile
Hunk #1 succeeded at 50 (offset 7 lines).
patching file ./nss/lib/certhigh/Makefile
patching file ./nss/lib/cryptohi/Makefile
patching file ./nss/lib/nss/Makefile
patching file ./nss/lib/pk11wrap/Makefile
patching file ./nss/lib/ssl/Makefile
Hunk #1 succeeded at 56 (offset 7 lines).
Patch #58 (rhbz1185708-enable-ecc-3des-ciphers-by-default.patch):
+ echo 'Patch #58 (rhbz1185708-enable-ecc-3des-ciphers-by-default.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .1185708_3des --fuzz=0
patching file ./nss/lib/ssl/ssl3con.c
Hunk #1 succeeded at 108 (offset -10 lines).
+ pushd nss
~/build/BUILD/nss-3.29.1/nss ~/build/BUILD/nss-3.29.1
Patch #59 (nss-check-policy-file.patch):
+ echo 'Patch #59 (nss-check-policy-file.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .check_policy_file --fuzz=0
patching file lib/pk11wrap/pk11pars.c
Patch #62 (nss-skip-util-gtest.patch):
+ echo 'Patch #62 (nss-skip-util-gtest.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p0 -b --suffix .skip_util_gtest --fuzz=0
patching file ./gtests/manifest.mn
Patch #63 (nss-gcc7.patch):
+ echo 'Patch #63 (nss-gcc7.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .gcc7 --fuzz=0
patching file lib/libpkix/pkix_pl_nss/pki/pkix_pl_ocsprequest.c
Patch #64 (nss-1334976-1336487.patch):
+ echo 'Patch #64 (nss-1334976-1336487.patch):'
+ /usr/bin/patch --no-backup-if-mismatch -p1 -b --suffix .1334976-1336487 --fuzz=0
patching file cmd/addbuiltin/addbuiltin.c
patching file cmd/lib/secutil.c
patching file lib/ckfw/builtins/certdata.txt
patching file lib/nss/nss.def
+ popd
~/build/BUILD/nss-3.29.1
+ /usr/bin/cp ./nss/lib/softoken/lowkeyi.h ./nss/cmd/rsaperf
+ /usr/bin/cp ./nss/lib/softoken/lowkeyti.h ./nss/cmd/rsaperf
+ /usr/bin/mv ./nss/lib/util/verref.h ./nss/verref.h
+ /usr/bin/rm -rf ./nss/lib/freebl
+ /usr/bin/rm -rf ./nss/lib/softoken
+ /usr/bin/rm -rf ./nss/lib/util
+ /usr/bin/rm -rf ./nss/cmd/bltest
+ /usr/bin/rm -rf ./nss/cmd/fipstest
+ /usr/bin/rm -rf ./nss/cmd/rsaperf_low
+ /usr/bin/rm -rf ./nss/external_tests/util_gtests
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.Kd3vCg
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ NSS_NO_PKCS11_BYPASS=1
+ export NSS_NO_PKCS11_BYPASS
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ XCFLAGS='-O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1'
+ export XCFLAGS
+ PKG_CONFIG_ALLOW_SYSTEM_LIBS=1
+ PKG_CONFIG_ALLOW_SYSTEM_CFLAGS=1
+ export PKG_CONFIG_ALLOW_SYSTEM_LIBS
+ export PKG_CONFIG_ALLOW_SYSTEM_CFLAGS
++ sed s/-I//
++ /usr/bin/pkg-config --cflags-only-I nspr
+ NSPR_INCLUDE_DIR='/usr/include/nspr4 '
+ NSPR_LIB_DIR=/usr/lib64
+ export NSPR_INCLUDE_DIR
+ export NSPR_LIB_DIR
++ /usr/bin/pkg-config --cflags-only-I nss-util
++ sed s/-I//
+ export 'NSSUTIL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4 '
+ NSSUTIL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4 '
+ export NSSUTIL_LIB_DIR=/usr/lib64
+ NSSUTIL_LIB_DIR=/usr/lib64
++ /usr/bin/pkg-config --cflags-only-I nss-softokn
++ sed s/-I//
+ export 'FREEBL_INCLUDE_DIR=/usr/include/nss3 -I/usr/include/nspr4 '
+ FREEBL_INCLUDE_DIR='/usr/include/nss3 -I/usr/include/nspr4 '
+ export FREEBL_LIB_DIR=/usr/lib64
+ FREEBL_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_FREEBL=1
+ USE_SYSTEM_FREEBL=1
+ export NSS_USE_SYSTEM_FREEBL=1
+ NSS_USE_SYSTEM_FREEBL=1
++ /usr/bin/pkg-config --libs nss-softokn
+ export 'FREEBL_LIBS=-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl '
+ FREEBL_LIBS='-L/usr/lib64 -lfreebl3 -lnssdbm3 -lsoftokn3 -lnssutil3 -lplds4 -lplc4 -lnspr4 -lpthread -ldl '
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
+ export USE_SYSTEM_NSSUTIL=1
+ USE_SYSTEM_NSSUTIL=1
+ export USE_SYSTEM_SOFTOKEN=1
+ USE_SYSTEM_SOFTOKEN=1
+ export NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_BUILD_WITHOUT_SOFTOKEN=1
+ NSS_USE_SYSTEM_SQLITE=1
+ export NSS_USE_SYSTEM_SQLITE
+ USE_64=1
+ export USE_64
+ export IN_TREE_FREEBL_HEADERS_FIRST=1
+ IN_TREE_FREEBL_HEADERS_FIRST=1
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export NSS_DISABLE_TLS_1_3=1
+ NSS_DISABLE_TLS_1_3=1
+ /usr/bin/make -C ./nss/coreconf
make: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[1]: Nothing to be done for 'export'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nsinstall.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pathsub.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pathsub.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/coreconf -I../../../dist/private/coreconf -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pathsub.o  -Wl,-z,relro   -lpthread  -ldl -lc
true -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
+ /usr/bin/make -C ./nss/lib/dbm
make: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd include; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
Creating ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
Creating ../../../../dist/private/dbm
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[1]: Nothing to be done for 'export'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
cd include; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
make[1]: Nothing to be done for 'libs'.
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/db.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 db.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 h_bigkey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_func.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 h_func.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_log2.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 h_log2.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_page.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 h_page.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 hash.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 hash_buf.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mktemp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 mktemp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dirent.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DSTDC_HEADERS -DHAVE_STRERROR -DHAVE_SNPRINTF -DMEMMOVE -D__DBINTERFACE_PRIVATE -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/dbm -I../../../../dist/private/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dirent.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/db.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_bigkey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_func.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_log2.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/h_page.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash_buf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mktemp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dirent.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
+ export POLICY_FILE=nss.config
+ POLICY_FILE=nss.config
+ export POLICY_PATH=/etc/crypto-policies/back-ends
+ POLICY_PATH=/etc/crypto-policies/back-ends
+ /usr/bin/mkdir -p ./dist/private/nss
+ /usr/bin/mv ./nss/verref.h ./dist/private/nss/verref.h
+ /usr/bin/make -C ./nss
make: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss'
cd coreconf; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd nsinstall; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
true -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd lib; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd dbm; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd include; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 mcom_db.h ncompat.h winfile.h ../../../../dist/public/dbm
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 hsearch.h page.h extern.h queue.h hash.h search.h ../../../../dist/private/dbm
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[3]: Nothing to be done for 'export'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd base; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
Creating ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssbaset.h nssbase.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 baset.h base.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
cd dev; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ckhelper.h devm.h devtm.h devt.h dev.h nssdevt.h nssdev.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
cd pki; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pki.h pkit.h nsspkit.h nsspki.h pkistore.h pki3hack.h pkitm.h pkim.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
cd libpkix; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd include; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
cd pkix; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
cd pki; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd include; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix.h pkix_crlsel.h pkix_errorstrings.h pkix_results.h pkixt.h pkix_certsel.h pkix_params.h pkix_revchecker.h pkix_certstore.h pkix_pl_pki.h pkix_sample_modules.h pkix_checker.h pkix_pl_system.h pkix_util.h ../../../../dist/private/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
cd pkix; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_certselector.h pkix_comcertselparams.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_comcrlselparams.h pkix_crlselector.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_basicconstraintschecker.h pkix_certchainchecker.h pkix_crlchecker.h pkix_ekuchecker.h pkix_expirationchecker.h pkix_namechainingchecker.h pkix_nameconstraintschecker.h pkix_ocspchecker.h pkix_policychecker.h pkix_revocationmethod.h pkix_revocationchecker.h pkix_signaturechecker.h pkix_targetcertchecker.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_procparams.h pkix_trustanchor.h pkix_valparams.h pkix_resourcelimits.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_buildresult.h pkix_policynode.h pkix_valresult.h pkix_verifynode.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_store.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_build.h pkix_lifecycle.h pkix_validate.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_tools.h pkix_error.h pkix_logger.h pkix_list.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_basicconstraints.h pkix_pl_cert.h pkix_pl_certpolicyinfo.h pkix_pl_certpolicymap.h pkix_pl_certpolicyqualifier.h pkix_pl_crl.h pkix_pl_crldp.h pkix_pl_crlentry.h pkix_pl_date.h pkix_pl_generalname.h pkix_pl_infoaccess.h pkix_pl_nameconstraints.h pkix_pl_ocsprequest.h pkix_pl_ocspresponse.h pkix_pl_publickey.h pkix_pl_x500name.h pkix_pl_ocspcertid.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_common.h pkix_pl_mem.h pkix_pl_object.h pkix_pl_string.h pkix_pl_primhash.h pkix_pl_bigint.h pkix_pl_mutex.h pkix_pl_bytearray.h pkix_pl_lifecycle.h pkix_pl_oid.h pkix_pl_hashtable.h pkix_pl_rwlock.h pkix_pl_monitorlock.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make private_export
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkix_pl_aiamgr.h pkix_pl_colcertstore.h pkix_pl_httpcertstore.h pkix_pl_httpdefaultclient.h pkix_pl_ldapt.h pkix_pl_ldapcertstore.h pkix_pl_ldapresponse.h pkix_pl_ldaprequest.h pkix_pl_ldapdefaultclient.h pkix_pl_nsscontext.h pkix_pl_pk11certstore.h pkix_pl_socket.h ../../../../../dist/private/nss
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
There are no private exports.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd certdb; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cert.h certt.h certdb.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 genname.h xconst.h certxutl.h certi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
cd certhigh; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocsp.h ocspt.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ocspti.h ocspi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmod.h secmodt.h secpkcs5.h pk11func.h pk11pub.h pk11priv.h pk11sdr.h pk11pqg.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmodi.h dev3hack.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cryptohi.h cryptoht.h key.h keyhi.h keyt.h keythi.h sechash.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 keyi.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
cd nss; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nss.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssrenam.h nssoptions.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
cd ssl; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ssl.h sslt.h sslerr.h sslproto.h preenc.h ../../../dist/public/nss
There are no private exports.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
cd pkcs7; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 secmime.h secpkcs7.h pkcs7t.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 pkcs12t.h pkcs12.h p12plcy.h p12.h p12t.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
cd smime; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 cms.h cmst.h smime.h cmsreclist.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
cd crmf; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmf.h crmft.h cmmf.h cmmft.h ../../../dist/public/nss
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 crmfi.h crmfit.h cmmfi.h cmmfit.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
cd jar; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 jar.h jar-ds.h jarfile.h ../../../dist/public/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
cd ckfw; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cd builtins; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssckbi.h ../../../../dist/public/nss
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 nssck.api nssckepv.h nssckft.h nssckfw.h nssckfwc.h nssckfwt.h nssckg.h nssckmdt.h nssckt.h ../../../dist/public/nss
cd builtins; /usr/bin/make private_export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
There are no private exports.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 ck.h ckfw.h ckfwm.h ckfwtm.h ckmd.h ckt.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cd sysinit; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd cmd; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd lib; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 444 basicutil.h secutil.h pk11table.h ../../../dist/private/nss
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
cd shlibsign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cd mangle; /usr/bin/make export
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
make[3]: Nothing to be done for 'export'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
cd atob; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
cd btoa; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
cd certcgi; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
cd certutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
cd chktest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
cd crlutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
cd crmftest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
cd dbtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
cd derdump; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
cd digest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
cd httpserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
cd listsuites; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
cd makepqg; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
cd multinit; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
cd p7content; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
cd p7env; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
cd p7sign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
cd p7verify; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
cd pk12util; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
cd pp; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
cd signtool; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
cd signver; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
cd smimetools; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
cd ssltap; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
cd tests; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
cd tstclnt; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
cd modutil; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd gtests; /usr/bin/make export
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
cd google_test; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
cd common; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
cd der_gtest; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
cd nss_bogo_shim; /usr/bin/make export
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
make[2]: Nothing to be done for 'export'.
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
cd coreconf; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd nsinstall; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
true -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf/nsinstall'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/coreconf'
cd lib; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd dbm; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd include; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
make[3]: Nothing to be done for 'libs'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/include'
cd src; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libdbm.a ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm/src'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dbm'
cd base; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/arena.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 arena.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/error.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 error.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/errorval.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 errorval.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hashops.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 hashops.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libc.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 libc.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tracker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tracker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/item.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 item.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utf8.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 utf8.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 list.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 hash.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/arena.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/error.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/errorval.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hashops.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libc.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tracker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/item.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utf8.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/list.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/base'
cd dev; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devslot.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 devslot.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 devtoken.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 devutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ckhelper.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devslot.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/dev'
cd pki; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 asymmkey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certificate.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certificate.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cryptocontext.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 symmkey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 trustdomain.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tdcache.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certdecode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkistore.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkibase.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pki3hack.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certificate.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pki'
cd libpkix; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd include; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
make[3]: Nothing to be done for 'libs'.
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/include'
cd pkix; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd certsel; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_certselector.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_comcertselparams.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcertsel.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/certsel'
cd crlsel; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_crlselector.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_comcrlselparams.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixcrlsel.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/crlsel'
cd checker; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_basicconstraintschecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_certchainchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_crlchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_ekuchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_expirationchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_namechainingchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_nameconstraintschecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_ocspchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_revocationmethod.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_revocationchecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_policychecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_signaturechecker.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_targetcertchecker.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixchecker.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/checker'
cd params; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_trustanchor.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_procparams.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_valparams.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_resourcelimits.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixparams.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/params'
cd results; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_buildresult.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_policynode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_valresult.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_verifynode.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixresults.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/results'
cd store; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_store.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixstore.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/store'
cd top; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_validate.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_lifecycle.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_build.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixtop.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/top'
cd util; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_tools.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_error.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_logger.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_list.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_errpaths.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixutil.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix/util'
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix'
cd pkix_pl_nss; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
cd pki; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_basicconstraints.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_cert.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_certpolicyinfo.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_certpolicymap.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_certpolicyqualifier.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_crl.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_crldp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_crlentry.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_date.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_generalname.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_infoaccess.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_nameconstraints.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ocsprequest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ocspresponse.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_publickey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_x500name.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ocspcertid.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixpki.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/pki'
cd system; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_bigint.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_bytearray.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_common.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_error.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_hashtable.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_lifecycle.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_mem.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_monitorlock.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_mutex.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_object.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_oid.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_primhash.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_rwlock.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_string.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixsystem.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/system'
cd module; /usr/bin/make libs
make[4]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_aiamgr.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_colcertstore.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_httpcertstore.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_httpdefaultclient.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ldaptemplates.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ldapcertstore.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ldapresponse.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ldaprequest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_ldapdefaultclient.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_nsscontext.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_pk11certstore.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../../dist/public/nss -I../../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix_pl_socket.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a
../../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkixmodule.a ../../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[4]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss/module'
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix/pkix_pl_nss'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/libpkix'
cd certdb; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 alg1485.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdb.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certdb.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certv3.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certv3.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certxutl.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crl.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crl.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/genname.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 genname.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 stanpcertdb.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 polcyxtn.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secname.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secname.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 xauthkid.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 xbsconst.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xconst.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 xconst.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdb.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certv3.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crl.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/genname.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secname.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xconst.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certdb'
cd certhigh; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certhtml.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certreq.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certreq.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crlv2.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ocsp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ocspsig.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certhigh.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certvfy.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certvfypkix.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 xcrldist.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certreq.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/certhigh'
cd pk11wrap; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dev3hack.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11akey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11auth.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11cert.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11cxt.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11err.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11kea.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11list.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11load.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11mech.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11merge.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11nobj.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11obj.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11pars.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11pbe.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11pk12.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11pqg.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11sdr.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11skey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11slot.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -DSHLIB_VERSION=\"3\" -DSOFTOKEN_SHLIB_VERSION=\"3\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11util.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pk11wrap'
cd cryptohi; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sechash.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sechash.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/seckey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 seckey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secsign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secsign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secvfy.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nssutil -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dsautil.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sechash.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/seckey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secsign.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/cryptohi'
cd nss; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nssinit.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nssoptions.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssver.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nssver.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DPOLICY_FILE=\"nss.config\" -DPOLICY_PATH=\"/etc/crypto-policies/back-ends\" -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I/usr/include/nss3/templates -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 utilwrap.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss.a
grep -v ';-' nss.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss.def
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnss3.so  -Wl,--version-script,Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss.def -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssinit.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssoptions.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utilwrap.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhtml.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certreq.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlv2.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocsp.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspsig.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certhigh.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfy.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certvfypkix.o ../certhigh/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xcrldist.o ../cryptohi/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sechash.o ../cryptohi/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/seckey.o ../cryptohi/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secsign.o ../cryptohi/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secvfy.o ../cryptohi/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dsautil.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dev3hack.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11akey.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11auth.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cert.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11cxt.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11err.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11kea.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11list.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11load.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mech.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11merge.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11nobj.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11obj.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pars.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pbe.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pk12.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11pqg.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11sdr.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11skey.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11slot.o ../pk11wrap/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11util.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/alg1485.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdb.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certv3.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certxutl.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crl.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/genname.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/stanpcertdb.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/polcyxtn.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secname.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xauthkid.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xbsconst.o ../certdb/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/xconst.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/asymmkey.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certificate.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cryptocontext.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symmkey.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/trustdomain.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tdcache.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdecode.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkistore.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkibase.o ../pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pki3hack.o ../dev/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devslot.o ../dev/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devtoken.o ../dev/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/devutil.o ../dev/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ckhelper.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/arena.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/error.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/errorval.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hashops.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libc.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tracker.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/item.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/utf8.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/list.o ../base/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o ../libpkix/pkix/certsel/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certselector.o ../libpkix/pkix/certsel/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcertselparams.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_basicconstraintschecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_certchainchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ekuchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_expirationchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_namechainingchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_nameconstraintschecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_ocspchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationmethod.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_revocationchecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policychecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_signaturechecker.o ../libpkix/pkix/checker/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_targetcertchecker.o ../libpkix/pkix/params/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_trustanchor.o ../libpkix/pkix/params/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_procparams.o ../libpkix/pkix/params/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valparams.o ../libpkix/pkix/params/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_resourcelimits.o ../libpkix/pkix/results/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_buildresult.o ../libpkix/pkix/results/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_policynode.o ../libpkix/pkix/results/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_valresult.o ../libpkix/pkix/results/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_verifynode.o ../libpkix/pkix/top/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_validate.o ../libpkix/pkix/top/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_lifecycle.o ../libpkix/pkix/top/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_build.o ../libpkix/pkix/util/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_tools.o ../libpkix/pkix/util/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_error.o ../libpkix/pkix/util/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_logger.o ../libpkix/pkix/util/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_list.o ../libpkix/pkix/util/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_errpaths.o ../libpkix/pkix/crlsel/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_crlselector.o ../libpkix/pkix/crlsel/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_comcrlselparams.o ../libpkix/pkix/store/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_store.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_basicconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_cert.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyinfo.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicymap.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_certpolicyqualifier.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crl.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crldp.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_crlentry.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_date.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_generalname.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_infoaccess.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nameconstraints.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocsprequest.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspresponse.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_publickey.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_x500name.o ../libpkix/pkix_pl_nss/pki/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ocspcertid.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bigint.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_bytearray.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_common.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_error.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_hashtable.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_lifecycle.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mem.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_monitorlock.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_mutex.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_object.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_oid.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_primhash.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_rwlock.o ../libpkix/pkix_pl_nss/system/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_string.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_aiamgr.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_colcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_httpdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaptemplates.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapcertstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapresponse.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldaprequest.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_ldapdefaultclient.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_nsscontext.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_pk11certstore.o ../libpkix/pkix_pl_nss/module/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix_pl_socket.o   -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnss3.so ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/nss'
cd ssl; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dtlscon.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/prelib.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 prelib.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssl3con.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssl3gthr.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslauth.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslcon.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssldef.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslenum.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslerr.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslerrstrs.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslinit.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssl3ext.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssl3exthandle.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslmutex.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslnonce.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslreveal.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslsecur.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslsnce.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslsock.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssltrace.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslver.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslver.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/authcert.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 authcert.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmpcert.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslinfo.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssl3ecc.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tls13con.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tls13exthandle.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tls13hkdf.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslcert.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sslgrp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_SSL_ENABLE_ZLIB -DNSS_DISABLE_TLS_1_3 -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 unix_err.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl.a
grep -v ';-' ssl.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl.def
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libssl3.so  -Wl,--version-script,Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl.def -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dtlscon.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/prelib.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3con.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3gthr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslauth.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcon.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssldef.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslenum.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslerrstrs.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinit.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ext.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3exthandle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslmutex.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslnonce.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslreveal.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsecur.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsnce.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslsock.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltrace.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/authcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmpcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssl3ecc.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13con.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13exthandle.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tls13hkdf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslcert.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sslgrp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/unix_err.o    -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libssl3.so ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ssl'
cd pkcs7; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certread.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certread.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7common.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7common.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7create.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7create.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7decode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7encode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7local.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7local.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmime.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secmime.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certread.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7common.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7create.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7local.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmime.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs7'
cd pkcs12; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12local.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12local.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12creat.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12dec.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12plcy.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12tmpl.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12e.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12e.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12d.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p12d.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12local.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12e.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12d.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/pkcs12'
cd smime; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsarray.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsasn1.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsattr.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmscinfo.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmscipher.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsdecode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsdigdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsdigest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsencdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsencode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsenvdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsmessage.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmspubkey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsrecinfo.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsreclist.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmssigdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmssiginfo.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsudf.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 smimemessage.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 smimeutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimever.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 smimever.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimever.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a
grep -v ';-' smime.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smime.def
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libsmime3.so  -Wl,--version-script,Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smime.def -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsarray.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsasn1.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsattr.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmscipher.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdecode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsdigest.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsencode.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsenvdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsmessage.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmspubkey.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsrecinfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsreclist.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssigdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmssiginfo.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsudf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimemessage.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimeutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/smimever.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12local.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12creat.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12dec.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12plcy.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12tmpl.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12e.o ../pkcs12/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p12d.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certread.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7common.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7create.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7decode.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7encode.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7local.o ../pkcs7/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmime.o   -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsmime3.so ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/smime'
cd crmf; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfenc.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmftmpl.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfreq.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfpop.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfdec.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfget.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfget.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crmfcont.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmmfasn1.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmmfresp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmmfrec.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmmfchal.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/servget.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 servget.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 encutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/respcli.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 respcli.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/respcmn.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 respcmn.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/challcli.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 challcli.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 asn1cmn.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfenc.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmftmpl.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfreq.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfpop.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfdec.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfget.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmfcont.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfasn1.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfresp.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfrec.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmmfchal.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/servget.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/respcli.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/respcmn.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/challcli.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/asn1cmn.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libcrmf.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/crmf'
cd jar; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarver.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jarver.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarsign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jarsign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jar.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jar.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jar-ds.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarfile.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jarfile.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarint.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DMOZILLA_CLIENT=1 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 jarint.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libjar.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarsign.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jar.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jar-ds.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarfile.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/jarint.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libjar.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libjar.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/jar'
cd ckfw; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crypto.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crypto.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/find.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 find.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 hash.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/instance.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 instance.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mutex.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 mutex.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/object.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 object.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/session.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 session.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sessobj.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sessobj.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/slot.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 slot.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/token.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 token.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/wrap.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 wrap.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mechanism.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 mechanism.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crypto.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/find.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/hash.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/instance.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mutex.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/object.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/session.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sessobj.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/slot.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/token.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/wrap.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mechanism.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckfw.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
cd builtins; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/anchor.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 anchor.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/constants.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 constants.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bfind.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 bfind.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/binst.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 binst.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bobject.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 bobject.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bsession.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 bsession.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bslot.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 bslot.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoken.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 btoken.c
perl certdata.perl certdata.txt Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdata.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdata.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -I../../../../dist/public/nspr -I. -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ckbiver.c
grep -v ';-' nssckbi.def | sed -e 's,;+,,' -e 's; DATA ;;' -e 's,;;,,' -e 's,;.*,;,' > Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnssckbi.so  -Wl,--version-script,Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nssckbi.def -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/anchor.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/constants.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bfind.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/binst.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bobject.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bsession.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bslot.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoken.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certdata.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ckbiver.o   ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnssckbi.so ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw/builtins'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/ckfw'
cd sysinit; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nsssysinit.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
cc -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro -Wl,-soname -Wl,libnsssysinit.so  -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsssysinit.o    -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libnsssysinit.so ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib/sysinit'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/lib'
cd cmd; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd lib; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/basicutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 basicutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secpwd.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secpwd.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derprint.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 derprint.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/moreoids.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 moreoids.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pppolicy.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ffs.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ffs.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11table.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11table.c
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/basicutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secpwd.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derprint.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/moreoids.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pppolicy.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ffs.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11table.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libsectool.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/lib'
cd shlibsign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 shlibsign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/shlibsign -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/shlibsign.o  -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/shlibsign ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
cd mangle; /usr/bin/make libs
make[3]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mangle.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 mangle.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mangle -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DSHLIB_SUFFIX=\"so\" -DSHLIB_PREFIX=\"lib\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../../dist/public/nss -I../../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mangle.o  -Wl,-z,relro  -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/mangle ../../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[3]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign/mangle'
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/shlibsign'
cd addbuiltin; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 addbuiltin.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/addbuiltin ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/addbuiltin'
cd atob; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/atob.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 atob.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/atob -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/atob.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/atob ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/atob'
cd btoa; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoa.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 btoa.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoa -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoa.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/btoa ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/btoa'
cd certcgi; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certcgi.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certcgi.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certcgi -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certcgi.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certcgi ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certcgi'
cd certutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certext.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certext.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/keystuff.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 keystuff.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certutil -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certext.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/keystuff.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certutil ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/certutil'
cd chktest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/chktest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 chktest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/chktest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/chktest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/chktest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/chktest'
cd crlutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crlgen_lex.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlgen.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crlgen.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 crlutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlutil -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlgen_lex.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlgen.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlutil.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crlutil ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crlutil'
cd crmftest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 testcrmf.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmftest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/testcrmf.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/crmftest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/crmftest'
cd dbtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dbtest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dbtest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dbtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dbtest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dbtest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/dbtest'
cd derdump; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derdump.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 derdump.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derdump -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derdump.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/derdump ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/derdump'
cd digest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/digest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 digest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/digest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/digest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/digest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/digest'
cd httpserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/httpserv.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 httpserv.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/httpserv -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/httpserv.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/httpserv ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/httpserv'
cd listsuites; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/listsuites.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 listsuites.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/listsuites -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/listsuites.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/listsuites ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/listsuites'
cd makepqg; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/makepqg.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 makepqg.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/makepqg -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/makepqg.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/makepqg ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/makepqg'
cd multinit; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/multinit.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 multinit.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/multinit -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/multinit.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/multinit ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/multinit'
cd ocspclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ocspclnt.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspclnt ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspclnt'
cd ocspresp; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ocspresp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspresp -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspresp.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ocspresp ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ocspresp'
cd oidcalc; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 oidcalc.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/oidcalc -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/oidcalc.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/oidcalc ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/oidcalc'
cd p7content; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7content.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7content.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7content -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7content.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7content ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7content'
cd p7env; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7env.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7env.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7env -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7env.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7env ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7env'
cd p7sign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7sign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7sign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7sign -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7sign.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7sign ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7sign'
cd p7verify; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7verify.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 p7verify.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7verify -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7verify.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/p7verify ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/p7verify'
cd pk12util; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk12util.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk12util.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk12util -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk12util.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk12util ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk12util'
cd pk11ectest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11ectest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11ectest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11ectest'
cd pk11gcmtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11gcmtest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11gcmtest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11gcmtest'
cd pk11mode; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11mode.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mode -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mode.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11mode ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk11mode'
cd pk1sign; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk1sign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk1sign -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk1sign.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk1sign ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pk1sign'
cd pp; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pp.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pp.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pp -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pp.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pp ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pp'
cd pwdecrypt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pwdecrypt.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pwdecrypt ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pwdecrypt'
cd rsaperf; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 rsaperf.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/defkey.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 defkey.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/rsaperf -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I../../nss/lib/softoken -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/rsaperf.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/defkey.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/rsaperf ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/rsaperf'
cd sdrtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sdrtest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sdrtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sdrtest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sdrtest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/sdrtest'
cd selfserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/selfserv.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 selfserv.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/selfserv -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/selfserv.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/selfserv ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/selfserv'
cd signtool; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signtool.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 signtool.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certgen.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 certgen.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/javascript.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 javascript.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/list.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 list.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sign.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 sign.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/util.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 util.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/verify.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 verify.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/zip.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 zip.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signtool -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signtool.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/certgen.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/javascript.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/list.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/sign.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/util.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/verify.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/zip.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signtool ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signtool'
cd signver; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signver.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 signver.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk7print.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk7print.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signver -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signver.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk7print.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/signver ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/signver'
cd smimetools; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 cmsutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/cmsutil ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/smimetools'
cd ssltap; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltap.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 ssltap.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltap -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltap.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/ssltap ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/ssltap'
cd strsclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 strsclnt.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/strsclnt -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/strsclnt.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/strsclnt ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/strsclnt'
cd symkeyutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 symkeyutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss  -I../../../dist/private/nss  -I../../../dist/public/dbm -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/symkeyutil ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/symkeyutil'
cd tests; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 baddbdir.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/baddbdir -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/baddbdir.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/conflict.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 conflict.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/conflict -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/conflict.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 dertimetest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dertimetest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dertimetest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 encodeinttest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 nonspr10.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nonspr10 -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nonspr10.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/remtest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 remtest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/remtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/remtest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 secmodtest.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmodtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmodtest.o \
 -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/baddbdir Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/conflict Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/dertimetest Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/encodeinttest Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nonspr10 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/remtest Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/secmodtest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tests'
cd tstclnt; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 tstclnt.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tstclnt -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tstclnt.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/tstclnt ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/tstclnt'
cd vfychain; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfychain.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 vfychain.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfychain -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfychain.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfychain ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfychain'
cd vfyserv; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 vfyserv.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 vfyutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyserv -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DDLL_PREFIX=\"lib\" -DDLL_SUFFIX=\"so\" -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -I../../../dist/public/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../private/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyserv.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyutil.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/vfyserv ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/vfyserv'
cd modutil; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/modutil.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 modutil.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pk11.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/instsec.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 instsec.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/install.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 install.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/installparse.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 installparse.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/install-ds.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 install-ds.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 lex.Pk11Install_yy.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/modutil -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -DNSPR20 -DYY_NO_UNPUT -DYY_NO_INPUT -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/sectools -I../../../dist/private/sectools -I../../../dist/public/seccmd -I../../../dist/public/nss -I../../../dist/public/dbm -I../../../dist/private/seccmd -I../../../dist/private/nss -I../../../dist/private/dbm -iquote ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/../public/nss -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/modutil.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pk11.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/instsec.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/install.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/installparse.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/install-ds.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lex.Pk11Install_yy.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/modutil ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/modutil'
cd pkix-errcodes; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 pkix-errcodes.c
cc -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/seccmd -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/pkix-errcodes ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd/pkix-errcodes'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/cmd'
cd gtests; /usr/bin/make libs
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
cd google_test; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -Igtest/include/ -Igtest -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/gtest -I../../../dist/private/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -std=c++0x gtest/src/gtest-all.cc
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
ar cr Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o
echo Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a
rm -f Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
g++ -shared  -Wl,--gc-sections -Wl,-z,defs -Wl,-z,relro  -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtest/src/gtest-all.o   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
chmod +x Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 664 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/libgtest1.so ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/google_test'
cd common; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtests.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -std=c++0x gtests.cc
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtests -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtests.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtests ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/common'
cd der_gtest; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -std=c++0x der_getint_unittest.cc
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -std=c++0x der_private_key_import_unittest.cc
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_gtest -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -I../../gtests/google_test/gtest/include -I../../gtests/common -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -I../../../dist/public/gtest -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_getint_unittest.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_private_key_import_unittest.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a  ../common/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/gtests.o ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  /usr/lib64/libfreebl.a -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lssl3 -lsmime3 -lnss3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -L/usr/lib64 -lsoftokn3 -lpthread  -ldl -lc
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/der_gtest ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/der_gtest'
cd nss_bogo_shim; /usr/bin/make libs
make[2]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/config.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -I../../lib/ssl -std=c++0x -std=c++0x config.cc
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -I../../lib/ssl -std=c++0x -std=c++0x nsskeys.cc
if test ! -d Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; then rm -rf Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; ../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -D Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ; fi
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o -c -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -I../../lib/ssl -std=c++0x -std=c++0x nss_bogo_shim.cc
g++ -o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim -O2 -fPIC   -pipe -ffunction-sections -fdata-sections -DHAVE_STRERROR -DLINUX -Dlinux -Wall -Werror -Wsign-compare -DXP_UNIX -UDEBUG -DNDEBUG -D_REENTRANT -DNSS_NO_INIT_SUPPORT -DUSE_UTIL_DIRECTLY -DNO_NSPR_10_SUPPORT -DSSL_DISABLE_DEPRECATED_CIPHER_SUITE_NAMES -DNSS_USE_STATIC_LIBS -I/usr/include/nspr4  -I/usr/include/nss3 -I/usr/include/nspr4  -I../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/include -I../../../dist/public/nss -I../../../dist/private/nss -I../../../dist/public/nspr -I../../../dist/public/nss -I../../../dist/public/libdbm -O2 -g -pipe -Wall -Werror=format-security -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector-strong --param=ssp-buffer-size=4 -grecord-gcc-switches -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -I../../lib/ssl Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/config.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsskeys.o Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim.o  -Wl,-z,relro ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a   ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a  /usr/lib64/libfreebl.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a  ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a   /usr/lib64/libfreebl.a -L/usr/lib64 -lsoftokn3  -L../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib -lsqlite3 -L/usr/lib64 -lnssutil3 -L/usr/lib64 -lplc4 -lplds4 -lnspr4  -lpthread  -ldl -lc -lz
../../coreconf/nsinstall/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nsinstall -R -m 775 Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/nss_bogo_shim ../../../dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
make[2]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests/nss_bogo_shim'
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/gtests'
make: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss'
+ unset NSS_BLTEST_NOT_AVAILABLE
~/build/BUILD/nss-3.29.1/nss ~/build/BUILD/nss-3.29.1
+ pushd ./nss
+ /usr/bin/make clean_docs build_docs
/usr/bin/make -C ./doc clean
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
rm -f date.xml version.xml *.tar.bz2
rm -f html/*.proc
rm -fr nss-man ascii
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
/usr/bin/make -C ./doc
make[1]: Entering directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
date +"%e %B %Y" | tr -d '\n' > date.xml
echo -n  > version.xml
mkdir -p html
mkdir -p nroff
make[1]: Leaving directory '/builddir/build/BUILD/nss-3.29.1/nss/doc'
+ popd
~/build/BUILD/nss-3.29.1
+ /usr/bin/mkdir -p ./dist/docs/nroff
+ /usr/bin/cp ./nss/doc/nroff/certutil.1 ./nss/doc/nroff/cmsutil.1 ./nss/doc/nroff/crlutil.1 ./nss/doc/nroff/derdump.1 ./nss/doc/nroff/modutil.1 ./nss/doc/nroff/pk12util.1 ./nss/doc/nroff/pp.1 ./nss/doc/nroff/signtool.1 ./nss/doc/nroff/signver.1 ./nss/doc/nroff/ssltap.1 ./nss/doc/nroff/vfychain.1 ./nss/doc/nroff/vfyserv.1 ./dist/docs/nroff
+ /usr/bin/mkdir -p ./dist/pkgconfig
+ /usr/bin/cat /builddir/build/SOURCES/nss.pc.in
+ sed -e s,%libdir%,/usr/lib64,g -e s,%prefix%,/usr,g -e s,%exec_prefix%,/usr,g -e s,%includedir%,/usr/include/nss3,g -e s,%NSS_VERSION%,3.29.1,g -e s,%NSPR_VERSION%,4.13.0,g -e s,%NSSUTIL_VERSION%,3.29.1,g -e s,%SOFTOKEN_VERSION%,3.29.1,g
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VMAJOR'
++ awk '{print $3}'
+ NSS_VMAJOR=3
++ cat nss/lib/nss/nss.h
++ awk '{print $3}'
++ grep '#define.*NSS_VMINOR'
+ NSS_VMINOR=29
++ cat nss/lib/nss/nss.h
++ grep '#define.*NSS_VPATCH'
++ awk '{print $3}'
+ NSS_VPATCH=1
+ export NSS_VMAJOR
+ export NSS_VMINOR
+ export NSS_VPATCH
+ /usr/bin/cat /builddir/build/SOURCES/nss-config.in
+ sed -e s,@libdir@,/usr/lib64,g -e s,@prefix@,/usr,g -e s,@exec_prefix@,/usr,g -e s,@includedir@,/usr/include/nss3,g -e s,@MOD_MAJOR_VERSION@,3,g -e s,@MOD_MINOR_VERSION@,29,g -e s,@MOD_PATCH_VERSION@,1,g
+ chmod 755 ./dist/pkgconfig/nss-config
+ /usr/bin/cat /builddir/build/SOURCES/setup-nsssysinit.sh
+ chmod 755 ./dist/pkgconfig/setup-nsssysinit.sh
+ /usr/bin/cp ./nss/lib/ckfw/nssck.api ./dist/private/nss/
+ date '+%e %B %Y'
+ tr -d '\n'
+ echo -n 3.29.1
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/nss-config.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/setup-nsssysinit.xml .
+ for m in /builddir/build/SOURCES/nss-config.xml /builddir/build/SOURCES/setup-nsssysinit.xml /builddir/build/SOURCES/pkcs11.txt.xml
+ cp /builddir/build/SOURCES/pkcs11.txt.xml .
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man nss-config.xml
Note: Writing nss-config.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man setup-nsssysinit.xml
Note: Writing setup-nsssysinit.1
+ for m in nss-config.xml setup-nsssysinit.xml pkcs11.txt.xml
+ xmlto man pkcs11.txt.xml
Note: Writing pkcs11.txt.5
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert8.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/cert9.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key3.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/key4.db.xml .
+ for m in /builddir/build/SOURCES/cert8.db.xml /builddir/build/SOURCES/cert9.db.xml /builddir/build/SOURCES/key3.db.xml /builddir/build/SOURCES/key4.db.xml /builddir/build/SOURCES/secmod.db.xml
+ cp /builddir/build/SOURCES/secmod.db.xml .
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert8.db.xml
Note: Writing cert8.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man cert9.db.xml
Note: Writing cert9.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key3.db.xml
Note: Writing key3.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man key4.db.xml
Note: Writing key4.db.5
+ for m in cert8.db.xml cert9.db.xml key3.db.xml key4.db.xml secmod.db.xml
+ xmlto man secmod.db.xml
Note: Writing secmod.db.5
+ exit 0
Executing(%install): /bin/sh -e /var/tmp/rpm-tmp.JoAFzj
+ umask 022
+ cd /builddir/build/BUILD
+ '[' /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64 '!=' / ']'
+ rm -rf /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64
++ dirname /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64
+ mkdir -p /builddir/build/BUILDROOT
+ mkdir /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64
+ cd nss-3.29.1
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3/templates
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/pkgconfig
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/doc/nss-tools
+ mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1
+ mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man5
+ touch /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/libnssckbi.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/libnssckbi.so
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64
+ for file in libnss3.so libnsssysinit.so libsmime3.so libssl3.so
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//etc/pki/nssdb
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert8.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//etc/pki/nssdb/cert8.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key3.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//etc/pki/nssdb/key3.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-secmod.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//etc/pki/nssdb/secmod.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-cert9.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//etc/pki/nssdb/cert9.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/blank-key4.db /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//etc/pki/nssdb/key4.db
+ /usr/bin/install -p -m 644 /builddir/build/SOURCES/system-pkcs11.txt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//etc/pki/nssdb/pkcs11.txt
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64
+ for file in libcrmf.a libnssb.a libnssckfw.a
+ /usr/bin/install -p -m 644 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/certutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/cmsutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/crlutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/modutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/signtool /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/signver /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin
+ for file in certutil cmsutil crlutil modutil pk12util signtool signver ssltap
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/ssltap /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/atob /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/btoa /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/derdump /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/listsuites /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/ocspclnt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pp /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/selfserv /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/strsclnt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/symkeyutil /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/tstclnt /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/vfyserv /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in atob btoa derdump listsuites ocspclnt pp selfserv strsclnt symkeyutil tstclnt vfyserv vfychain
+ /usr/bin/install -p -m 755 dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/vfychain /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/nss/unsupported-tools
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cert.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/certdb.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/certt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmmf.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmmft.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cms.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmsreclist.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cmst.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/crmf.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/crmft.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cryptohi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/cryptoht.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jar-ds.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jar.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/jarfile.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/key.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keyhi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keyt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/keythi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nss.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssbase.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssbaset.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckbi.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckepv.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckft.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfw.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwc.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckfwt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckg.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckmdt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/nssckt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ocsp.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ocspt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12plcy.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/p12t.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11func.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pqg.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11priv.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11pub.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pk11sdr.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs12t.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/pkcs7t.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/preenc.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sechash.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmime.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmod.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secmodt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs5.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/secpkcs7.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/smime.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/ssl.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslerr.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslproto.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/public/nss/*.h
+ /usr/bin/install -p -m 644 dist/public/nss/sslt.h /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3
+ for file in dist/private/nss/nssck.api
+ /usr/bin/install -p -m 644 dist/private/nss/nssck.api /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/include/nss3/templates
+ /usr/bin/install -p -m 644 ./dist/pkgconfig/nss.pc /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/lib64/pkgconfig/nss.pc
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/nss-config /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin/nss-config
+ /usr/bin/install -p -m 755 ./dist/pkgconfig/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin/setup-nsssysinit.sh
+ ln -r -s -f /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin/setup-nsssysinit.sh /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64//usr/bin/setup-nsssysinit
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 nss-config.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/nss-config.1
+ for f in nss-config setup-nsssysinit
+ install -c -m 644 setup-nsssysinit.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/setup-nsssysinit.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/certutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/certutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/cmsutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/cmsutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/crlutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/crlutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/derdump.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/derdump.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/modutil.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/modutil.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/pk12util.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/pk12util.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/signtool.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/signtool.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/signver.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/signver.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/ssltap.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/ssltap.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/vfychain.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/vfychain.1
+ for f in ""certutil cmsutil crlutil derdump modutil pk12util signtool signver ssltap vfychain vfyserv""
+ install -c -m 644 ./dist/docs/nroff/vfyserv.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man1/vfyserv.1
+ install -c -m 644 ./dist/docs/nroff/pp.1 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/doc/nss-tools/pp.1
+ for f in pkcs11.txt
+ install -c -m 644 pkcs11.txt.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man5/pkcs11.txt.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert8.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man5/cert8.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 cert9.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man5/cert9.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key3.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man5/key3.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 key4.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man5/key4.db.5
+ for f in cert8.db cert9.db key3.db key4.db secmod.db
+ install -c -m 644 secmod.db.5 /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/man/man5/secmod.db.5
+ /usr/lib/rpm/find-debuginfo.sh --strict-build-id -m --run-dwz --dwz-low-mem-die-limit 10000000 --dwz-max-die-limit 50000000 /builddir/build/BUILD/nss-3.29.1
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/libnsssysinit.so
readelf: /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib/debug/usr/lib64/libnsssysinit.so.debug: Error: the dynamic segment offset + size exceeds the size of the file
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/vfychain
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/ocspclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/selfserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/pp
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/strsclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/tstclnt
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/atob
readelf: /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib/debug/usr/lib64/nss/unsupported-tools/atob.debug: Error: the dynamic segment offset + size exceeds the size of the file
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/btoa
readelf: /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib/debug/usr/lib64/nss/unsupported-tools/btoa.debug: Error: the dynamic segment offset + size exceeds the size of the file
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/listsuites
readelf: /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib/debug/usr/lib64/nss/unsupported-tools/listsuites.debug: Error: the dynamic segment offset + size exceeds the size of the file
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/derdump
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/vfyserv
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/unsupported-tools/symkeyutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/nss/libnssckbi.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/libssl3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/libsmime3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/lib64/libnss3.so
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/bin/cmsutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/bin/pk12util
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/bin/modutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/bin/crlutil
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/bin/signtool
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/bin/signver
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/bin/ssltap
extracting debug info from /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/bin/certutil
/usr/lib/rpm/sepdebugcrcfix: Updated 25 CRC32s, 0 CRC32s did match.
cpio: nss-3.29.1/nss/cmd/modutil/lex.Pk11Install_yy.cpp: Cannot stat: No such file or directory
cpio: nss-3.29.1/nss/cmd/modutil/ytab.c: Cannot stat: No such file or directory
25228 blocks
+ /usr/lib/rpm/check-buildroot
+ /usr/lib/rpm/brp-compress
+ /usr/lib/rpm/brp-strip-static-archive /usr/bin/strip
+ /usr/lib/rpm/brp-python-bytecompile /usr/bin/python 1
+ /usr/lib/rpm/brp-python-hardlink
Executing(%check): /bin/sh -e /var/tmp/rpm-tmp.XPDRZp
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ '[' 0 -eq 1 ']'
+ FREEBL_NO_DEPEND=1
+ export FREEBL_NO_DEPEND
+ export BUILD_OPT=1
+ BUILD_OPT=1
+ USE_64=1
+ export USE_64
+ export NSS_BLTEST_NOT_AVAILABLE=1
+ NSS_BLTEST_NOT_AVAILABLE=1
+ export NSS_DISABLE_TLS_1_3=1
+ NSS_DISABLE_TLS_1_3=1
+ export SOFTOKEN_LIB_DIR=/usr/lib64
+ SOFTOKEN_LIB_DIR=/usr/lib64
+ export NSS_IGNORE_SYSTEM_POLICY=1
+ NSS_IGNORE_SYSTEM_POLICY=1
++ find ./nss/tests
++ grep -c ' '
+ SPACEISBAD=0
+ :
+ '[' 0 -ne 0 ']'
++ perl -e 'print 9000 + int rand 1000'
+ MYRAND=9590
+ echo 9590
9590
+ RANDSERV=selfserv_9590
+ echo selfserv_9590
selfserv_9590
++ ls -d ./dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
+ DISTBINDIR=./dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
./dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
+ echo ./dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
++ pwd
~/build/BUILD/nss-3.29.1 ~/build/BUILD/nss-3.29.1
+ pushd /builddir/build/BUILD/nss-3.29.1
+ cd ./dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin
+ ln -s selfserv selfserv_9590
~/build/BUILD/nss-3.29.1
+ popd
+ grep -v '\.db$'
+ find ./nss/tests -type f
+ xargs -l perl -pi -e 's/\bselfserv\b/selfserv_9590/g'
+ grep -vw CVS
+ xargs grep -lw selfserv
+ grep -v '\.crt$'
+ grep -v '\.crl$'
+ killall selfserv_9590
selfserv_9590: no process found
+ :
+ rm -rf ./tests_results
+ pushd ./nss/tests/
~/build/BUILD/nss-3.29.1/nss/tests ~/build/BUILD/nss-3.29.1
++ echo
+ SKIP_NSS_TEST_SUITE=
+ '[' x == x ']'
+ HOST=localhost
+ DOMSUF=localdomain
+ PORT=9590
+ NSS_CYCLES=
+ NSS_TESTS='libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests'
+ NSS_SSL_TESTS=
+ NSS_SSL_RUN=
+ ./all.sh
testdir is /builddir/build/BUILD/nss-3.29.1/tests_results/security
init.sh init: Creating /builddir/build/BUILD/nss-3.29.1/tests_results/security
which: no domainname in (.:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin)
********************************************
   Platform: Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ
   Results: localhost.1
********************************************
init.sh init: Testing PATH .:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin:/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib:/bin:/usr/bin:/usr/sbin:/sbin:/usr/local/sbin against LIB /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib:
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Tue May  2 15:18:37 UTC 2017
TIMESTAMP libpkix END: Tue May  2 15:18:37 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Tue May  2 15:18:37 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #1: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -f ../tests.pw
cert.sh: #2: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #3: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #5: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -f ../tests.pw
cert.sh: #6: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #7: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #9: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #10: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #11: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #12: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -o root.cert
cert.sh: #13: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -f ../tests.pw
cert.sh: #14: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #15: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #16: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #17: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #18: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #19: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #20: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -o root.cert
cert.sh: #21: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #22: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #23: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #24: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #25: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #26: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #27: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #28: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #29: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #30: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #31: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #32: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #33: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #34: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #35: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #36: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #37: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #38: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #39: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #40: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #41: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #42: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #43: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #44: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #45: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #46: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #47: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #48: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #49: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw
cert.sh: #50: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #51: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #52: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #53: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #54: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #55: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #56: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #57: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #58: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #59: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #60: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #61: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #62: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #63: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #64: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #65: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #66: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #67: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #68: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #69: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #70: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #71: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #72: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #73: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #74: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #75: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #76: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #77: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #78: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw
cert.sh: #79: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #80: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #81: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #82: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #83: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA.ca.cert
cert.sh: #84: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #85: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #86: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #87: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-dsa.ca.cert
cert.sh: #88: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #89: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #90: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #91: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #92: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #93: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #94: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA/serverCA-ec.ca.cert
cert.sh: #95: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #96: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #97: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #98: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-ec.ca.cert
cert.sh: #99: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #100: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #101: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #102: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #103: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA-dsa.ca.cert
cert.sh: #104: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/clientCA.ca.cert
cert.sh: #105: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #106: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #107: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw
cert.sh: #108: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #109: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -i ../CA/TestCA.ca.cert
cert.sh: #110: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #111: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #112: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #113: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #114: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #115: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #116: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #117: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #118: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #119: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #120: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #121: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #122: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #123: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #124: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #125: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #126: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #127: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #128: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #129: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -i ../CA/TestCA.ca.cert
cert.sh: #130: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #131: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #132: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #133: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #134: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #135: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #136: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #137: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #138: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #139: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #140: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #141: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #142: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #143: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #144: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #145: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #146: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #147: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #148: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #149: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #150: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #151: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #152: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #153: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #154: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #155: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #156: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #157: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #158: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #159: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #160: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #161: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #162: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #163: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #164: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -f ../tests.pw
cert.sh: #165: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw
cert.sh: #166: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #167: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #168: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #169: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #170: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #171: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #172: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #173: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #174: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #175: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #176: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #177: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #178: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #179: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #180: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #181: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #182: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #183: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #184: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #185: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw
cert.sh: #186: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #187: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #188: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #189: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #190: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #191: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #192: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #193: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #194: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #195: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #196: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #197: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #198: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #199: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #200: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #201: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #202: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #203: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #204: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #205: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw
cert.sh: #206: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #207: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -i ../CA/TestCA.ca.cert
cert.sh: #208: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #209: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #210: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #211: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #212: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #213: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #214: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #215: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #216: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #217: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #218: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #219: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #220: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #221: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #222: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #223: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #224: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #225: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw
cert.sh: #226: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #227: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -i ../CA/TestCA.ca.cert
cert.sh: #228: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #229: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #230: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #231: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #232: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #233: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #234: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #235: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #236: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #237: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #238: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #239: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #240: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #241: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #242: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #243: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #244: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #245: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #246: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #247: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #248: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #249: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #250: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #251: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #252: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #253: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips -f ../tests.fipspw
cert.sh: #254: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #255: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #256: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #257: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw
cert.sh: #258: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #259: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #260: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #261: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #262: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #263: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #264: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #265: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #266: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #267: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #268: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #269: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw
cert.sh: #270: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #271: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #272: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #273: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #274: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #275: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #276: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #277: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #278: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #279: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #280: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #281: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #282: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #283: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #284: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #285: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #286: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #287: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #288: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #289: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:e4
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:00 2017
            Not After : Wed Aug 02 15:19:00 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:b7:8d:2f:fd:3a:43:92:bb:cb:cc:2c:92:37:9c:a3:
                    81:66:0e:5a:6b:a3:cf:5f:02:96:15:cd:c8:f1:3d:b3:
                    fe:90:eb:e5:9b:d5:19:27:88:82:98:72:31:5b:50:ad:
                    d6:00:ed:9d:b3:fb:71:b3:58:fa:7e:3b:68:4e:bb:07:
                    9f:8f:82:0e:89:b2:41:50:3a:6a:6d:ae:19:f6:9d:99:
                    94:8b:43:31:e2:a5:5c:3a:6b:79:de:35:3b:9b:61:82:
                    86:7f:62:b5:cf:b3:aa:c2:eb:b6:c0:bc:cd:4c:c5:43:
                    5e:0e:70:10:ec:fb:b1:36:19:3c:cd:68:3c:05:19:47:
                    4e:06:43:26:18:45:14:9c:0a:da:30:39:d8:69:96:e7:
                    0a:63:8b:d6:7b:e5:e3:db:ce:78:12:e6:11:56:12:16:
                    3f:c4:51:97:04:ae:79:5d:0a:c9:58:3c:0b:d3:35:8c:
                    80:51:03:b6:f3:6a:5b:82:df:6d:1b:b6:b7:d5:28:d3:
                    ed:b9:40:3c:55:a7:47:0b:e5:8f:e6:c7:78:df:e7:0d:
                    13:de:da:9d:04:f0:a1:09:9f:39:50:9a:00:38:94:4f:
                    07:87:5f:a6:a9:1f:8a:1f:e6:74:f7:24:97:12:d7:4c:
                    a6:a4:d9:76:4c:e3:5b:a7:3c:0a:73:fe:fd:e8:8f:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:b3:79:cc:6c:1b:93:31:9c:2d:e8:5d:3b:f7:60:76:
        d9:75:2a:97:8f:1b:3c:a0:61:f2:3b:8b:43:dc:5e:4d:
        25:15:c6:f5:1c:93:9f:59:fb:3f:93:ee:a3:9c:cc:45:
        9f:3e:64:2d:95:4c:f9:b9:55:bd:ae:f3:78:b0:00:fe:
        cc:5d:48:83:d9:91:08:bf:ac:82:8a:be:08:bd:22:4f:
        08:ca:7b:3f:6e:d3:59:d4:10:bf:21:b2:2f:06:d4:85:
        2f:8e:62:e9:45:4b:e6:8b:2f:e7:a7:6d:d4:f4:04:73:
        fb:e0:9a:2c:cb:71:23:e2:10:0a:c1:50:a4:62:2c:4e:
        e3:bf:38:f8:f6:50:5f:87:13:ed:00:f4:fb:17:c4:3f:
        fc:5e:e0:cc:89:01:14:f2:e7:47:a0:26:bc:d5:4f:c7:
        d6:8d:a1:37:37:76:8b:40:e8:46:47:a4:db:ae:23:98:
        31:bf:9b:91:6f:90:32:8b:e7:39:b0:d8:d4:ae:c3:9a:
        7e:79:4e:00:ab:84:b8:47:e5:b0:fd:a5:83:b4:fe:01:
        2d:1e:85:8e:26:d3:c9:28:21:9e:c7:2e:f9:fa:4f:2f:
        85:87:0c:a2:ef:29:c6:8c:ad:5d:85:cd:df:bb:c6:5c:
        6d:5b:a4:e9:e3:2f:d7:55:cd:a3:82:7e:58:a9:55:2b
    Fingerprint (SHA-256):
        F6:EB:19:32:41:D7:AE:83:9A:D9:82:8D:83:DE:17:DC:AE:09:27:78:F8:55:BA:00:D3:3D:3F:83:22:72:65:2E
    Fingerprint (SHA1):
        C8:71:F1:ED:B2:17:56:0C:A0:D4:BF:0F:15:F6:2A:04:17:1F:E5:8A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #290: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:e5
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:00 2017
            Not After : Wed Aug 02 15:19:00 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:f9:0d:6b:7e:79:e2:b2:4f:69:c4:e5:e7:74:36:8f:
                    2a:ef:37:bd:75:a1:21:98:12:2a:e7:76:7e:a0:ea:e6:
                    ba:b4:f4:be:3f:c3:32:f4:72:03:73:d4:db:dd:37:59:
                    39:b9:ef:48:04:fd:f5:33:bc:e6:b2:84:f8:f4:52:3a:
                    b5:e7:62:8a:c5:48:38:56:e0:90:21:cd:92:c1:d3:9f:
                    10:99:36:30:25:ff:90:fe:0f:bd:2f:a6:fd:8f:05:80:
                    1d:a3:a3:aa:91:e5:15:b7:7b:13:9d:98:0e:a4:cd:73:
                    91:d7:c4:3e:9d:55:a2:28:a1:52:3d:d0:3b:61:10:f8:
                    8e:f3:7e:c2:83:f8:ac:e0:78:6f:37:d7:9b:d7:c6:e2:
                    45:80:a1:c0:85:9c:88:16:c7:43:00:9c:0c:d6:ac:ca:
                    4c:cf:bc:ef:42:af:ca:5c:58:d0:f3:11:e6:a3:c6:f0:
                    8b:26:a3:f7:96:e3:27:3e:4a:cb:11:47:db:b2:37:91:
                    83:6a:a7:81:84:54:d0:69:b5:c8:2b:33:92:c5:11:10:
                    9d:d3:3f:ec:a7:41:63:53:ee:78:5a:a6:03:6c:ad:e9:
                    f1:cf:39:8a:ca:b9:82:34:28:b6:5f:3b:16:0e:40:e3:
                    0b:5f:f8:96:18:a5:88:07:0e:3e:3a:92:ed:98:1e:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:e8:70:b4:b9:05:c8:eb:f0:be:ab:11:32:ad:42:ea:
        9e:9a:58:bb:b3:07:26:11:3a:b5:f0:58:b0:98:a6:a5:
        88:1c:92:68:3c:a7:b7:a1:26:67:26:f7:12:b9:56:fb:
        38:6b:ce:a9:99:99:4c:77:da:08:f1:26:74:50:bb:e6:
        c4:d0:38:c3:ca:e0:f4:63:84:f6:9c:2e:a6:77:1c:d5:
        da:37:5f:6f:e9:f2:e3:8e:5c:3a:5b:21:8e:33:d7:a4:
        2c:c8:d9:30:a0:c1:d3:e3:26:30:88:95:8f:4a:eb:5f:
        a8:b7:ff:28:84:4e:76:32:03:5a:c4:47:dc:de:62:3e:
        c5:b6:30:0e:c8:65:b9:2c:ee:c8:df:b4:87:92:91:36:
        f8:41:a0:85:49:cf:b3:c9:53:90:43:a5:f6:92:b0:ff:
        c8:a9:c4:05:64:09:b3:71:ec:10:42:0d:f5:26:83:13:
        7c:95:45:a8:c7:30:4f:a8:01:23:e1:28:02:0a:8f:5d:
        b3:31:37:2a:70:2b:6f:71:29:12:5f:42:cf:41:03:13:
        d5:83:e1:0b:82:f0:1c:88:52:8c:da:5c:ee:89:af:26:
        3a:aa:a0:09:f9:14:b1:0b:b6:08:a9:25:b0:14:8f:9e:
        92:b2:3b:36:02:27:54:01:74:60:d8:7b:d4:5a:a7:78
    Fingerprint (SHA-256):
        68:AB:6C:80:38:AC:C0:FF:AE:E2:C6:AF:45:74:01:84:D6:75:DA:A9:53:AB:5C:79:86:F0:8E:E0:0F:35:9B:BE
    Fingerprint (SHA1):
        76:FE:D5:C6:15:B0:57:90:6B:29:71:F2:06:94:3F:C9:4C:66:49:97
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #291: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:e6
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:01 2017
            Not After : Wed Aug 02 15:19:01 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:1b:fd:17:8a:ee:51:9e:21:8c:d5:3e:14:80:38:b3:
                    82:e6:a3:23:35:58:dc:6a:a3:a9:3f:89:55:48:9b:bb:
                    29:6a:1a:86:cd:99:4c:3b:ee:40:ff:8a:25:6b:56:6e:
                    1c:34:2c:3d:60:76:fa:49:02:f8:c9:05:e7:57:f9:ed:
                    ff:36:ae:bc:11:e7:c7:9c:ea:d4:47:f6:b6:42:a5:00:
                    7c:fb:c2:f7:07:35:e5:b1:9f:30:c2:52:73:74:93:a7:
                    f4:d6:c0:a1:64:33:31:e4:91:1f:37:68:fa:29:0a:eb:
                    1a:eb:44:a8:62:c3:a1:75:d8:f4:aa:3f:c9:76:63:f8:
                    14:a1:43:51:42:60:1e:73:c2:2a:86:05:8a:cd:80:61:
                    08:38:23:fd:45:bd:17:c4:77:0d:43:f4:c6:a1:be:6e:
                    a9:8c:7e:29:37:3e:0a:d2:44:20:23:bf:4b:01:d2:8f:
                    57:13:e2:93:2e:45:ea:ff:d8:49:8c:3b:49:e3:9c:79:
                    6d:32:ba:01:fb:fb:23:52:0e:76:af:84:26:17:92:f8:
                    52:fe:b6:1a:2b:b3:92:12:36:e3:14:76:b4:fe:99:27:
                    98:d7:ab:fb:4b:2e:0a:27:38:60:c5:e4:ef:9c:ba:59:
                    82:99:79:20:a5:7e:1d:4a:21:37:7b:91:b1:e3:21:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        72:e0:70:c0:0a:04:ac:99:c6:61:0e:b6:93:96:39:f5:
        24:94:07:34:83:82:cc:3c:9d:11:8c:18:e7:57:32:84:
        18:58:46:3c:a9:9d:79:d2:0f:90:cb:e9:13:37:a2:30:
        53:49:c2:eb:0a:6d:5f:b4:4e:23:d6:a0:53:6c:dd:b3:
        0a:99:a0:0b:be:a1:94:d7:51:35:a1:4e:78:3f:9b:34:
        38:ce:d2:14:d4:45:cc:88:09:69:09:ed:c3:7c:74:21:
        b1:cb:14:d7:c6:77:c3:75:b8:9e:51:df:44:47:8c:b4:
        2a:66:b9:1a:c7:ff:a3:f9:f3:19:b5:22:64:34:fa:9e:
        c5:2c:0a:41:5e:cc:65:a0:fd:bc:7b:71:93:48:6d:de:
        44:74:e0:11:7a:73:c8:da:80:bc:da:0c:62:9c:c3:fe:
        56:e9:20:0c:53:20:c4:51:18:09:0c:78:a7:f9:de:7f:
        6b:2d:69:9b:23:4e:3f:75:82:34:90:22:c0:3c:6c:62:
        28:c9:ca:15:38:fe:ed:bc:7f:0c:2e:0e:dd:d0:f9:2d:
        65:cf:c7:be:6f:a6:3f:b2:4b:8a:ca:30:a9:d1:15:57:
        09:65:bb:17:77:7d:c3:6a:7b:4e:03:81:be:59:7e:3a:
        ae:ac:cf:db:ba:db:4d:4e:9a:cc:b7:d4:9f:d0:c6:91
    Fingerprint (SHA-256):
        11:0C:56:89:99:BE:D1:6F:DD:CC:96:03:3E:73:FA:C5:05:BC:90:72:4D:49:F3:B4:51:42:60:D9:25:41:88:4D
    Fingerprint (SHA1):
        35:96:8B:AC:F3:82:16:73:0D:39:E6:7B:A3:18:8A:2C:16:0B:33:85
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #292: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:e6
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:01 2017
            Not After : Wed Aug 02 15:19:01 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:88:5c:09:4c:4d:cf:0b:20:50:0e:77:de:63:f6:b2:
                    a8:8b:e2:40:43:1d:75:a6:80:5b:1f:16:75:e6:c7:8e:
                    05:a2:db:83:9e:f9:72:e5:4d:ab:72:b4:36:7c:8b:54:
                    c2:1e:34:1d:70:8e:30:ec:a5:84:34:70:03:f7:3b:30:
                    4a:20:2d:ae:3d:21:7c:e4:1c:9c:96:ab:1d:d0:42:ae:
                    13:35:b6:b0:a5:57:f8:8d:18:88:c2:4c:33:af:44:22:
                    5e:e0:fa:34:2a:2b:e9:0d:33:1c:57:d8:a2:53:5a:b1:
                    39:86:62:c3:25:0e:af:99:4e:29:22:5f:92:a6:8b:03:
                    33:ef:a1:c2:3e:49:dd:42:26:df:ba:a9:4e:0c:55:bd:
                    ef:50:8a:d4:53:6a:11:f8:46:d6:df:22:1f:63:e1:78:
                    7e:6d:21:ec:e1:d0:fc:54:26:d3:e1:bf:cc:03:9a:0e:
                    2e:5e:34:01:bf:03:7d:0c:ca:37:1d:4f:18:bc:33:28:
                    1b:53:be:94:0d:ab:df:ef:4f:fd:fe:07:5c:7e:8c:8a:
                    80:7d:5b:64:41:e6:7a:fb:6d:d0:d6:fb:5a:06:6f:ef:
                    0c:63:07:7a:6a:a5:65:a5:32:a9:56:a8:b3:9a:9e:82:
                    cc:18:1a:cf:99:6a:94:36:95:1f:07:01:75:27:ca:25
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:a3:e8:7f:a1:fa:ea:7c:09:6e:c2:1d:8c:5a:58:9b:
        3e:ff:da:23:10:6c:e2:e6:a7:69:e8:67:96:1b:07:e2:
        2e:49:5c:4a:28:90:41:12:e1:99:36:24:04:db:51:a6:
        8d:d7:64:b3:a9:eb:3c:5e:bb:63:d7:90:d4:41:90:46:
        9a:34:c3:37:dc:0d:b1:da:8e:96:3a:d3:10:93:4e:e6:
        e5:a3:b9:fb:9c:92:a0:5b:21:6a:79:15:9e:a0:02:06:
        e7:02:fa:04:2d:93:80:83:d4:d3:82:e3:2b:38:23:ce:
        20:b7:27:24:f7:ce:7c:45:ea:25:4e:d1:9a:4b:2a:39:
        0a:e8:33:3a:eb:6a:0b:17:e1:67:40:ec:66:2b:37:48:
        2f:e6:28:87:d9:62:56:26:ea:3e:93:9e:3d:d8:3c:cc:
        b8:7c:c3:33:27:48:2c:6b:a2:0d:2c:dd:9e:4d:77:f3:
        26:4a:00:72:63:5a:be:78:5e:34:8c:00:33:15:3a:2d:
        c6:63:b1:45:6f:15:6e:ff:fc:4a:b4:0a:d3:5a:85:15:
        7d:b5:b4:97:b5:74:28:e0:c5:04:c6:dd:9d:e6:3b:e1:
        30:ae:f9:da:74:e7:e5:fe:27:45:41:92:17:08:7c:1a:
        39:f6:bd:f0:9f:c8:d7:54:62:53:15:8c:3c:08:b0:5a
    Fingerprint (SHA-256):
        5D:3F:95:22:76:09:95:07:07:0C:4C:C6:7B:D7:B6:AA:50:2B:31:AC:1F:7D:09:5F:8C:4F:93:D0:1B:D1:5B:D0
    Fingerprint (SHA1):
        C5:58:84:41:2C:43:18:5E:36:CF:52:75:C5:9F:0D:23:91:6E:A1:FD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #293: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:e7
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:02 2017
            Not After : Wed Aug 02 15:19:02 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:12:c8:a7:f6:a2:c9:b0:41:e9:2d:da:b5:c0:87:2d:
                    19:61:e8:fc:db:bf:0b:22:dc:88:a5:67:23:e2:3e:14:
                    bb:70:5c:e7:57:b4:24:c4:98:d5:7f:3f:cb:a5:f1:a0:
                    0e:48:89:6f:7c:44:d9:cf:c8:99:1d:e1:89:7c:84:81:
                    ef:c2:cf:95:b9:24:a0:60:04:4a:76:d2:09:af:e3:33:
                    9a:e6:e0:ef:7e:34:d2:be:03:75:c0:0f:83:18:19:b8:
                    de:98:2b:df:06:2f:28:a4:e5:00:33:86:6d:14:27:da:
                    e5:4f:d0:c8:86:10:da:b7:4a:c8:d3:94:4c:46:34:f4:
                    e6:c7:c4:04:5f:04:9c:88:02:d4:b3:63:d2:d9:6a:a2:
                    cf:b6:24:bf:32:5b:33:c2:b5:ec:12:cb:c4:be:8f:96:
                    fb:47:50:28:42:a1:e0:3b:08:b3:c0:7e:ee:3f:ae:0a:
                    7f:4b:7b:1b:ad:7c:67:e8:48:11:67:e5:bb:ae:3a:87:
                    f8:40:ff:70:4c:3e:aa:1d:c1:24:eb:e2:01:81:5a:b8:
                    74:72:8a:3b:9e:e0:2e:0a:77:e4:d4:06:d3:32:0b:98:
                    96:5f:84:26:05:42:5e:69:e5:18:83:14:ba:58:5e:2f:
                    5e:60:d1:54:a6:60:c1:7c:90:fa:77:16:82:c1:40:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:94:70:af:01:50:3e:ff:36:4c:8b:2e:ef:b3:f8:ee:
        c8:de:27:47:c0:d4:89:7e:d7:d0:a6:83:5d:e4:03:02:
        28:89:fa:72:e0:47:9b:24:fa:dc:60:bd:91:f7:64:ca:
        07:fb:d0:c4:da:ac:b0:79:59:b8:42:2f:da:52:dd:8e:
        0b:12:7b:e7:bc:e2:b3:66:28:14:4d:74:1e:bd:1c:8c:
        cb:47:c2:4c:fb:69:c3:c2:bd:f6:e1:6d:2d:ad:d1:8c:
        6c:9c:2e:b8:f2:c6:d7:01:18:a1:74:7d:7c:52:ec:51:
        d7:e8:26:ad:46:9b:a7:8c:f1:52:ad:72:db:14:9e:c7:
        20:7d:2d:d3:da:a2:0c:e9:2f:33:94:7d:52:8d:77:dc:
        b5:89:68:80:4d:ac:e2:e7:57:f2:53:f2:9d:f9:f1:ee:
        36:20:0e:f0:d1:10:42:0a:06:82:43:16:6b:24:f2:53:
        0c:1d:02:9f:5f:2b:97:31:eb:bc:59:9a:b5:3a:eb:a3:
        cf:a5:6e:1b:a6:5a:b3:04:c3:d6:75:d5:48:85:3d:b3:
        cf:b2:7c:f6:ad:7f:bd:47:69:1e:04:96:e4:4f:6d:be:
        99:af:35:44:22:08:98:d9:3a:25:d9:24:11:f3:5b:f8:
        fe:0b:14:66:7d:45:e4:4c:ea:5b:3c:5e:8f:40:31:c8
    Fingerprint (SHA-256):
        57:29:D0:1C:E6:C7:E5:EF:4B:9A:C2:59:42:53:B2:04:68:73:5B:68:64:6A:C0:6B:95:2E:20:84:51:8E:32:B2
    Fingerprint (SHA1):
        C1:2C:F3:BA:D8:40:F7:6E:A7:86:48:D9:13:C4:E5:6B:60:CC:90:53
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #294: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:e8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:02 2017
            Not After : Wed Aug 02 15:19:02 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:ed:3b:01:ca:8f:05:9e:ca:60:86:48:14:31:c3:3c:
                    1c:19:40:a7:52:09:48:4a:a6:76:fa:91:1c:04:57:d0:
                    2b:90:e5:43:73:95:74:e9:7a:ab:a6:b7:c5:0a:04:54:
                    49:53:a3:29:d0:fc:d4:6a:e7:1c:02:cf:be:7f:73:2d:
                    94:9c:f0:20:54:0f:f7:6a:5d:db:18:9b:5d:01:a0:0a:
                    46:4e:b9:24:3f:d2:55:4b:37:35:e2:2a:ba:db:ee:f2:
                    c8:ca:1b:cc:26:f5:59:1f:e4:8d:d7:cd:c2:9f:cc:c8:
                    91:bf:ec:2d:f0:1f:e3:4d:77:e3:57:27:b8:8e:ad:7e:
                    02:99:c6:58:ca:4d:0d:d9:f9:26:3d:20:ed:ed:4f:49:
                    95:5c:3f:a2:75:95:e5:80:9a:6e:08:51:33:72:9b:d9:
                    b5:d2:83:41:ef:2c:58:d0:76:e4:67:7d:f5:82:50:20:
                    36:bb:2b:60:b9:e6:3b:fa:fb:46:b5:87:f8:22:09:ba:
                    14:c5:38:c3:89:5a:9d:ae:ef:19:39:4f:9f:b8:07:1e:
                    53:da:96:09:3e:36:1f:3d:a6:86:b5:23:ad:fa:11:4a:
                    69:6b:19:05:74:f5:d7:1d:80:12:ba:4b:0b:71:b3:62:
                    ec:22:46:f1:7a:e2:3d:c1:d6:ea:54:cb:e5:dc:67:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:9f:af:fe:f0:fb:86:4f:c1:60:97:a4:9b:8c:f3:13:
        e6:60:4f:51:9b:91:33:5a:9a:00:36:30:c3:43:7d:7d:
        ad:2a:86:44:ba:b1:5f:37:05:d8:44:7c:09:61:d7:21:
        96:27:63:20:3c:df:a8:d1:c3:5e:21:56:65:6f:88:f5:
        32:96:38:57:dc:ec:1d:3b:9a:8c:a1:74:8d:46:9c:99:
        9f:85:b3:a4:51:b6:ed:6f:61:e4:38:a8:40:56:4b:82:
        30:86:20:2e:8f:62:c8:46:8c:4e:b3:1e:2e:fb:f0:26:
        68:b5:70:40:09:68:6a:71:37:a7:c3:27:e3:88:c8:30:
        44:3f:ca:69:62:28:68:13:86:6b:90:5b:25:07:26:d4:
        07:7c:30:c2:59:0a:22:dc:77:4a:eb:dd:db:76:e7:bb:
        e9:62:a1:e4:95:26:c6:50:b6:64:83:bd:c9:f5:38:ee:
        e7:07:98:82:79:84:c8:04:61:e9:66:4a:2f:2d:17:6a:
        5f:c5:ba:82:ed:7e:5f:80:87:f5:68:77:bc:6a:ff:4e:
        2d:00:ef:88:0b:05:14:4c:35:ec:9a:c1:f2:14:c1:96:
        d2:ce:89:55:c6:0d:5c:88:62:e1:18:a0:1e:c5:f9:4b:
        5f:02:82:a6:2b:68:96:88:38:b4:7c:9a:aa:bd:8c:56
    Fingerprint (SHA-256):
        85:09:06:11:4A:63:1C:DF:13:E1:A8:D2:7F:9E:11:3E:04:49:43:FE:80:47:BD:C3:F3:B2:32:1E:C3:57:78:86
    Fingerprint (SHA1):
        21:72:87:38:51:92:E7:08:6C:7F:E5:73:07:CB:C7:2C:B2:A7:AB:B8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #295: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:ea
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:03 2017
            Not After : Wed Aug 02 15:19:03 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:f8:50:d6:0e:f5:19:9c:c6:eb:7d:88:55:fd:7e:52:
                    3c:1d:85:86:a2:7c:19:35:db:d8:f6:53:d2:a5:4e:59:
                    ab:9e:92:49:a6:bd:0e:f5:7f:92:bd:49:8e:59:aa:02:
                    9f:a6:ac:b6:27:50:7c:06:c7:4f:53:3b:d4:74:e3:6f:
                    89:69:53:bd:55:a5:21:ba:51:4d:f6:eb:ef:7d:8f:d5:
                    ae:22:c4:a3:c4:06:b4:a9:96:c3:e2:2f:8a:44:3c:8a:
                    e2:c0:79:ed:3d:97:b7:5f:a9:9d:72:a3:68:79:82:8a:
                    a8:ab:bc:e8:eb:ed:85:75:59:7c:00:c5:67:ee:89:bd:
                    0c:48:93:59:47:e8:f3:a6:16:75:d2:45:7f:7d:23:18:
                    0d:b5:69:a1:a9:4b:2d:b9:86:57:cc:5f:47:7b:66:90:
                    79:6b:a6:50:92:b1:e5:90:59:4a:4c:26:3f:7c:52:71:
                    8e:09:c0:e4:6b:90:1e:65:74:01:3a:57:7a:96:e5:ac:
                    dd:3d:a8:6e:5a:7c:71:68:81:e5:1f:aa:d5:14:21:63:
                    6b:c9:ad:dd:e7:7d:0e:e3:ce:7c:19:c9:11:9e:f2:38:
                    52:3a:ba:4d:fa:73:c5:e1:e2:b9:a2:43:67:1b:6d:b2:
                    64:18:1f:d3:56:61:6c:ae:60:10:70:44:16:a5:11:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        32:bc:12:28:44:a1:42:94:62:8a:20:6e:30:51:c5:09:
        c4:93:44:c6:18:2f:c1:09:ae:c2:4c:ab:49:ab:1f:9f:
        e2:fb:fc:8c:6e:69:42:37:d5:ab:7e:92:91:44:e4:04:
        15:a7:b8:a5:03:86:73:11:d7:cc:ec:9b:45:30:eb:9c:
        d4:a7:c5:fc:7c:e5:6e:80:db:f8:55:02:fc:f9:63:53:
        7d:bc:da:44:88:f6:28:6d:c2:51:49:fe:ae:35:ef:0b:
        9c:df:b1:9c:26:3d:51:3b:24:95:53:15:5f:ef:60:bc:
        66:7f:4e:61:a6:7b:6f:96:b0:39:b3:5b:ec:84:07:e1:
        b9:42:9d:5c:43:4a:a9:fd:23:12:90:17:fb:c7:e9:20:
        81:75:72:ab:84:46:16:24:2e:bb:9b:c2:e8:bd:b3:44:
        9f:79:3e:6a:ec:4e:ba:07:5d:d2:d2:ca:7d:7a:ff:48:
        e0:a6:37:a8:79:27:4c:80:e6:30:c1:69:b5:eb:fd:7b:
        bd:cf:d3:1f:16:9e:8c:82:cf:dd:65:18:7a:04:78:08:
        58:34:ab:be:64:09:9a:af:f2:40:62:d8:bd:5f:e3:81:
        11:f5:a9:ad:eb:60:f5:e0:84:9b:09:8f:ca:8a:f2:a1:
        c1:2c:c1:6b:f1:66:e8:1c:51:34:a1:cd:ee:cc:5f:0e
    Fingerprint (SHA-256):
        37:4D:5C:92:6B:AF:9B:58:66:7D:C1:7D:E5:CC:70:45:77:8D:42:E9:41:5E:F5:66:56:67:2B:63:67:73:A9:D5
    Fingerprint (SHA1):
        D1:7A:35:30:E4:8A:DF:FA:73:64:45:DB:B9:AD:FC:C4:9B:24:4D:44
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #296: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:ec
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:04 2017
            Not After : Wed Aug 02 15:19:04 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:15:88:1b:fa:90:c8:f3:6d:bd:c8:eb:82:3f:16:c3:
                    83:be:fa:8a:7d:5d:60:e6:4f:43:b4:f4:e5:bb:87:07:
                    b8:df:3e:61:2b:38:bf:a8:e1:1c:6b:77:bb:00:8b:7d:
                    8a:36:23:1f:ed:ca:fb:ad:b4:00:7a:89:6b:3f:77:70:
                    60:f1:3a:db:94:10:a8:26:79:54:3a:3b:eb:c9:72:b2:
                    04:ab:1d:a7:be:5e:ea:d2:9b:b0:1e:5e:5e:16:2a:22:
                    f7:24:e7:d6:0d:30:0b:ca:e0:83:16:48:fe:15:7b:e2:
                    d3:4e:ca:83:a5:d6:1d:f3:c1:f4:2c:ff:9f:52:77:57:
                    e5:c1:8e:a2:24:6d:bf:0d:76:c0:dd:c2:d0:1f:d5:24:
                    cc:22:f6:84:aa:bc:e0:a8:0c:e1:ce:8e:32:e5:76:5a:
                    07:c4:23:ea:a4:53:90:9e:ba:1b:86:92:47:13:27:56:
                    d8:9a:6b:32:f8:98:34:37:53:bf:1b:bc:7b:77:54:80:
                    25:13:43:23:c1:98:43:7a:b9:8c:c3:de:f9:90:7e:d9:
                    14:aa:27:4c:91:5e:85:54:fb:41:40:10:97:7f:bb:cc:
                    2e:3f:b3:e7:6a:10:25:39:f6:f4:44:32:ea:d8:b2:6d:
                    72:04:a1:fd:85:1f:e8:a6:c4:82:18:c1:d6:aa:17:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:11:a3:4b:85:8a:0e:b3:23:11:3c:fe:49:e4:dd:fd:
        60:a2:5e:28:74:08:97:42:87:ed:01:c5:15:7e:72:8d:
        b8:d0:1b:02:0f:70:9a:3c:b4:b4:57:56:88:53:db:f7:
        de:aa:bc:1a:77:fd:2c:fa:5c:15:44:53:e9:49:e4:5c:
        e3:4a:28:f8:3b:79:46:cf:3d:69:eb:4a:a7:42:33:cb:
        b9:db:2b:28:cd:de:26:8b:c3:37:8e:31:8b:4d:7d:ec:
        dd:d7:4a:91:16:17:e0:b9:7d:b8:3b:2d:5d:3a:ef:aa:
        c7:aa:5b:e0:82:f7:8f:15:55:1f:20:ab:46:1a:b9:7c:
        93:bf:f2:1e:b7:9f:1c:31:49:8d:f3:ce:a9:cc:8c:fd:
        37:2e:c6:48:5d:b2:e2:b6:09:e1:b5:e1:83:5e:a2:86:
        dd:c0:ad:50:c5:55:81:df:6f:0e:82:29:2d:cd:2a:f8:
        83:a4:73:f6:9e:04:17:65:de:11:35:43:ed:c7:cd:cb:
        4c:72:2b:24:4a:d2:d8:9e:92:a1:d9:f5:e4:6b:3d:74:
        b7:d9:b5:46:f0:41:a4:a9:25:53:75:66:55:ec:da:51:
        c7:e3:1f:3a:1e:11:5a:b2:69:41:b4:6f:74:9c:42:86:
        25:b6:71:0e:f2:ba:e8:a0:bf:e0:c7:30:3d:8a:6d:43
    Fingerprint (SHA-256):
        91:E2:99:9D:3D:6C:72:99:A7:B2:66:8C:A1:4C:7D:85:52:6A:43:08:B2:90:AE:CD:23:75:04:12:38:77:0F:B9
    Fingerprint (SHA1):
        28:3F:D7:4A:6E:2F:5B:1D:EC:88:95:EC:CC:ED:C9:38:02:60:DB:01
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #297: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:ed
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:04 2017
            Not After : Wed Aug 02 15:19:04 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:ba:dc:bc:bf:40:60:43:5c:d4:6b:a7:96:0b:bf:5d:
                    70:18:95:2f:3e:08:26:b5:ee:e4:f5:f2:06:4e:fc:a1:
                    a8:74:87:95:6c:a3:91:41:30:70:d9:9f:28:0c:2b:00:
                    2f:4b:6e:f2:9f:b5:07:eb:97:11:1e:28:ab:b7:d1:25:
                    7f:24:71:58:2d:8e:f9:ad:a7:4e:e7:16:3d:f7:44:1d:
                    80:c5:45:be:4c:52:e0:25:a9:0d:9b:0c:4c:ff:68:0f:
                    15:30:b6:9e:d1:09:82:18:e4:8c:31:45:8e:e1:17:43:
                    1f:01:4b:75:91:90:ec:b4:14:7a:92:ea:35:99:b5:c7:
                    62:53:97:df:9d:10:fb:a5:dd:28:76:09:48:80:ab:58:
                    00:6e:3d:a5:86:bf:d4:bd:2e:b0:30:fe:c0:5f:bf:ec:
                    5b:5b:0d:cc:79:f0:96:89:06:d6:25:6b:27:36:64:09:
                    d0:ba:40:49:fd:53:64:31:64:8c:bb:98:b1:3f:1e:25:
                    31:5f:b4:51:78:cd:4f:aa:c6:7c:56:dc:a2:55:21:b9:
                    6c:87:80:a7:59:01:b7:22:50:c5:90:0b:d0:fc:9c:f4:
                    50:8f:1b:cc:e6:6e:d5:a6:0e:c3:9d:eb:24:cb:05:6d:
                    54:b9:72:60:a5:0a:75:11:a7:80:b7:19:c5:5f:22:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:88:41:9f:01:38:e3:83:07:d0:eb:ae:46:be:1a:d9:
        a6:f1:f3:5c:fb:22:0a:3a:8a:a5:5c:e7:40:e8:c7:d2:
        65:95:9f:3f:1b:6f:1f:c5:5d:48:50:7f:7b:30:ab:f8:
        14:7e:99:ae:8d:30:76:60:f9:d2:48:45:7b:33:16:17:
        d8:27:a9:1c:7b:ed:35:54:e9:a1:33:8f:67:86:84:59:
        3a:ac:b7:a6:3b:84:ec:4b:ab:c0:f9:de:f0:06:b8:62:
        9e:13:c1:f4:a6:50:05:9f:13:14:91:27:52:5a:91:1e:
        a3:3c:f6:8f:d4:8d:32:69:9a:f0:56:63:f8:85:30:f7:
        95:67:e5:35:c1:d7:a5:eb:98:80:9b:3a:aa:72:26:4d:
        b4:30:6d:47:db:1d:2f:06:e9:2e:ca:ae:03:60:1f:6b:
        bc:c8:9a:ba:26:ed:36:6e:96:d0:3f:1a:68:a8:13:51:
        6d:fc:62:8b:fb:ce:cb:fc:f6:5d:29:74:83:38:75:1a:
        41:e1:d5:53:cc:b3:47:95:10:ca:8f:b4:96:b9:57:87:
        ac:5f:52:1a:e2:bc:e8:6f:d9:70:3c:10:f7:09:98:ad:
        d7:7f:2c:29:fa:55:dd:40:f2:66:4d:b4:ad:f3:78:d6:
        3c:7b:06:d7:0e:67:a2:9e:a6:50:db:3a:32:45:23:e0
    Fingerprint (SHA-256):
        62:0C:31:2C:E7:F1:E8:FF:5E:ED:83:B8:35:85:75:B4:F7:09:7A:1C:7D:73:E9:A9:5C:6B:FE:25:E3:F7:A0:29
    Fingerprint (SHA1):
        0F:10:1B:4A:4C:B3:08:AC:EE:E0:BD:E5:A4:EE:94:44:9F:85:F4:1F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #298: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:ed
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:05 2017
            Not After : Wed Aug 02 15:19:05 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:05:89:89:71:68:ca:5e:d5:5b:a7:8c:d9:b7:44:43:
                    aa:86:48:e2:69:34:94:4e:50:74:20:73:03:7e:7a:97:
                    67:d4:6c:0c:16:20:5a:70:6d:cf:7c:21:b3:37:db:9c:
                    b3:5e:14:f0:08:70:b0:af:9b:7b:fe:93:c2:08:eb:a1:
                    ff:2c:8f:45:11:62:7c:e7:8e:08:1e:39:87:5b:77:11:
                    1a:56:3b:46:62:f3:93:b1:9d:7a:2b:39:9c:85:dd:50:
                    74:7f:95:2f:5d:71:e1:0e:4b:f4:3b:fb:6e:0c:cb:c7:
                    90:19:81:a4:4a:84:e9:79:b5:4e:f9:98:c2:46:2a:d4:
                    ea:94:b8:8a:3f:34:31:56:d2:92:ad:a1:f2:8d:43:39:
                    26:22:bf:e8:18:7b:0e:e1:af:5e:d2:54:59:13:a1:2a:
                    72:19:8e:08:ec:5b:96:24:ee:1c:9d:df:c3:05:3f:fd:
                    39:23:be:bd:36:94:70:c3:23:28:5f:53:ff:21:f2:f4:
                    ae:75:db:92:93:b9:d3:e5:73:a7:58:c9:81:35:1e:ba:
                    d5:0a:88:cb:d8:28:56:2d:41:fe:aa:62:cc:16:b9:a5:
                    7a:70:6e:b4:bc:de:a0:15:c3:a2:f0:56:1c:c8:1d:57:
                    32:2b:ea:c6:a1:16:a8:6e:b7:4e:67:31:da:26:a4:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        20:b8:dc:00:ab:e8:77:1f:68:29:fb:bc:2c:9d:17:bd:
        6a:30:62:0b:f4:61:44:0b:70:c3:f1:7d:a2:17:23:0b:
        bd:01:2f:d7:77:02:53:08:f1:fd:d3:32:96:6e:a1:86:
        b6:4c:fe:f5:c2:8f:05:b8:e4:df:a9:2e:64:a4:e8:73:
        1d:55:de:43:e3:7c:82:ee:c5:32:b3:c1:4f:89:1c:6f:
        63:d3:e5:02:89:17:70:04:fa:98:af:98:d7:50:24:2c:
        b0:e6:c4:57:65:f9:97:4b:19:33:78:8b:aa:e5:3e:e8:
        b3:28:f9:0a:a3:0c:9b:dd:19:b9:3c:cc:4c:be:4f:de:
        78:03:44:ba:f9:ab:cb:ce:9a:5d:0c:5d:f9:6e:60:5b:
        4d:1d:ec:73:8e:72:c8:03:3f:ba:4b:27:c2:5e:d9:ac:
        5b:5d:e4:ef:b4:79:0c:24:72:0a:8d:61:e6:70:3d:a7:
        31:62:e9:24:3b:98:ad:cc:f5:5c:70:b1:54:c0:29:2e:
        af:e9:ec:2f:55:7d:b4:34:67:50:96:1f:17:50:3a:40:
        4b:d3:b6:4a:22:fd:39:a3:12:a5:ca:bf:9e:9c:a2:0d:
        3a:7e:a0:22:af:88:60:fd:28:e8:db:41:e9:18:51:2d:
        95:9a:43:6a:35:b3:33:67:67:1a:8d:2a:7b:00:ff:90
    Fingerprint (SHA-256):
        E3:35:34:0C:ED:CC:D3:60:43:7B:A7:59:45:B8:1E:BF:9B:35:B1:16:DD:E6:F3:36:1C:AB:DE:3B:D6:39:C9:F6
    Fingerprint (SHA1):
        AA:53:EC:DC:DE:6A:84:78:89:E4:A9:B3:6F:5C:1B:77:6C:C6:B0:85
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #299: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:ef
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:19:06 2017
            Not After : Wed Aug 02 15:19:06 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:08:ef:fa:52:3f:d7:c9:6e:d3:82:0d:fb:db:05:6a:
                    47:c0:3f:b2:5e:6f:2e:94:16:d5:41:0a:00:0a:44:cb:
                    4e:c9:1c:ac:2c:20:48:80:4a:b9:ff:ab:fe:6e:75:a8:
                    0d:e7:a8:4b:59:31:21:b1:1c:06:89:56:93:56:33:f5:
                    04:6b:8a:7b:4e:c9:d2:26:ab:b8:60:58:c5:09:9a:cf:
                    1a:7a:56:47:36:e2:f5:a5:27:8f:89:bd:9b:ff:31:41:
                    d7:c9:86:62:d0:fb:94:ff:2c:b8:e8:57:7d:a3:ad:2c:
                    44:23:01:78:04:a6:5e:6e:4e:b4:2a:d1:46:55:dd:e0:
                    a9:e1:d1:24:c2:d8:01:02:af:1f:be:fa:4c:63:e3:7e:
                    cd:8f:2d:0d:35:df:1f:f2:2c:b9:5e:12:e5:4d:58:23:
                    ca:73:0a:f8:a2:de:62:98:cf:49:68:91:5a:d2:a0:9f:
                    fd:f5:7d:76:55:89:5e:4f:db:8a:da:02:c5:d4:38:7d:
                    e6:dd:8f:7e:cd:12:54:f9:b0:a5:18:e0:b5:fd:d8:ec:
                    fa:25:76:09:98:6a:25:2d:e1:b3:57:d7:85:55:14:be:
                    85:0c:ff:c2:77:22:97:4e:fa:22:3f:fc:5a:a9:24:d8:
                    0e:35:e5:68:70:9a:3d:a0:0e:5c:49:b5:fa:59:01:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:b2:d5:19:1a:fc:59:8a:12:55:21:96:7f:8e:77:25:
        bb:af:3f:6e:97:b1:19:dc:a6:ce:ce:3c:22:17:7e:10:
        a5:fb:79:67:b2:3f:77:b7:17:92:73:f0:98:dd:99:8e:
        30:a0:d3:cb:14:1b:56:16:8b:fe:1f:fb:aa:b1:59:03:
        88:dc:a4:a8:8a:6d:8b:f4:8b:f6:3c:e5:eb:d1:75:fb:
        80:ae:70:1d:4f:3e:c7:a0:20:28:f2:82:51:36:27:ba:
        38:82:ba:1b:4f:aa:dd:4d:2c:b6:a2:6b:3f:9b:8e:3a:
        58:d9:89:6c:96:4c:52:6c:80:7b:d0:c2:4a:ab:46:f5:
        28:8e:9d:58:35:7a:da:e6:d6:b2:fd:a9:35:cf:61:b2:
        28:d1:08:55:31:14:78:e8:95:4b:75:a0:c0:4e:85:92:
        16:13:5d:8f:ab:41:5a:21:a7:99:d2:b5:50:b5:b7:ad:
        e0:1a:60:8b:62:91:af:2c:78:e2:a8:5c:73:ed:53:77:
        18:89:06:cb:3c:c4:75:73:03:19:be:56:ef:a2:39:85:
        5e:a0:02:39:47:c8:3a:fa:c0:16:17:8c:ea:66:cc:47:
        96:b1:73:a4:d1:a5:74:cd:f8:58:49:e7:f1:84:56:4e:
        28:f5:f9:cc:65:01:30:fb:f1:39:f1:14:61:ae:e6:e0
    Fingerprint (SHA-256):
        46:63:A5:19:9C:2E:46:8E:C4:F1:94:2C:5F:8E:27:5C:8F:76:C7:B0:11:69:E6:63:89:3E:83:19:2D:12:D5:96
    Fingerprint (SHA1):
        44:21:24:30:0B:DA:D8:80:C2:73:8F:53:D1:B1:8D:EC:34:EE:ED:BF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #300: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #301: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #302: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #303: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:f2
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:19:07 2017
            Not After : Wed Aug 02 15:19:07 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:ca:62:ed:63:88:a6:85:1d:42:49:d5:f0:98:92:c6:
                    37:d0:1c:e3:92:d8:8d:1d:d8:82:d0:3e:e6:bb:78:41:
                    a8:1f:f9:15:09:9b:44:0d:f0:59:d2:27:84:06:99:d0:
                    4a:24:3b:35:bc:89:ee:1a:80:7a:74:6e:9b:97:72:99:
                    ce:3e:94:e7:87:21:5b:4d:66:81:d1:bb:bc:51:0d:39:
                    89:18:3a:cb:36:1d:b2:a5:72:4c:93:ec:29:d1:e6:ab:
                    2a:0a:9f:22:f5:4e:3d:a2:8a:68:d5:e3:c0:18:77:68:
                    3d:03:c9:a7:95:c6:73:75:af:85:8f:2f:82:7f:e5:68:
                    2b:59:e0:d0:ee:9b:a2:53:0f:34:fb:83:d6:76:46:5b:
                    1e:26:fb:8c:7b:ae:48:50:27:9e:e0:c0:3b:8c:6c:77:
                    bc:14:60:3e:fb:88:71:68:c1:34:f4:f8:7f:82:a4:f9:
                    eb:0b:eb:d8:37:7a:c1:c5:64:3c:2a:ac:7a:5e:b6:a6:
                    d6:26:06:1f:3b:ea:23:bc:47:53:bc:40:c8:57:a1:72:
                    f3:8e:0d:ee:41:16:d0:ec:0a:94:49:db:a6:ad:01:c1:
                    cf:0a:05:26:9e:6a:36:ff:5e:12:9e:98:2b:6e:79:fd:
                    ef:f0:6b:85:3b:72:dd:cb:71:a4:66:6f:dd:91:80:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:d8:f4:9a:d5:5e:7c:6d:81:ae:a6:00:92:53:8b:eb:
        cd:a8:74:f3:20:f8:37:9d:9e:fb:09:56:69:3a:1c:51:
        4b:bf:70:89:a2:b2:62:29:6e:a5:bd:d6:0e:4c:75:6b:
        0d:b3:0a:0c:58:a2:48:43:3c:89:ac:a1:d9:a7:af:e0:
        94:3b:f0:73:58:1f:1b:c6:64:f0:62:4f:10:18:be:80:
        0e:4f:d5:89:ef:04:f7:5e:fd:56:4b:c1:70:c6:65:52:
        41:d4:92:ca:ae:7f:58:55:7d:27:fc:57:22:63:5e:04:
        63:3c:54:2c:3f:53:4a:b2:17:fd:e7:1b:b8:37:ea:4b:
        c4:99:4a:fe:69:bd:ef:67:41:ef:2d:a6:0c:27:05:8c:
        9c:c8:09:da:4b:f8:c2:32:3c:72:5e:9e:e8:bf:e6:11:
        56:51:88:03:cc:c9:f0:80:e6:78:f4:da:c4:01:42:81:
        92:aa:40:d6:0e:36:e8:03:cc:57:92:b3:ec:5a:ff:5e:
        40:74:29:ae:b5:2a:b6:98:10:cf:2e:21:c8:e9:9c:5f:
        22:32:81:76:96:c7:a8:34:d2:a8:49:df:53:d0:bb:ca:
        0b:e0:d0:47:2d:20:bc:4d:d6:ca:27:0f:db:12:27:12:
        eb:53:29:b6:1b:bd:9b:98:6b:58:b4:52:e6:e2:e7:ec
    Fingerprint (SHA-256):
        66:05:14:5A:7C:BC:AA:C2:41:67:8B:A0:E2:2E:83:4B:C4:13:F4:82:4C:81:B8:8D:43:B2:EB:94:13:F9:57:07
    Fingerprint (SHA1):
        03:ED:16:73:1A:B4:75:4D:3C:16:D6:49:50:3D:E0:1D:83:D7:D8:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #304: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
cert.sh: #305: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #306: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #307: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #308: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #309: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der: error 0: Success
cert.sh: #310: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #311: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:81:f5
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:19:09 2017
            Not After : Wed Aug 02 15:19:09 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:f2:eb:12:e7:38:3e:c3:45:a1:70:a9:bd:8e:3d:bb:
                    f7:95:46:98:6d:57:bb:0a:18:ec:6e:50:e0:4e:f5:ed:
                    05:b5:a3:5a:aa:60:dd:b1:b6:1c:65:b3:f5:7c:a0:10:
                    19:d2:08:74:46:f5:53:99:04:bd:73:bf:e6:d1:74:b5:
                    33:21:d2:de:da:d8:c6:d6:a0:94:54:15:08:b9:a3:e4:
                    ca:2a:c2:5a:dc:ee:78:f0:59:a5:57:5b:ae:3b:7e:9a:
                    38:45:05:f5:f3:af:77:71:a1:40:0a:c4:08:d9:fb:ba:
                    28:42:65:5d:2a:84:58:5f:6d:27:94:c8:38:62:70:e3:
                    e2:55:32:1c:62:48:53:f5:44:17:ae:91:33:47:ac:2e:
                    08:db:eb:88:61:ef:f0:cc:3b:58:fa:4a:a3:48:73:a1:
                    9f:cb:ed:d1:4d:0b:3d:c9:9f:88:7d:8c:ee:43:e9:a7:
                    be:22:eb:fc:17:53:43:9c:e1:ea:ea:94:1d:58:6e:ea:
                    43:e9:a9:8c:0c:65:bf:36:21:77:29:f6:2a:c4:89:57:
                    03:0d:eb:24:66:eb:5b:fe:fd:12:a4:b1:4e:ee:d0:a2:
                    ab:a1:50:51:5b:6f:f1:9a:57:ae:7f:63:d9:08:7a:6f:
                    58:a5:b4:4b:52:66:08:68:26:40:be:fe:1b:47:45:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:9d:d4:5c:98:4b:46:25:34:e6:86:f7:54:fe:d7:33:
        21:9a:64:a6:08:d2:5d:31:77:72:92:a3:97:d4:9b:c7:
        15:c9:75:9c:2e:4c:9c:a4:8c:a5:a3:ea:73:9d:23:e6:
        d5:a1:45:25:03:da:7c:32:a2:64:cc:bf:16:ce:1a:51:
        a8:cb:c8:33:49:9f:72:f5:2c:d0:86:0b:03:cb:f3:36:
        51:a5:fc:da:9e:7e:be:f6:b4:ad:fa:62:43:c9:4f:e2:
        ed:01:31:80:3b:37:e6:3e:38:a6:ca:3e:35:1f:05:94:
        2e:68:b0:b5:f1:fe:ce:b9:b1:1d:f0:b3:c6:e5:b2:0d:
        c6:ef:62:19:4a:bb:13:b2:e5:57:6d:d8:c1:d1:ff:05:
        95:a5:74:e4:f2:10:cc:89:cf:80:c2:ef:ba:6c:3f:dc:
        d8:25:d9:57:89:27:f9:57:40:be:21:e9:5c:44:3d:da:
        03:07:ee:b3:30:3d:21:13:4f:6d:68:0c:15:22:57:34:
        9b:86:a3:20:db:92:9f:fb:05:b3:20:70:1d:84:f4:8b:
        95:26:7c:05:28:93:8f:4f:89:7b:60:55:13:c3:77:6a:
        c5:90:47:5c:55:bf:f1:2f:26:8c:c2:a1:de:71:69:00:
        4e:17:83:02:26:bc:bd:6c:bc:cb:62:68:01:e3:30:d0
    Fingerprint (SHA-256):
        CC:B2:E2:CA:8E:D4:09:22:88:13:03:1D:C7:88:51:7E:0F:75:00:DF:84:34:8B:6B:83:69:D7:D0:88:36:0F:1F
    Fingerprint (SHA1):
        EE:10:D6:30:86:11:15:9A:00:6C:35:4A:26:D2:91:7B:F2:96:53:91
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #312: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #313: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #314: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.pw
cert.sh: #315: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #316: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #317: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -o root.cert
cert.sh: #318: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #319: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #320: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #321: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #322: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #323: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/TestCA.ca.cert
cert.sh: #324: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #325: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #326: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #327: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #328: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #329: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #330: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #331: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #332: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #333: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #334: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #335: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #336: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #337: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #338: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #339: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #340: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #341: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
cert.sh: #342: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #343: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -o root.cert
cert.sh: #344: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #345: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #346: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #347: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #348: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #349: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #350: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #351: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #352: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #353: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #354: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #355: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #356: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #357: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #358: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #359: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #360: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #361: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #362: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #363: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #364: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #365: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #366: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #367: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #368: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #369: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #370: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #371: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #372: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #373: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #374: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #375: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #376: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #377: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #378: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #379: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #380: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #381: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #382: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #383: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #384: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #385: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #386: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #387: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #388: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #389: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #390: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #391: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #392: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #393: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #394: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #395: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #396: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #397: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #398: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #399: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #400: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #401: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #402: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #403: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #404: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #405: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #406: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #407: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #408: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #409: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #410: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #411: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #412: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #413: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #414: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #415: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #416: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #417: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #418: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #419: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #420: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #421: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #422: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #423: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #424: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #425: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #426: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #427: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #428: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #429: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #430: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #431: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #432: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #433: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #434: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #435: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #436: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #437: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #438: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #439: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #440: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #441: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #442: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #443: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #444: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #445: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #446: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #447: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #448: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #449: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #450: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #451: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #452: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #453: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #454: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #455: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #456: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #457: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #458: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #459: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #460: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #461: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #462: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #463: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #464: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #465: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #466: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #467: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #468: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #469: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #470: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #471: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #472: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #473: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #474: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #475: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #476: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #477: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #478: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #479: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #480: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #481: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #482: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #483: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #484: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #485: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #486: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #487: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #488: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #489: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #490: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #491: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #492: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #493: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #494: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #495: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #496: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #497: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #498: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #499: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #500: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #501: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #502: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #503: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #504: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #505: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #506: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #507: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #508: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #509: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #510: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #511: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #512: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #513: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #514: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #515: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #516: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #517: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #518: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #519: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #520: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #521: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #522: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #523: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #524: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #525: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #526: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #527: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #528: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #529: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #530: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #531: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #532: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #533: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #534: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #535: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #536: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #537: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #538: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #539: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #540: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #541: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #542: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #543: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #544: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #545: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #546: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #547: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #548: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #549: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #550: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #551: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #552: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #553: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #554: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #555: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #556: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #557: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #558: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #559: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #560: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #561: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #562: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #563: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #564: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #565: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #566: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #567: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #568: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #569: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #570: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #571: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #572: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #573: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Tue May  2 15:19:41 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Tue May  2 15:19:41 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #574: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #575: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #576: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #577: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #578: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
dbtests.sh: #579: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
dbtests.sh: #580: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #581: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/emptydir/key3.db" does not exist.
dbtests.sh: #582: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtest: function failed: SEC_ERROR_LEGACY_DATABASE: The certificate/key database is in an old, unsupported format.
dbtests.sh: #583: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #584: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
dbtests.sh: #585: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db" is not writeable.
dbtests.sh: #586: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 May  2 15:19 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir
-r--r-----. 1 mockbuild mockbuild   1221 May  2 15:19 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1424 May  2 15:19 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    579 May  2 15:19 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 May  2 15:19 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 May  2 15:19 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 229376 May  2 15:19 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/cert8.db
-r--------. 1 mockbuild mockbuild 118784 May  2 15:19 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/key3.db
-r--r-----. 1 mockbuild mockbuild    393 May  2 15:19 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/req
-r--------. 1 mockbuild mockbuild  16384 May  2 15:19 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ronlydir/secmod.db
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #587: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:54 2017
            Not After : Mon May 02 15:18:54 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:33:bc:50:cc:dd:a8:04:c7:be:6b:d1:4f:c2:ab:e4:
                    7b:93:34:fd:cf:49:97:18:28:6c:ce:67:7c:33:02:9e:
                    be:3b:2c:8e:b1:fb:0b:0f:e6:6e:44:44:54:c1:d2:1d:
                    75:5f:b4:03:27:f8:33:b7:77:09:a4:b4:9e:66:ed:fd:
                    c3:4c:2d:d3:8a:ec:f0:48:14:0a:3c:12:e5:09:8b:5c:
                    82:16:48:4d:77:13:a7:46:fd:80:b7:55:ca:5f:1e:1f:
                    9f:0d:87:eb:49:b7:a3:a1:0f:5f:ac:5d:71:20:90:a2:
                    78:52:a6:89:e9:c0:36:79:f4:6f:b4:3b:95:9a:de:51:
                    19:82:3c:32:80:ed:d0:df:44:83:5c:90:d2:19:48:1a:
                    fb:34:64:a2:39:bd:45:3e:88:b4:b1:73:80:3a:99:f8:
                    76:71:7b:b7:3b:3c:14:b6:b1:2c:c4:0a:03:e3:50:b9:
                    c9:ec:ff:e1:e5:1d:63:99:23:40:15:68:c6:14:d4:f5:
                    74:4b:39:7e:3c:89:43:fd:b6:05:76:08:95:af:fd:1b:
                    49:a0:8e:87:4c:d1:9e:60:f8:c9:2e:ef:9b:8a:7f:69:
                    52:1c:ef:35:0a:30:a8:61:5e:cf:de:2d:be:9b:55:18:
                    a3:77:22:de:07:2c:19:c8:e8:ed:cb:7e:6a:cc:68:cf
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:29:79:8c:bd:97:14:c6:ce:c4:8c:79:7b:0b:d2:7c:
        85:26:ad:02:e0:af:7b:82:50:31:2b:3e:ce:84:5d:d2:
        58:19:fc:ec:84:03:68:69:ee:80:84:1b:9c:6f:11:ee:
        67:89:60:1b:ac:3f:a6:4c:0d:bd:c0:b8:cc:d7:7f:b6:
        b8:41:ac:cc:86:57:8b:1b:43:97:09:9d:17:83:38:ac:
        d5:45:5d:a5:7b:c1:c9:00:2d:44:fe:c4:9f:d9:a2:b4:
        c9:30:05:5a:21:15:e4:8f:d8:d4:2c:4f:bf:3b:fc:9d:
        20:cb:a2:ae:b6:f2:dc:0b:02:73:87:b0:bc:38:d7:89:
        4f:3e:78:af:f0:17:26:4c:68:a8:a1:83:c8:17:f6:86:
        a5:f0:3c:35:07:3d:7d:24:87:9f:25:73:eb:fb:5c:d5:
        ff:15:f4:ac:a0:84:88:97:5a:b8:e6:b1:1e:13:dc:40:
        a2:86:1e:f8:25:0e:0e:cb:d3:f4:85:3d:5d:c2:95:c0:
        a9:bb:81:f0:a9:11:d0:5b:71:f9:0f:e6:db:0d:80:03:
        67:20:8d:bb:a0:4d:3c:1a:bf:87:db:44:73:16:5c:a7:
        35:0a:f2:55:2d:6e:54:be:d9:d1:24:ef:7e:49:a3:c9:
        dd:72:ba:d2:0f:aa:07:6c:dc:c8:d3:a9:b0:5a:28:bd
    Fingerprint (SHA-256):
        B8:89:CE:D6:39:A3:89:E3:BE:44:D2:CE:4A:EB:0E:53:74:13:2C:DC:4E:7A:93:A3:CC:63:F1:52:5F:FE:E9:5A
    Fingerprint (SHA1):
        CA:3E:0D:20:BC:FC:5C:4E:13:29:C7:37:8C:7C:A9:6E:DD:D9:59:39
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #588: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Tue May  2 15:19:41 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:19:41 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #589: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d8:38:73:cf:47:70:77:35:3f:cc:28:40:30:77:48:94
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #590: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #591: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #592: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #593: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                33:84:14:51:75:15:ee:16:13:94:08:20:95:bb:9c:22
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:18:43 2017
            Not After : Mon May 02 15:18:43 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:c9:c3:f7:4e:e7:f5:72:c1:0b:0d:c7:84:08:21:
                    0c:29:bb:9f:45:4e:d8:c3:30:b7:43:f3:92:94:bb:1c:
                    8f:8c:12:2f:5c:2c:f9:9b:7c:be:3e:a5:8e:6e:ba:ba:
                    fd:ae:8f:68:97:62:2a:95:7d:18:85:96:97:d8:80:0c:
                    65:81:0c:00:a9:d1:66:de:4c:a2:ca:af:27:d3:71:b9:
                    16:d5:ab:f4:3e:07:4d:46:b4:7b:d6:15:f6:57:48:cd:
                    09:8b:08:d9:9b:5c:c3:5a:ba:b0:19:64:c5:0e:b4:fe:
                    17:6b:ae:ae:c6:97:aa:c4:40:6e:c6:a1:3c:f9:c8:54:
                    fa:31:fb:d1:d7
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:a3:4f:7b:df:53:44:b3:3d:f8:aa:
        61:ac:1a:eb:f2:fd:90:78:30:e1:f2:52:e6:5b:d4:10:
        b8:35:64:ff:ec:22:29:80:8c:8c:57:c8:db:da:ad:13:
        74:59:24:79:1d:1e:7d:c4:0c:00:a9:30:04:99:c9:ed:
        f4:12:73:27:bb:13:6e:02:42:01:8e:d4:74:85:46:98:
        a4:ca:71:4c:94:8b:a2:ed:39:77:a3:36:c5:9a:31:20:
        e8:6e:68:11:5a:36:b7:17:e7:8a:6d:56:67:18:fe:e6:
        a6:23:51:17:a9:3a:c2:9e:23:67:95:b4:37:ea:15:c6:
        6b:1b:61:e8:51:d0:89:64:73:26:0e
    Fingerprint (SHA-256):
        DB:1B:A1:98:69:1D:A8:C8:EA:A3:4F:D4:95:EB:FB:B2:16:EB:9E:29:67:ED:5C:9E:77:B5:8D:E4:69:97:1F:C4
    Fingerprint (SHA1):
        B9:6A:B8:C2:5F:08:7C:F3:B9:2C:38:B6:00:F6:CB:B0:1B:01:78:AA
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:18:53 2017
            Not After : Mon May 02 15:18:53 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:63:33:05:06:f3:6d:71:2d:49:fc:8f:02:c0:24:fd:
                    bd:51:c7:5e:90:6d:79:c9:79:6c:b2:41:4c:25:00:10:
                    08:c6:24:55:63:f2:68:18:9f:f3:36:0f:b1:91:9e:76:
                    01:92:0c:a4:a7:f6:23:1f:b0:75:e0:9c:71:77:c6:62:
                    00:cc:c4:f8:49:db:de:5f:7d:39:09:2e:f4:3f:c7:72:
                    e6:79:98:a5:b6:a1:80:82:af:9b:85:47:86:aa:75:17:
                    7f
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:cf:2d:c2:bd:12:e9:7f:16:7c:f5:
        d5:e5:43:78:b1:46:c3:0d:50:0d:ad:73:83:e2:7e:1a:
        d4:41:4b:b8:a9:35:33:19:65:5c:34:08:a0:83:4f:4d:
        b1:56:df:9c:5b:91:1a:78:07:4b:03:71:25:75:4c:8e:
        09:0b:6f:3d:bb:1a:b9:02:42:00:98:e5:99:1b:1a:2b:
        70:b0:4d:3a:dc:c5:a2:8f:0c:2b:29:8f:27:11:9c:a5:
        d3:94:00:16:c6:61:93:70:4d:82:76:88:0a:cf:15:0e:
        02:cf:02:19:4d:4d:4a:78:73:8d:43:2d:ab:dc:1d:a2:
        92:ba:a1:e5:d9:16:e5:e6:0c:e5:ea
    Fingerprint (SHA-256):
        22:A0:65:1E:8D:F6:F6:FC:8D:AF:55:FA:51:86:BA:D1:61:5C:62:3B:03:1F:2D:F1:62:08:6A:C6:4F:8E:8B:45
    Fingerprint (SHA1):
        9B:FD:92:46:69:03:66:6D:CE:04:9C:34:13:AD:B0:94:A5:E3:36:BE
    Friendly Name: Alice-ec
tools.sh: #594: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #595: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                74:5e:a3:14:14:6c:49:e8:82:b4:b7:d4:07:93:98:3f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #596: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #597: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #598: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                82:7e:b2:95:48:56:d8:86:7d:8a:1e:0a:a5:28:eb:50
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #599: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #600: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #601: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                6e:f1:28:76:2e:00:89:16:e4:55:11:70:36:5b:5b:a0
            Iteration Count: 2000 (0x7d0)
tools.sh: #602: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #603: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #604: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9e:0b:e9:d5:ce:60:c6:29:bb:21:d9:0b:33:e7:02:92
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #605: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #606: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #607: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                cc:b4:c4:23:62:37:5d:ff:7c:4b:ec:0f:71:17:03:f3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #608: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #609: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #610: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d8:22:12:b1:68:e4:b9:57:eb:13:d8:e1:e2:ff:b6:27
            Iteration Count: 2000 (0x7d0)
tools.sh: #611: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #612: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #613: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e1:13:f9:69:b4:3b:8c:2d:f9:33:4a:3e:f1:72:f0:e6
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:97:11:02:9d:7f:a1:cf:b3:e6:8b:e6:6f:8c:55:
                    98:c2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #614: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #615: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #616: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fe:9e:7a:d8:7a:11:0b:2f:50:a1:e8:49:2d:5a:85:10
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:11:82:b1:75:66:e3:17:61:1f:22:16:96:2b:36:
                    5b:07
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #617: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #618: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #619: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6f:23:73:47:39:20:e5:2a:ba:57:2c:08:ab:b4:ad:5c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:f6:a8:a4:8c:25:f1:a9:af:e3:a9:51:94:c8:5d:
                    80:6f
tools.sh: #620: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #621: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #622: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        53:0a:64:92:67:34:22:62:e5:d8:96:0f:92:a3:4e:fb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:44:c4:83:71:c0:b4:95:05:6a:68:cd:88:24:0b:
                    6b:dd
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #623: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #624: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #625: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        49:63:b4:3d:0c:75:b6:f3:74:07:2b:e3:3d:70:ff:f1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:c1:47:dc:90:c3:ce:42:af:4c:53:16:9d:a6:14:
                    4b:cc
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #626: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #627: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #628: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        eb:b7:95:9d:d9:9b:84:b8:6d:ec:28:bc:77:c3:33:eb
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:60:2b:ed:92:86:eb:bc:27:85:fd:95:a5:56:01:
                    02:74
tools.sh: #629: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #630: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #631: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        14:f7:dd:0d:eb:c0:0c:d4:ae:6c:c8:6d:3f:4b:f3:ef
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:1d:1e:b3:99:53:c0:de:6c:a9:62:b0:0b:ce:cd:
                    18:52
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #632: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #633: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #634: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ea:ef:58:78:c3:e9:b8:85:28:60:09:a8:cc:c6:b3:29
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:75:b2:8e:bd:e0:57:ee:7e:ac:cb:d4:11:a1:96:
                    ec:80
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #635: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #636: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #637: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c0:98:76:40:54:87:a3:ea:15:c4:98:b6:0c:ca:9c:9c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:23:77:0f:37:05:f8:38:47:87:3b:83:0b:8b:8a:
                    bf:04
tools.sh: #638: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #639: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #640: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ae:2e:46:2c:7b:2a:84:a9:86:5e:4d:06:88:35:91:01
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:96:9f:51:31:5f:dc:f7:e3:40:7b:42:c0:11:0e:
                    4d:2d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #641: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #642: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #643: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        71:57:af:4b:0c:9f:96:35:ed:83:be:58:62:a5:46:60
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:56:6a:f9:ed:63:1d:f9:2d:07:4f:67:40:87:09:
                    02:7f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #644: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #645: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #646: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        28:51:f2:32:41:1c:f5:b8:1c:80:bd:c5:77:d3:de:69
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:82:44:f1:89:91:2b:4b:8f:96:1d:d9:20:04:97:
                    ac:c8
tools.sh: #647: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #648: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #649: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f6:6f:3f:f2:09:c0:92:ea:73:08:50:c2:a8:70:39:cf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:d2:dc:4f:6b:9a:e6:e2:de:db:97:d9:2c:57:35:
                    13:db
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #650: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #651: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #652: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e9:3e:11:16:a3:e5:3e:67:74:13:30:ec:ba:22:27:9f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:2a:f7:70:30:af:88:d4:d7:1e:eb:18:9a:0b:01:
                    2d:9f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #653: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #654: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #655: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        96:56:a1:9d:c8:62:07:37:38:9a:91:50:ad:5b:5c:82
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:e7:51:5d:3d:e9:cc:45:72:13:0f:7f:22:98:74:
                    3b:6f
tools.sh: #656: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #657: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #658: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        d8:6d:7a:7c:2c:67:b2:14:3f:00:a8:77:ac:e5:49:22
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:d1:5e:05:3a:61:04:d3:2f:2a:35:32:65:ea:61:
                    a0:99
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #659: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #660: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #661: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ac:f3:e0:55:dd:ed:20:29:fc:19:03:4d:9b:7f:50:66
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:04:5b:82:3e:96:7d:e6:25:5a:8e:13:02:62:b2:
                    77:92
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #662: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #663: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #664: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f1:09:ed:83:f8:03:3f:3c:6a:1b:54:a1:8d:6d:85:85
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:2b:50:b4:6d:41:4f:4a:86:1d:47:cf:96:72:47:
                    57:2d
tools.sh: #665: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #666: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #667: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                76:0d:f4:7a:54:72:73:01:c1:f3:5d:d2:b0:3c:b6:d0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #668: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #669: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #670: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                a5:94:83:09:1b:72:6d:2d:ed:16:44:d4:e8:69:b7:10
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #671: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #672: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #673: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                73:ae:74:48:60:81:0b:c9:5c:cc:1e:65:04:d2:bc:6e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #674: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #675: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #676: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                34:9b:3f:5b:86:4d:98:dc:cb:5b:ea:eb:4b:fb:57:05
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #677: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #678: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #679: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                4e:c2:fe:3a:ca:fd:d5:bf:e7:d7:c4:ac:fa:40:60:ca
            Iteration Count: 2000 (0x7d0)
tools.sh: #680: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #681: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #682: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                3c:bb:5b:54:90:62:a0:25:d2:db:2f:2a:68:a5:c9:0f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #683: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #684: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #685: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                b1:85:26:cc:f7:43:96:9b:21:c9:e4:0d:66:14:55:75
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #686: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #687: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #688: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                68:7d:58:10:f4:fb:8d:74:77:a3:ee:75:f4:bd:2c:67
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #689: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #690: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #691: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                89:49:5f:1e:69:9a:55:de:96:38:bc:e1:7f:58:3d:ca
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #692: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #693: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #694: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                7a:e6:e7:4b:e5:73:fb:72:c1:4f:23:0f:d4:ee:c5:f6
            Iteration Count: 2000 (0x7d0)
tools.sh: #695: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #696: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #697: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                61:3f:a5:b0:70:fa:19:79:13:51:8f:26:25:40:d8:4a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #698: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #699: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #700: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                95:36:7a:0a:55:61:9f:92:41:18:ee:31:c6:f0:d6:e9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #701: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #702: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #703: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                1e:05:3f:a1:a1:77:88:3b:66:eb:fa:2b:d3:d4:c7:16
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #704: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #705: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #706: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                64:c2:5a:59:db:f2:56:59:37:2e:05:19:50:c1:ef:1c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #707: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #708: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #709: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                92:13:b0:a9:ef:4e:5f:c9:91:66:55:91:b9:d9:f2:ac
            Iteration Count: 2000 (0x7d0)
tools.sh: #710: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #711: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #712: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                85:28:f1:98:86:d5:be:8c:77:2c:25:61:4a:36:8d:59
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #713: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #714: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #715: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bd:3f:75:24:90:97:cf:81:c5:56:b1:60:ef:97:f9:03
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #716: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #717: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #718: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f8:83:cc:d4:50:51:19:cb:4d:52:d1:e6:5f:3d:8b:fc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #719: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #720: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #721: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                0a:24:8b:52:b4:52:b0:2c:ec:a0:32:29:85:2f:94:bc
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #722: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #723: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #724: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                25:bb:d4:ef:09:5f:79:ea:b6:c8:b2:03:ed:23:13:79
            Iteration Count: 2000 (0x7d0)
tools.sh: #725: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #726: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #727: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b4:61:b8:0c:26:68:5f:6a:2a:28:da:0a:a4:22:10:c3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #728: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #729: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #730: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fc:81:41:67:25:ed:59:ae:16:7b:5c:2c:ba:03:01:b6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #731: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #732: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #733: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9f:31:bd:38:97:52:79:4b:ee:41:11:3d:83:79:45:1f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #734: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #735: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #736: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d4:43:b5:46:10:fb:cb:d7:23:62:b8:ec:73:a3:8b:cd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #737: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #738: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #739: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ac:83:c2:e3:f3:d7:6f:4d:a3:de:1f:ff:86:cd:ef:e8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #740: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #741: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #742: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9b:89:fc:52:31:a0:37:02:f2:81:dd:b6:8b:39:b9:6d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #743: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #744: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #745: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bd:7a:87:62:0e:df:89:eb:ba:0e:4f:32:06:80:6e:bb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #746: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #747: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #748: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                be:5d:a6:c9:50:e0:50:0b:1e:7a:0b:1e:b1:53:69:0d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #749: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #750: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #751: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e0:1b:e6:0a:d9:b5:b7:8c:00:e6:19:83:77:4e:83:14
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #752: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #753: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #754: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                e4:da:2c:28:17:0b:60:95:3f:fa:cc:4a:fc:ff:00:24
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #755: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #756: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #757: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #758: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #759: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #760: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #761: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #762: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #763: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #764: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #765: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:19:49 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:19:49 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #766: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #767: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      d6f70cde6db44a0620a4442d6ef78f4ec4395499   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #768: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #769: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #770: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #771: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #772: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #773: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #774: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #775: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #776: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #777: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #778: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      d6f70cde6db44a0620a4442d6ef78f4ec4395499   FIPS_PUB_140_Test_Certificate
fips.sh: #779: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #780: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #781: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #782: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #783: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      d6f70cde6db44a0620a4442d6ef78f4ec4395499   FIPS_PUB_140_Test_Certificate
fips.sh: #784: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #785: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #786: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle
Changing byte 0x00042cf8 (273656): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/fips/mangle dbtest -r -d ../fips
fips.sh: #787: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:20:02 UTC 2017
Running tests for sdr
TIMESTAMP sdr BEGIN: Tue May  2 15:20:02 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v1.17356 -t "Test1"
sdr.sh: #788: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v2.17356 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #789: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.17356 -t "1234567"
sdr.sh: #790: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v1.17356 -t "Test1"
sdr.sh: #791: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v2.17356 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #792: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.17356 -t "1234567"
sdr.sh: #793: Decrypt - Value 3  - PASSED
TIMESTAMP sdr END: Tue May  2 15:20:02 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Tue May  2 15:20:03 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #794: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #795: CMMF test . - PASSED
TIMESTAMP crmf END: Tue May  2 15:20:03 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Tue May  2 15:20:03 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #796: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #797: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #798: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #799: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #800: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #801: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #802: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #803: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #804: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #805: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #806: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #807: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #808: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #809: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #810: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #811: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #812: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #813: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #814: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #815: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #816: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #817: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #818: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #819: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #820: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #821: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #822: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #823: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #824: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #825: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #826: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #827: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #828: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #829: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #830: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #831: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #832: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #833: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #834: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #835: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #836: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #837: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #838: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #839: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #840: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #841: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #842: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #843: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #844: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #845: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #846: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #847: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #848: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #849: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #850: Decode Encrypted-Data . - PASSED
smime.sh: #851: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #852: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #853: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #854: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #855: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #856: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Tue May  2 15:20:05 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:20:05 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27038 >/dev/null 2>/dev/null
selfserv_9590 with PID 27038 found at Tue May  2 15:20:05 UTC 2017
selfserv_9590 with PID 27038 started at Tue May  2 15:20:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #857: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 27038 at Tue May  2 15:20:06 UTC 2017
kill -USR1 27038
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27038 killed at Tue May  2 15:20:06 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27094 >/dev/null 2>/dev/null
selfserv_9590 with PID 27094 found at Tue May  2 15:20:06 UTC 2017
selfserv_9590 with PID 27094 started at Tue May  2 15:20:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #858: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 27094 at Tue May  2 15:20:06 UTC 2017
kill -USR1 27094
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27094 killed at Tue May  2 15:20:06 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27150 >/dev/null 2>/dev/null
selfserv_9590 with PID 27150 found at Tue May  2 15:20:06 UTC 2017
selfserv_9590 with PID 27150 started at Tue May  2 15:20:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #859: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 27150 at Tue May  2 15:20:06 UTC 2017
kill -USR1 27150
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27150 killed at Tue May  2 15:20:06 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27218 >/dev/null 2>/dev/null
selfserv_9590 with PID 27218 found at Tue May  2 15:20:06 UTC 2017
selfserv_9590 with PID 27218 started at Tue May  2 15:20:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #860: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 27218 at Tue May  2 15:20:06 UTC 2017
kill -USR1 27218
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27218 killed at Tue May  2 15:20:06 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27274 >/dev/null 2>/dev/null
selfserv_9590 with PID 27274 found at Tue May  2 15:20:06 UTC 2017
selfserv_9590 with PID 27274 started at Tue May  2 15:20:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #861: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 27274 at Tue May  2 15:20:07 UTC 2017
kill -USR1 27274
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27274 killed at Tue May  2 15:20:07 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27330 >/dev/null 2>/dev/null
selfserv_9590 with PID 27330 found at Tue May  2 15:20:07 UTC 2017
selfserv_9590 with PID 27330 started at Tue May  2 15:20:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #862: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 27330 at Tue May  2 15:20:07 UTC 2017
kill -USR1 27330
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27330 killed at Tue May  2 15:20:07 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27400 >/dev/null 2>/dev/null
selfserv_9590 with PID 27400 found at Tue May  2 15:20:07 UTC 2017
selfserv_9590 with PID 27400 started at Tue May  2 15:20:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #863: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 27400 at Tue May  2 15:20:07 UTC 2017
kill -USR1 27400
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27400 killed at Tue May  2 15:20:07 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27456 >/dev/null 2>/dev/null
selfserv_9590 with PID 27456 found at Tue May  2 15:20:07 UTC 2017
selfserv_9590 with PID 27456 started at Tue May  2 15:20:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #864: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 27456 at Tue May  2 15:20:08 UTC 2017
kill -USR1 27456
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27456 killed at Tue May  2 15:20:08 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27512 >/dev/null 2>/dev/null
selfserv_9590 with PID 27512 found at Tue May  2 15:20:08 UTC 2017
selfserv_9590 with PID 27512 started at Tue May  2 15:20:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #865: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 27512 at Tue May  2 15:20:08 UTC 2017
kill -USR1 27512
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27512 killed at Tue May  2 15:20:08 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27580 >/dev/null 2>/dev/null
selfserv_9590 with PID 27580 found at Tue May  2 15:20:08 UTC 2017
selfserv_9590 with PID 27580 started at Tue May  2 15:20:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #866: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 27580 at Tue May  2 15:20:09 UTC 2017
kill -USR1 27580
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27580 killed at Tue May  2 15:20:09 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27636 >/dev/null 2>/dev/null
selfserv_9590 with PID 27636 found at Tue May  2 15:20:09 UTC 2017
selfserv_9590 with PID 27636 started at Tue May  2 15:20:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #867: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 27636 at Tue May  2 15:20:09 UTC 2017
kill -USR1 27636
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27636 killed at Tue May  2 15:20:09 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27692 >/dev/null 2>/dev/null
selfserv_9590 with PID 27692 found at Tue May  2 15:20:09 UTC 2017
selfserv_9590 with PID 27692 started at Tue May  2 15:20:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #868: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 27692 at Tue May  2 15:20:09 UTC 2017
kill -USR1 27692
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27692 killed at Tue May  2 15:20:09 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27760 >/dev/null 2>/dev/null
selfserv_9590 with PID 27760 found at Tue May  2 15:20:09 UTC 2017
selfserv_9590 with PID 27760 started at Tue May  2 15:20:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #869: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 27760 at Tue May  2 15:20:10 UTC 2017
kill -USR1 27760
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27760 killed at Tue May  2 15:20:10 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27816 >/dev/null 2>/dev/null
selfserv_9590 with PID 27816 found at Tue May  2 15:20:10 UTC 2017
selfserv_9590 with PID 27816 started at Tue May  2 15:20:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #870: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 27816 at Tue May  2 15:20:10 UTC 2017
kill -USR1 27816
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27816 killed at Tue May  2 15:20:10 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27873 >/dev/null 2>/dev/null
selfserv_9590 with PID 27873 found at Tue May  2 15:20:10 UTC 2017
selfserv_9590 with PID 27873 started at Tue May  2 15:20:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #871: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 27873 at Tue May  2 15:20:10 UTC 2017
kill -USR1 27873
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27873 killed at Tue May  2 15:20:10 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27941 >/dev/null 2>/dev/null
selfserv_9590 with PID 27941 found at Tue May  2 15:20:10 UTC 2017
selfserv_9590 with PID 27941 started at Tue May  2 15:20:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #872: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 27941 at Tue May  2 15:20:10 UTC 2017
kill -USR1 27941
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27941 killed at Tue May  2 15:20:10 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27997 >/dev/null 2>/dev/null
selfserv_9590 with PID 27997 found at Tue May  2 15:20:11 UTC 2017
selfserv_9590 with PID 27997 started at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #873: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 27997 at Tue May  2 15:20:11 UTC 2017
kill -USR1 27997
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27997 killed at Tue May  2 15:20:11 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28053 >/dev/null 2>/dev/null
selfserv_9590 with PID 28053 found at Tue May  2 15:20:11 UTC 2017
selfserv_9590 with PID 28053 started at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #874: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 28053 at Tue May  2 15:20:11 UTC 2017
kill -USR1 28053
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28053 killed at Tue May  2 15:20:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28121 >/dev/null 2>/dev/null
selfserv_9590 with PID 28121 found at Tue May  2 15:20:11 UTC 2017
selfserv_9590 with PID 28121 started at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #875: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 28121 at Tue May  2 15:20:11 UTC 2017
kill -USR1 28121
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28121 killed at Tue May  2 15:20:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28177 >/dev/null 2>/dev/null
selfserv_9590 with PID 28177 found at Tue May  2 15:20:12 UTC 2017
selfserv_9590 with PID 28177 started at Tue May  2 15:20:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #876: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 28177 at Tue May  2 15:20:12 UTC 2017
kill -USR1 28177
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28177 killed at Tue May  2 15:20:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28233 >/dev/null 2>/dev/null
selfserv_9590 with PID 28233 found at Tue May  2 15:20:12 UTC 2017
selfserv_9590 with PID 28233 started at Tue May  2 15:20:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #877: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 28233 at Tue May  2 15:20:12 UTC 2017
kill -USR1 28233
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28233 killed at Tue May  2 15:20:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28301 >/dev/null 2>/dev/null
selfserv_9590 with PID 28301 found at Tue May  2 15:20:12 UTC 2017
selfserv_9590 with PID 28301 started at Tue May  2 15:20:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #878: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 28301 at Tue May  2 15:20:12 UTC 2017
kill -USR1 28301
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28301 killed at Tue May  2 15:20:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28357 >/dev/null 2>/dev/null
selfserv_9590 with PID 28357 found at Tue May  2 15:20:12 UTC 2017
selfserv_9590 with PID 28357 started at Tue May  2 15:20:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #879: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 28357 at Tue May  2 15:20:12 UTC 2017
kill -USR1 28357
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28357 killed at Tue May  2 15:20:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28413 >/dev/null 2>/dev/null
selfserv_9590 with PID 28413 found at Tue May  2 15:20:13 UTC 2017
selfserv_9590 with PID 28413 started at Tue May  2 15:20:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #880: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 28413 at Tue May  2 15:20:13 UTC 2017
kill -USR1 28413
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28413 killed at Tue May  2 15:20:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28481 >/dev/null 2>/dev/null
selfserv_9590 with PID 28481 found at Tue May  2 15:20:13 UTC 2017
selfserv_9590 with PID 28481 started at Tue May  2 15:20:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #881: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 28481 at Tue May  2 15:20:13 UTC 2017
kill -USR1 28481
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28481 killed at Tue May  2 15:20:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28537 >/dev/null 2>/dev/null
selfserv_9590 with PID 28537 found at Tue May  2 15:20:13 UTC 2017
selfserv_9590 with PID 28537 started at Tue May  2 15:20:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #882: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 28537 at Tue May  2 15:20:13 UTC 2017
kill -USR1 28537
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28537 killed at Tue May  2 15:20:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28593 >/dev/null 2>/dev/null
selfserv_9590 with PID 28593 found at Tue May  2 15:20:14 UTC 2017
selfserv_9590 with PID 28593 started at Tue May  2 15:20:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #883: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 28593 at Tue May  2 15:20:14 UTC 2017
kill -USR1 28593
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28593 killed at Tue May  2 15:20:14 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28662 >/dev/null 2>/dev/null
selfserv_9590 with PID 28662 found at Tue May  2 15:20:14 UTC 2017
selfserv_9590 with PID 28662 started at Tue May  2 15:20:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #884: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 28662 at Tue May  2 15:20:14 UTC 2017
kill -USR1 28662
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28662 killed at Tue May  2 15:20:14 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28718 >/dev/null 2>/dev/null
selfserv_9590 with PID 28718 found at Tue May  2 15:20:14 UTC 2017
selfserv_9590 with PID 28718 started at Tue May  2 15:20:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #885: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 28718 at Tue May  2 15:20:14 UTC 2017
kill -USR1 28718
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28718 killed at Tue May  2 15:20:14 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28774 >/dev/null 2>/dev/null
selfserv_9590 with PID 28774 found at Tue May  2 15:20:14 UTC 2017
selfserv_9590 with PID 28774 started at Tue May  2 15:20:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #886: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 28774 at Tue May  2 15:20:14 UTC 2017
kill -USR1 28774
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28774 killed at Tue May  2 15:20:14 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28842 >/dev/null 2>/dev/null
selfserv_9590 with PID 28842 found at Tue May  2 15:20:15 UTC 2017
selfserv_9590 with PID 28842 started at Tue May  2 15:20:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #887: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 28842 at Tue May  2 15:20:15 UTC 2017
kill -USR1 28842
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28842 killed at Tue May  2 15:20:15 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28898 >/dev/null 2>/dev/null
selfserv_9590 with PID 28898 found at Tue May  2 15:20:15 UTC 2017
selfserv_9590 with PID 28898 started at Tue May  2 15:20:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #888: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 28898 at Tue May  2 15:20:15 UTC 2017
kill -USR1 28898
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28898 killed at Tue May  2 15:20:15 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28954 >/dev/null 2>/dev/null
selfserv_9590 with PID 28954 found at Tue May  2 15:20:15 UTC 2017
selfserv_9590 with PID 28954 started at Tue May  2 15:20:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #889: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 28954 at Tue May  2 15:20:15 UTC 2017
kill -USR1 28954
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28954 killed at Tue May  2 15:20:15 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29022 >/dev/null 2>/dev/null
selfserv_9590 with PID 29022 found at Tue May  2 15:20:15 UTC 2017
selfserv_9590 with PID 29022 started at Tue May  2 15:20:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #890: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 29022 at Tue May  2 15:20:15 UTC 2017
kill -USR1 29022
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29022 killed at Tue May  2 15:20:15 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29078 >/dev/null 2>/dev/null
selfserv_9590 with PID 29078 found at Tue May  2 15:20:15 UTC 2017
selfserv_9590 with PID 29078 started at Tue May  2 15:20:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #891: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29078 at Tue May  2 15:20:16 UTC 2017
kill -USR1 29078
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29078 killed at Tue May  2 15:20:16 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29134 >/dev/null 2>/dev/null
selfserv_9590 with PID 29134 found at Tue May  2 15:20:16 UTC 2017
selfserv_9590 with PID 29134 started at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #892: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 29134 at Tue May  2 15:20:16 UTC 2017
kill -USR1 29134
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29134 killed at Tue May  2 15:20:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29204 >/dev/null 2>/dev/null
selfserv_9590 with PID 29204 found at Tue May  2 15:20:16 UTC 2017
selfserv_9590 with PID 29204 started at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #893: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29204 at Tue May  2 15:20:16 UTC 2017
kill -USR1 29204
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29204 killed at Tue May  2 15:20:16 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29260 >/dev/null 2>/dev/null
selfserv_9590 with PID 29260 found at Tue May  2 15:20:16 UTC 2017
selfserv_9590 with PID 29260 started at Tue May  2 15:20:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #894: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29260 at Tue May  2 15:20:17 UTC 2017
kill -USR1 29260
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29260 killed at Tue May  2 15:20:17 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29316 >/dev/null 2>/dev/null
selfserv_9590 with PID 29316 found at Tue May  2 15:20:17 UTC 2017
selfserv_9590 with PID 29316 started at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #895: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29316 at Tue May  2 15:20:17 UTC 2017
kill -USR1 29316
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29316 killed at Tue May  2 15:20:17 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29384 >/dev/null 2>/dev/null
selfserv_9590 with PID 29384 found at Tue May  2 15:20:17 UTC 2017
selfserv_9590 with PID 29384 started at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #896: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29384 at Tue May  2 15:20:17 UTC 2017
kill -USR1 29384
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29384 killed at Tue May  2 15:20:17 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29440 >/dev/null 2>/dev/null
selfserv_9590 with PID 29440 found at Tue May  2 15:20:17 UTC 2017
selfserv_9590 with PID 29440 started at Tue May  2 15:20:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #897: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29440 at Tue May  2 15:20:18 UTC 2017
kill -USR1 29440
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29440 killed at Tue May  2 15:20:18 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29496 >/dev/null 2>/dev/null
selfserv_9590 with PID 29496 found at Tue May  2 15:20:18 UTC 2017
selfserv_9590 with PID 29496 started at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #898: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29496 at Tue May  2 15:20:18 UTC 2017
kill -USR1 29496
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29496 killed at Tue May  2 15:20:18 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29564 >/dev/null 2>/dev/null
selfserv_9590 with PID 29564 found at Tue May  2 15:20:18 UTC 2017
selfserv_9590 with PID 29564 started at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #899: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29564 at Tue May  2 15:20:18 UTC 2017
kill -USR1 29564
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29564 killed at Tue May  2 15:20:18 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29620 >/dev/null 2>/dev/null
selfserv_9590 with PID 29620 found at Tue May  2 15:20:18 UTC 2017
selfserv_9590 with PID 29620 started at Tue May  2 15:20:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #900: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29620 at Tue May  2 15:20:19 UTC 2017
kill -USR1 29620
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29620 killed at Tue May  2 15:20:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29676 >/dev/null 2>/dev/null
selfserv_9590 with PID 29676 found at Tue May  2 15:20:19 UTC 2017
selfserv_9590 with PID 29676 started at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #901: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29676 at Tue May  2 15:20:19 UTC 2017
kill -USR1 29676
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29676 killed at Tue May  2 15:20:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29744 >/dev/null 2>/dev/null
selfserv_9590 with PID 29744 found at Tue May  2 15:20:19 UTC 2017
selfserv_9590 with PID 29744 started at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #902: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29744 at Tue May  2 15:20:19 UTC 2017
kill -USR1 29744
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29744 killed at Tue May  2 15:20:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29800 >/dev/null 2>/dev/null
selfserv_9590 with PID 29800 found at Tue May  2 15:20:19 UTC 2017
selfserv_9590 with PID 29800 started at Tue May  2 15:20:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #903: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29800 at Tue May  2 15:20:20 UTC 2017
kill -USR1 29800
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29800 killed at Tue May  2 15:20:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29856 >/dev/null 2>/dev/null
selfserv_9590 with PID 29856 found at Tue May  2 15:20:20 UTC 2017
selfserv_9590 with PID 29856 started at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #904: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29856 at Tue May  2 15:20:20 UTC 2017
kill -USR1 29856
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29856 killed at Tue May  2 15:20:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29924 >/dev/null 2>/dev/null
selfserv_9590 with PID 29924 found at Tue May  2 15:20:20 UTC 2017
selfserv_9590 with PID 29924 started at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #905: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29924 at Tue May  2 15:20:20 UTC 2017
kill -USR1 29924
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29924 killed at Tue May  2 15:20:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29980 >/dev/null 2>/dev/null
selfserv_9590 with PID 29980 found at Tue May  2 15:20:20 UTC 2017
selfserv_9590 with PID 29980 started at Tue May  2 15:20:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #906: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29980 at Tue May  2 15:20:20 UTC 2017
kill -USR1 29980
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29980 killed at Tue May  2 15:20:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30036 >/dev/null 2>/dev/null
selfserv_9590 with PID 30036 found at Tue May  2 15:20:21 UTC 2017
selfserv_9590 with PID 30036 started at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #907: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30036 at Tue May  2 15:20:21 UTC 2017
kill -USR1 30036
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30036 killed at Tue May  2 15:20:21 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30104 >/dev/null 2>/dev/null
selfserv_9590 with PID 30104 found at Tue May  2 15:20:21 UTC 2017
selfserv_9590 with PID 30104 started at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #908: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30104 at Tue May  2 15:20:21 UTC 2017
kill -USR1 30104
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30104 killed at Tue May  2 15:20:21 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30166 >/dev/null 2>/dev/null
selfserv_9590 with PID 30166 found at Tue May  2 15:20:21 UTC 2017
selfserv_9590 with PID 30166 started at Tue May  2 15:20:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #909: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30166 at Tue May  2 15:20:21 UTC 2017
kill -USR1 30166
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30166 killed at Tue May  2 15:20:21 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30222 >/dev/null 2>/dev/null
selfserv_9590 with PID 30222 found at Tue May  2 15:20:22 UTC 2017
selfserv_9590 with PID 30222 started at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #910: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30222 at Tue May  2 15:20:22 UTC 2017
kill -USR1 30222
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30222 killed at Tue May  2 15:20:22 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30290 >/dev/null 2>/dev/null
selfserv_9590 with PID 30290 found at Tue May  2 15:20:22 UTC 2017
selfserv_9590 with PID 30290 started at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #911: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30290 at Tue May  2 15:20:22 UTC 2017
kill -USR1 30290
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30290 killed at Tue May  2 15:20:22 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30346 >/dev/null 2>/dev/null
selfserv_9590 with PID 30346 found at Tue May  2 15:20:22 UTC 2017
selfserv_9590 with PID 30346 started at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #912: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30346 at Tue May  2 15:20:22 UTC 2017
kill -USR1 30346
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30346 killed at Tue May  2 15:20:22 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30402 >/dev/null 2>/dev/null
selfserv_9590 with PID 30402 found at Tue May  2 15:20:23 UTC 2017
selfserv_9590 with PID 30402 started at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #913: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30402 at Tue May  2 15:20:23 UTC 2017
kill -USR1 30402
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30402 killed at Tue May  2 15:20:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30470 >/dev/null 2>/dev/null
selfserv_9590 with PID 30470 found at Tue May  2 15:20:23 UTC 2017
selfserv_9590 with PID 30470 started at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #914: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30470 at Tue May  2 15:20:23 UTC 2017
kill -USR1 30470
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30470 killed at Tue May  2 15:20:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30526 >/dev/null 2>/dev/null
selfserv_9590 with PID 30526 found at Tue May  2 15:20:23 UTC 2017
selfserv_9590 with PID 30526 started at Tue May  2 15:20:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #915: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30526 at Tue May  2 15:20:23 UTC 2017
kill -USR1 30526
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30526 killed at Tue May  2 15:20:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30582 >/dev/null 2>/dev/null
selfserv_9590 with PID 30582 found at Tue May  2 15:20:24 UTC 2017
selfserv_9590 with PID 30582 started at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #916: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30582 at Tue May  2 15:20:24 UTC 2017
kill -USR1 30582
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30582 killed at Tue May  2 15:20:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30650 >/dev/null 2>/dev/null
selfserv_9590 with PID 30650 found at Tue May  2 15:20:24 UTC 2017
selfserv_9590 with PID 30650 started at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #917: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30650 at Tue May  2 15:20:24 UTC 2017
kill -USR1 30650
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30650 killed at Tue May  2 15:20:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30706 >/dev/null 2>/dev/null
selfserv_9590 with PID 30706 found at Tue May  2 15:20:24 UTC 2017
selfserv_9590 with PID 30706 started at Tue May  2 15:20:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #918: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30706 at Tue May  2 15:20:25 UTC 2017
kill -USR1 30706
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30706 killed at Tue May  2 15:20:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30762 >/dev/null 2>/dev/null
selfserv_9590 with PID 30762 found at Tue May  2 15:20:25 UTC 2017
selfserv_9590 with PID 30762 started at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #919: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30762 at Tue May  2 15:20:25 UTC 2017
kill -USR1 30762
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30762 killed at Tue May  2 15:20:25 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30830 >/dev/null 2>/dev/null
selfserv_9590 with PID 30830 found at Tue May  2 15:20:25 UTC 2017
selfserv_9590 with PID 30830 started at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #920: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30830 at Tue May  2 15:20:25 UTC 2017
kill -USR1 30830
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30830 killed at Tue May  2 15:20:25 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30886 >/dev/null 2>/dev/null
selfserv_9590 with PID 30886 found at Tue May  2 15:20:25 UTC 2017
selfserv_9590 with PID 30886 started at Tue May  2 15:20:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #921: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30886 at Tue May  2 15:20:25 UTC 2017
kill -USR1 30886
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30886 killed at Tue May  2 15:20:25 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30942 >/dev/null 2>/dev/null
selfserv_9590 with PID 30942 found at Tue May  2 15:20:26 UTC 2017
selfserv_9590 with PID 30942 started at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #922: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30942 at Tue May  2 15:20:26 UTC 2017
kill -USR1 30942
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30942 killed at Tue May  2 15:20:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31010 >/dev/null 2>/dev/null
selfserv_9590 with PID 31010 found at Tue May  2 15:20:26 UTC 2017
selfserv_9590 with PID 31010 started at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #923: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31010 at Tue May  2 15:20:26 UTC 2017
kill -USR1 31010
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31010 killed at Tue May  2 15:20:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31066 >/dev/null 2>/dev/null
selfserv_9590 with PID 31066 found at Tue May  2 15:20:26 UTC 2017
selfserv_9590 with PID 31066 started at Tue May  2 15:20:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #924: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31066 at Tue May  2 15:20:27 UTC 2017
kill -USR1 31066
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31066 killed at Tue May  2 15:20:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31122 >/dev/null 2>/dev/null
selfserv_9590 with PID 31122 found at Tue May  2 15:20:27 UTC 2017
selfserv_9590 with PID 31122 started at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #925: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31122 at Tue May  2 15:20:27 UTC 2017
kill -USR1 31122
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31122 killed at Tue May  2 15:20:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31190 >/dev/null 2>/dev/null
selfserv_9590 with PID 31190 found at Tue May  2 15:20:27 UTC 2017
selfserv_9590 with PID 31190 started at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #926: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31190 at Tue May  2 15:20:27 UTC 2017
kill -USR1 31190
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31190 killed at Tue May  2 15:20:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31246 >/dev/null 2>/dev/null
selfserv_9590 with PID 31246 found at Tue May  2 15:20:27 UTC 2017
selfserv_9590 with PID 31246 started at Tue May  2 15:20:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #927: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31246 at Tue May  2 15:20:28 UTC 2017
kill -USR1 31246
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31246 killed at Tue May  2 15:20:28 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31302 >/dev/null 2>/dev/null
selfserv_9590 with PID 31302 found at Tue May  2 15:20:28 UTC 2017
selfserv_9590 with PID 31302 started at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #928: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31302 at Tue May  2 15:20:28 UTC 2017
kill -USR1 31302
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31302 killed at Tue May  2 15:20:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31370 >/dev/null 2>/dev/null
selfserv_9590 with PID 31370 found at Tue May  2 15:20:28 UTC 2017
selfserv_9590 with PID 31370 started at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #929: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31370 at Tue May  2 15:20:28 UTC 2017
kill -USR1 31370
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31370 killed at Tue May  2 15:20:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31426 >/dev/null 2>/dev/null
selfserv_9590 with PID 31426 found at Tue May  2 15:20:28 UTC 2017
selfserv_9590 with PID 31426 started at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #930: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31426 at Tue May  2 15:20:28 UTC 2017
kill -USR1 31426
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31426 killed at Tue May  2 15:20:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31482 >/dev/null 2>/dev/null
selfserv_9590 with PID 31482 found at Tue May  2 15:20:28 UTC 2017
selfserv_9590 with PID 31482 started at Tue May  2 15:20:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #931: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31482 at Tue May  2 15:20:29 UTC 2017
kill -USR1 31482
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31482 killed at Tue May  2 15:20:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31550 >/dev/null 2>/dev/null
selfserv_9590 with PID 31550 found at Tue May  2 15:20:29 UTC 2017
selfserv_9590 with PID 31550 started at Tue May  2 15:20:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #932: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31550 at Tue May  2 15:20:29 UTC 2017
kill -USR1 31550
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31550 killed at Tue May  2 15:20:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31606 >/dev/null 2>/dev/null
selfserv_9590 with PID 31606 found at Tue May  2 15:20:29 UTC 2017
selfserv_9590 with PID 31606 started at Tue May  2 15:20:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #933: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31606 at Tue May  2 15:20:29 UTC 2017
kill -USR1 31606
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31606 killed at Tue May  2 15:20:29 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31662 >/dev/null 2>/dev/null
selfserv_9590 with PID 31662 found at Tue May  2 15:20:29 UTC 2017
selfserv_9590 with PID 31662 started at Tue May  2 15:20:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #934: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31662 at Tue May  2 15:20:30 UTC 2017
kill -USR1 31662
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31662 killed at Tue May  2 15:20:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31730 >/dev/null 2>/dev/null
selfserv_9590 with PID 31730 found at Tue May  2 15:20:30 UTC 2017
selfserv_9590 with PID 31730 started at Tue May  2 15:20:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #935: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31730 at Tue May  2 15:20:30 UTC 2017
kill -USR1 31730
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31730 killed at Tue May  2 15:20:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31786 >/dev/null 2>/dev/null
selfserv_9590 with PID 31786 found at Tue May  2 15:20:30 UTC 2017
selfserv_9590 with PID 31786 started at Tue May  2 15:20:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #936: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31786 at Tue May  2 15:20:30 UTC 2017
kill -USR1 31786
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31786 killed at Tue May  2 15:20:30 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31842 >/dev/null 2>/dev/null
selfserv_9590 with PID 31842 found at Tue May  2 15:20:30 UTC 2017
selfserv_9590 with PID 31842 started at Tue May  2 15:20:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #937: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31842 at Tue May  2 15:20:30 UTC 2017
kill -USR1 31842
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31842 killed at Tue May  2 15:20:30 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31910 >/dev/null 2>/dev/null
selfserv_9590 with PID 31910 found at Tue May  2 15:20:30 UTC 2017
selfserv_9590 with PID 31910 started at Tue May  2 15:20:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #938: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31910 at Tue May  2 15:20:31 UTC 2017
kill -USR1 31910
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31910 killed at Tue May  2 15:20:31 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31966 >/dev/null 2>/dev/null
selfserv_9590 with PID 31966 found at Tue May  2 15:20:31 UTC 2017
selfserv_9590 with PID 31966 started at Tue May  2 15:20:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #939: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31966 at Tue May  2 15:20:31 UTC 2017
kill -USR1 31966
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31966 killed at Tue May  2 15:20:31 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:20:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32022 >/dev/null 2>/dev/null
selfserv_9590 with PID 32022 found at Tue May  2 15:20:31 UTC 2017
selfserv_9590 with PID 32022 started at Tue May  2 15:20:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #940: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 32022 at Tue May  2 15:20:31 UTC 2017
kill -USR1 32022
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32022 killed at Tue May  2 15:20:31 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32090 >/dev/null 2>/dev/null
selfserv_9590 with PID 32090 found at Tue May  2 15:20:31 UTC 2017
selfserv_9590 with PID 32090 started at Tue May  2 15:20:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #941: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 32090 at Tue May  2 15:20:31 UTC 2017
kill -USR1 32090
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32090 killed at Tue May  2 15:20:31 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32146 >/dev/null 2>/dev/null
selfserv_9590 with PID 32146 found at Tue May  2 15:20:31 UTC 2017
selfserv_9590 with PID 32146 started at Tue May  2 15:20:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #942: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 32146 at Tue May  2 15:20:32 UTC 2017
kill -USR1 32146
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32146 killed at Tue May  2 15:20:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:32 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32202 >/dev/null 2>/dev/null
selfserv_9590 with PID 32202 found at Tue May  2 15:20:32 UTC 2017
selfserv_9590 with PID 32202 started at Tue May  2 15:20:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #943: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 32202 at Tue May  2 15:20:32 UTC 2017
kill -USR1 32202
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32202 killed at Tue May  2 15:20:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:32 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32270 >/dev/null 2>/dev/null
selfserv_9590 with PID 32270 found at Tue May  2 15:20:32 UTC 2017
selfserv_9590 with PID 32270 started at Tue May  2 15:20:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #944: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 32270 at Tue May  2 15:20:32 UTC 2017
kill -USR1 32270
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32270 killed at Tue May  2 15:20:32 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:32 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32326 >/dev/null 2>/dev/null
selfserv_9590 with PID 32326 found at Tue May  2 15:20:32 UTC 2017
selfserv_9590 with PID 32326 started at Tue May  2 15:20:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #945: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 32326 at Tue May  2 15:20:33 UTC 2017
kill -USR1 32326
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32326 killed at Tue May  2 15:20:33 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32382 >/dev/null 2>/dev/null
selfserv_9590 with PID 32382 found at Tue May  2 15:20:33 UTC 2017
selfserv_9590 with PID 32382 started at Tue May  2 15:20:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #946: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 32382 at Tue May  2 15:20:33 UTC 2017
kill -USR1 32382
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32382 killed at Tue May  2 15:20:33 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32459 >/dev/null 2>/dev/null
selfserv_9590 with PID 32459 found at Tue May  2 15:20:33 UTC 2017
selfserv_9590 with PID 32459 started at Tue May  2 15:20:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #947: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 32459 at Tue May  2 15:20:33 UTC 2017
kill -USR1 32459
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32459 killed at Tue May  2 15:20:33 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32515 >/dev/null 2>/dev/null
selfserv_9590 with PID 32515 found at Tue May  2 15:20:33 UTC 2017
selfserv_9590 with PID 32515 started at Tue May  2 15:20:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #948: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 32515 at Tue May  2 15:20:33 UTC 2017
kill -USR1 32515
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32515 killed at Tue May  2 15:20:33 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32571 >/dev/null 2>/dev/null
selfserv_9590 with PID 32571 found at Tue May  2 15:20:33 UTC 2017
selfserv_9590 with PID 32571 started at Tue May  2 15:20:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #949: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 32571 at Tue May  2 15:20:34 UTC 2017
kill -USR1 32571
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32571 killed at Tue May  2 15:20:34 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32639 >/dev/null 2>/dev/null
selfserv_9590 with PID 32639 found at Tue May  2 15:20:34 UTC 2017
selfserv_9590 with PID 32639 started at Tue May  2 15:20:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #950: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 32639 at Tue May  2 15:20:34 UTC 2017
kill -USR1 32639
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32639 killed at Tue May  2 15:20:34 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32696 >/dev/null 2>/dev/null
selfserv_9590 with PID 32696 found at Tue May  2 15:20:34 UTC 2017
selfserv_9590 with PID 32696 started at Tue May  2 15:20:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #951: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 32696 at Tue May  2 15:20:34 UTC 2017
kill -USR1 32696
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32696 killed at Tue May  2 15:20:34 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32752 >/dev/null 2>/dev/null
selfserv_9590 with PID 32752 found at Tue May  2 15:20:34 UTC 2017
selfserv_9590 with PID 32752 started at Tue May  2 15:20:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #952: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 32752 at Tue May  2 15:20:35 UTC 2017
kill -USR1 32752
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32752 killed at Tue May  2 15:20:35 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 356 >/dev/null 2>/dev/null
selfserv_9590 with PID 356 found at Tue May  2 15:20:35 UTC 2017
selfserv_9590 with PID 356 started at Tue May  2 15:20:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #953: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 356 at Tue May  2 15:20:35 UTC 2017
kill -USR1 356
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 356 killed at Tue May  2 15:20:35 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 418 >/dev/null 2>/dev/null
selfserv_9590 with PID 418 found at Tue May  2 15:20:35 UTC 2017
selfserv_9590 with PID 418 started at Tue May  2 15:20:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #954: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 418 at Tue May  2 15:20:35 UTC 2017
kill -USR1 418
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 418 killed at Tue May  2 15:20:35 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 487 >/dev/null 2>/dev/null
selfserv_9590 with PID 487 found at Tue May  2 15:20:35 UTC 2017
selfserv_9590 with PID 487 started at Tue May  2 15:20:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #955: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 487 at Tue May  2 15:20:35 UTC 2017
kill -USR1 487
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 487 killed at Tue May  2 15:20:35 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 566 >/dev/null 2>/dev/null
selfserv_9590 with PID 566 found at Tue May  2 15:20:35 UTC 2017
selfserv_9590 with PID 566 started at Tue May  2 15:20:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #956: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 566 at Tue May  2 15:20:36 UTC 2017
kill -USR1 566
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 566 killed at Tue May  2 15:20:36 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 623 >/dev/null 2>/dev/null
selfserv_9590 with PID 623 found at Tue May  2 15:20:36 UTC 2017
selfserv_9590 with PID 623 started at Tue May  2 15:20:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #957: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 623 at Tue May  2 15:20:36 UTC 2017
kill -USR1 623
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 623 killed at Tue May  2 15:20:36 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 679 >/dev/null 2>/dev/null
selfserv_9590 with PID 679 found at Tue May  2 15:20:36 UTC 2017
selfserv_9590 with PID 679 started at Tue May  2 15:20:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #958: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 679 at Tue May  2 15:20:36 UTC 2017
kill -USR1 679
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 679 killed at Tue May  2 15:20:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 802 >/dev/null 2>/dev/null
selfserv_9590 with PID 802 found at Tue May  2 15:20:36 UTC 2017
selfserv_9590 with PID 802 started at Tue May  2 15:20:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #959: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 802 at Tue May  2 15:20:37 UTC 2017
kill -USR1 802
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 802 killed at Tue May  2 15:20:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 858 >/dev/null 2>/dev/null
selfserv_9590 with PID 858 found at Tue May  2 15:20:37 UTC 2017
selfserv_9590 with PID 858 started at Tue May  2 15:20:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #960: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 858 at Tue May  2 15:20:37 UTC 2017
kill -USR1 858
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 858 killed at Tue May  2 15:20:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 914 >/dev/null 2>/dev/null
selfserv_9590 with PID 914 found at Tue May  2 15:20:37 UTC 2017
selfserv_9590 with PID 914 started at Tue May  2 15:20:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #961: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 914 at Tue May  2 15:20:37 UTC 2017
kill -USR1 914
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 914 killed at Tue May  2 15:20:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 982 >/dev/null 2>/dev/null
selfserv_9590 with PID 982 found at Tue May  2 15:20:37 UTC 2017
selfserv_9590 with PID 982 started at Tue May  2 15:20:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #962: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 982 at Tue May  2 15:20:37 UTC 2017
kill -USR1 982
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 982 killed at Tue May  2 15:20:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1041 >/dev/null 2>/dev/null
selfserv_9590 with PID 1041 found at Tue May  2 15:20:37 UTC 2017
selfserv_9590 with PID 1041 started at Tue May  2 15:20:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #963: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1041 at Tue May  2 15:20:38 UTC 2017
kill -USR1 1041
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1041 killed at Tue May  2 15:20:38 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1097 >/dev/null 2>/dev/null
selfserv_9590 with PID 1097 found at Tue May  2 15:20:38 UTC 2017
selfserv_9590 with PID 1097 started at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #964: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1097 at Tue May  2 15:20:38 UTC 2017
kill -USR1 1097
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1097 killed at Tue May  2 15:20:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1165 >/dev/null 2>/dev/null
selfserv_9590 with PID 1165 found at Tue May  2 15:20:38 UTC 2017
selfserv_9590 with PID 1165 started at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #965: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1165 at Tue May  2 15:20:38 UTC 2017
kill -USR1 1165
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1165 killed at Tue May  2 15:20:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1221 >/dev/null 2>/dev/null
selfserv_9590 with PID 1221 found at Tue May  2 15:20:38 UTC 2017
selfserv_9590 with PID 1221 started at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #966: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1221 at Tue May  2 15:20:38 UTC 2017
kill -USR1 1221
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1221 killed at Tue May  2 15:20:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1277 >/dev/null 2>/dev/null
selfserv_9590 with PID 1277 found at Tue May  2 15:20:38 UTC 2017
selfserv_9590 with PID 1277 started at Tue May  2 15:20:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #967: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1277 at Tue May  2 15:20:38 UTC 2017
kill -USR1 1277
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1277 killed at Tue May  2 15:20:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1345 >/dev/null 2>/dev/null
selfserv_9590 with PID 1345 found at Tue May  2 15:20:39 UTC 2017
selfserv_9590 with PID 1345 started at Tue May  2 15:20:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #968: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1345 at Tue May  2 15:20:39 UTC 2017
kill -USR1 1345
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1345 killed at Tue May  2 15:20:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1401 >/dev/null 2>/dev/null
selfserv_9590 with PID 1401 found at Tue May  2 15:20:39 UTC 2017
selfserv_9590 with PID 1401 started at Tue May  2 15:20:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #969: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1401 at Tue May  2 15:20:39 UTC 2017
kill -USR1 1401
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1401 killed at Tue May  2 15:20:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1457 >/dev/null 2>/dev/null
selfserv_9590 with PID 1457 found at Tue May  2 15:20:39 UTC 2017
selfserv_9590 with PID 1457 started at Tue May  2 15:20:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #970: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1457 at Tue May  2 15:20:39 UTC 2017
kill -USR1 1457
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1457 killed at Tue May  2 15:20:39 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1525 >/dev/null 2>/dev/null
selfserv_9590 with PID 1525 found at Tue May  2 15:20:39 UTC 2017
selfserv_9590 with PID 1525 started at Tue May  2 15:20:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #971: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1525 at Tue May  2 15:20:40 UTC 2017
kill -USR1 1525
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1525 killed at Tue May  2 15:20:40 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1581 >/dev/null 2>/dev/null
selfserv_9590 with PID 1581 found at Tue May  2 15:20:40 UTC 2017
selfserv_9590 with PID 1581 started at Tue May  2 15:20:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #972: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1581 at Tue May  2 15:20:40 UTC 2017
kill -USR1 1581
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1581 killed at Tue May  2 15:20:40 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1637 >/dev/null 2>/dev/null
selfserv_9590 with PID 1637 found at Tue May  2 15:20:40 UTC 2017
selfserv_9590 with PID 1637 started at Tue May  2 15:20:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #973: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1637 at Tue May  2 15:20:40 UTC 2017
kill -USR1 1637
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1637 killed at Tue May  2 15:20:40 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1705 >/dev/null 2>/dev/null
selfserv_9590 with PID 1705 found at Tue May  2 15:20:40 UTC 2017
selfserv_9590 with PID 1705 started at Tue May  2 15:20:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #974: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 1705 at Tue May  2 15:20:41 UTC 2017
kill -USR1 1705
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1705 killed at Tue May  2 15:20:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1761 >/dev/null 2>/dev/null
selfserv_9590 with PID 1761 found at Tue May  2 15:20:41 UTC 2017
selfserv_9590 with PID 1761 started at Tue May  2 15:20:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #975: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1761 at Tue May  2 15:20:41 UTC 2017
kill -USR1 1761
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1761 killed at Tue May  2 15:20:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1817 >/dev/null 2>/dev/null
selfserv_9590 with PID 1817 found at Tue May  2 15:20:41 UTC 2017
selfserv_9590 with PID 1817 started at Tue May  2 15:20:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #976: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 1817 at Tue May  2 15:20:41 UTC 2017
kill -USR1 1817
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1817 killed at Tue May  2 15:20:41 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1885 >/dev/null 2>/dev/null
selfserv_9590 with PID 1885 found at Tue May  2 15:20:41 UTC 2017
selfserv_9590 with PID 1885 started at Tue May  2 15:20:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #977: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 1885 at Tue May  2 15:20:42 UTC 2017
kill -USR1 1885
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1885 killed at Tue May  2 15:20:42 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1941 >/dev/null 2>/dev/null
selfserv_9590 with PID 1941 found at Tue May  2 15:20:42 UTC 2017
selfserv_9590 with PID 1941 started at Tue May  2 15:20:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #978: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 1941 at Tue May  2 15:20:42 UTC 2017
kill -USR1 1941
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1941 killed at Tue May  2 15:20:42 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1997 >/dev/null 2>/dev/null
selfserv_9590 with PID 1997 found at Tue May  2 15:20:42 UTC 2017
selfserv_9590 with PID 1997 started at Tue May  2 15:20:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #979: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 1997 at Tue May  2 15:20:42 UTC 2017
kill -USR1 1997
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1997 killed at Tue May  2 15:20:42 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2065 >/dev/null 2>/dev/null
selfserv_9590 with PID 2065 found at Tue May  2 15:20:42 UTC 2017
selfserv_9590 with PID 2065 started at Tue May  2 15:20:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #980: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 2065 at Tue May  2 15:20:43 UTC 2017
kill -USR1 2065
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2065 killed at Tue May  2 15:20:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2121 >/dev/null 2>/dev/null
selfserv_9590 with PID 2121 found at Tue May  2 15:20:43 UTC 2017
selfserv_9590 with PID 2121 started at Tue May  2 15:20:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #981: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2121 at Tue May  2 15:20:43 UTC 2017
kill -USR1 2121
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2121 killed at Tue May  2 15:20:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2177 >/dev/null 2>/dev/null
selfserv_9590 with PID 2177 found at Tue May  2 15:20:43 UTC 2017
selfserv_9590 with PID 2177 started at Tue May  2 15:20:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #982: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 2177 at Tue May  2 15:20:43 UTC 2017
kill -USR1 2177
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2177 killed at Tue May  2 15:20:43 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2245 >/dev/null 2>/dev/null
selfserv_9590 with PID 2245 found at Tue May  2 15:20:43 UTC 2017
selfserv_9590 with PID 2245 started at Tue May  2 15:20:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #983: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2245 at Tue May  2 15:20:44 UTC 2017
kill -USR1 2245
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2245 killed at Tue May  2 15:20:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2301 >/dev/null 2>/dev/null
selfserv_9590 with PID 2301 found at Tue May  2 15:20:44 UTC 2017
selfserv_9590 with PID 2301 started at Tue May  2 15:20:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #984: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2301 at Tue May  2 15:20:44 UTC 2017
kill -USR1 2301
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2301 killed at Tue May  2 15:20:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2357 >/dev/null 2>/dev/null
selfserv_9590 with PID 2357 found at Tue May  2 15:20:44 UTC 2017
selfserv_9590 with PID 2357 started at Tue May  2 15:20:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #985: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2357 at Tue May  2 15:20:44 UTC 2017
kill -USR1 2357
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2357 killed at Tue May  2 15:20:44 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2425 >/dev/null 2>/dev/null
selfserv_9590 with PID 2425 found at Tue May  2 15:20:44 UTC 2017
selfserv_9590 with PID 2425 started at Tue May  2 15:20:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #986: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 2425 at Tue May  2 15:20:45 UTC 2017
kill -USR1 2425
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2425 killed at Tue May  2 15:20:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2481 >/dev/null 2>/dev/null
selfserv_9590 with PID 2481 found at Tue May  2 15:20:45 UTC 2017
selfserv_9590 with PID 2481 started at Tue May  2 15:20:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #987: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2481 at Tue May  2 15:20:45 UTC 2017
kill -USR1 2481
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2481 killed at Tue May  2 15:20:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2537 >/dev/null 2>/dev/null
selfserv_9590 with PID 2537 found at Tue May  2 15:20:45 UTC 2017
selfserv_9590 with PID 2537 started at Tue May  2 15:20:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #988: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 2537 at Tue May  2 15:20:45 UTC 2017
kill -USR1 2537
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2537 killed at Tue May  2 15:20:45 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2605 >/dev/null 2>/dev/null
selfserv_9590 with PID 2605 found at Tue May  2 15:20:46 UTC 2017
selfserv_9590 with PID 2605 started at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #989: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 2605 at Tue May  2 15:20:46 UTC 2017
kill -USR1 2605
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2605 killed at Tue May  2 15:20:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2661 >/dev/null 2>/dev/null
selfserv_9590 with PID 2661 found at Tue May  2 15:20:46 UTC 2017
selfserv_9590 with PID 2661 started at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #990: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 2661 at Tue May  2 15:20:46 UTC 2017
kill -USR1 2661
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2661 killed at Tue May  2 15:20:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2717 >/dev/null 2>/dev/null
selfserv_9590 with PID 2717 found at Tue May  2 15:20:46 UTC 2017
selfserv_9590 with PID 2717 started at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #991: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 2717 at Tue May  2 15:20:46 UTC 2017
kill -USR1 2717
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2717 killed at Tue May  2 15:20:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2793 >/dev/null 2>/dev/null
selfserv_9590 with PID 2793 found at Tue May  2 15:20:46 UTC 2017
selfserv_9590 with PID 2793 started at Tue May  2 15:20:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #992: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 2793 at Tue May  2 15:20:47 UTC 2017
kill -USR1 2793
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2793 killed at Tue May  2 15:20:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2849 >/dev/null 2>/dev/null
selfserv_9590 with PID 2849 found at Tue May  2 15:20:47 UTC 2017
selfserv_9590 with PID 2849 started at Tue May  2 15:20:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #993: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2849 at Tue May  2 15:20:47 UTC 2017
kill -USR1 2849
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2849 killed at Tue May  2 15:20:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2905 >/dev/null 2>/dev/null
selfserv_9590 with PID 2905 found at Tue May  2 15:20:47 UTC 2017
selfserv_9590 with PID 2905 started at Tue May  2 15:20:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #994: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 2905 at Tue May  2 15:20:48 UTC 2017
kill -USR1 2905
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2905 killed at Tue May  2 15:20:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2973 >/dev/null 2>/dev/null
selfserv_9590 with PID 2973 found at Tue May  2 15:20:48 UTC 2017
selfserv_9590 with PID 2973 started at Tue May  2 15:20:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #995: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2973 at Tue May  2 15:20:48 UTC 2017
kill -USR1 2973
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2973 killed at Tue May  2 15:20:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3029 >/dev/null 2>/dev/null
selfserv_9590 with PID 3029 found at Tue May  2 15:20:48 UTC 2017
selfserv_9590 with PID 3029 started at Tue May  2 15:20:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #996: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3029 at Tue May  2 15:20:48 UTC 2017
kill -USR1 3029
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3029 killed at Tue May  2 15:20:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3085 >/dev/null 2>/dev/null
selfserv_9590 with PID 3085 found at Tue May  2 15:20:48 UTC 2017
selfserv_9590 with PID 3085 started at Tue May  2 15:20:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #997: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3085 at Tue May  2 15:20:48 UTC 2017
kill -USR1 3085
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3085 killed at Tue May  2 15:20:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3153 >/dev/null 2>/dev/null
selfserv_9590 with PID 3153 found at Tue May  2 15:20:48 UTC 2017
selfserv_9590 with PID 3153 started at Tue May  2 15:20:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #998: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3153 at Tue May  2 15:20:49 UTC 2017
kill -USR1 3153
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3153 killed at Tue May  2 15:20:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3209 >/dev/null 2>/dev/null
selfserv_9590 with PID 3209 found at Tue May  2 15:20:49 UTC 2017
selfserv_9590 with PID 3209 started at Tue May  2 15:20:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #999: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3209 at Tue May  2 15:20:49 UTC 2017
kill -USR1 3209
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3209 killed at Tue May  2 15:20:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3265 >/dev/null 2>/dev/null
selfserv_9590 with PID 3265 found at Tue May  2 15:20:49 UTC 2017
selfserv_9590 with PID 3265 started at Tue May  2 15:20:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1000: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3265 at Tue May  2 15:20:49 UTC 2017
kill -USR1 3265
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3265 killed at Tue May  2 15:20:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3333 >/dev/null 2>/dev/null
selfserv_9590 with PID 3333 found at Tue May  2 15:20:49 UTC 2017
selfserv_9590 with PID 3333 started at Tue May  2 15:20:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1001: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3333 at Tue May  2 15:20:50 UTC 2017
kill -USR1 3333
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3333 killed at Tue May  2 15:20:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3389 >/dev/null 2>/dev/null
selfserv_9590 with PID 3389 found at Tue May  2 15:20:50 UTC 2017
selfserv_9590 with PID 3389 started at Tue May  2 15:20:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1002: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3389 at Tue May  2 15:20:50 UTC 2017
kill -USR1 3389
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3389 killed at Tue May  2 15:20:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:20:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3445 >/dev/null 2>/dev/null
selfserv_9590 with PID 3445 found at Tue May  2 15:20:50 UTC 2017
selfserv_9590 with PID 3445 started at Tue May  2 15:20:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1003: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3445 at Tue May  2 15:20:50 UTC 2017
kill -USR1 3445
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3445 killed at Tue May  2 15:20:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3513 >/dev/null 2>/dev/null
selfserv_9590 with PID 3513 found at Tue May  2 15:20:50 UTC 2017
selfserv_9590 with PID 3513 started at Tue May  2 15:20:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1004: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3513 at Tue May  2 15:20:50 UTC 2017
kill -USR1 3513
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3513 killed at Tue May  2 15:20:50 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3569 >/dev/null 2>/dev/null
selfserv_9590 with PID 3569 found at Tue May  2 15:20:50 UTC 2017
selfserv_9590 with PID 3569 started at Tue May  2 15:20:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1005: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3569 at Tue May  2 15:20:51 UTC 2017
kill -USR1 3569
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3569 killed at Tue May  2 15:20:51 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3625 >/dev/null 2>/dev/null
selfserv_9590 with PID 3625 found at Tue May  2 15:20:51 UTC 2017
selfserv_9590 with PID 3625 started at Tue May  2 15:20:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #1006: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3625 at Tue May  2 15:20:51 UTC 2017
kill -USR1 3625
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3625 killed at Tue May  2 15:20:51 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/authin.tl.tmp
0
selfserv_9590 starting at Tue May  2 15:20:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:51 UTC 2017
selfserv_9590 with PID 3688 started at Tue May  2 15:20:51 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:51 UTC 2017
ssl.sh: #1007: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:51 UTC 2017
ssl.sh: #1008: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:51 UTC 2017
ssl.sh: #1009: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:52 UTC 2017
ssl.sh: #1010: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:52 UTC 2017
ssl.sh: #1011: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:52 UTC 2017
ssl.sh: #1012: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:52 UTC 2017
ssl.sh: #1013: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:52 UTC 2017
ssl.sh: #1014: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:52 UTC 2017
ssl.sh: #1015: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:52 UTC 2017
ssl.sh: #1016: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:52 UTC 2017
ssl.sh: #1017: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:53 UTC 2017
ssl.sh: #1018: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:53 UTC 2017
ssl.sh: #1019: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1020: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:53 UTC 2017
ssl.sh: #1021: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:53 UTC 2017
ssl.sh: #1022: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:53 UTC 2017
ssl.sh: #1023: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:53 UTC 2017
ssl.sh: #1024: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:53 UTC 2017
ssl.sh: #1025: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:54 UTC 2017
ssl.sh: #1026: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:54 UTC 2017
ssl.sh: #1027: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:54 UTC 2017
ssl.sh: #1028: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:54 UTC 2017
ssl.sh: #1029: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:54 UTC 2017
ssl.sh: #1030: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:54 UTC 2017
ssl.sh: #1031: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:54 UTC 2017
ssl.sh: #1032: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:55 UTC 2017
ssl.sh: #1033: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1034: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:55 UTC 2017
ssl.sh: #1035: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:55 UTC 2017
ssl.sh: #1036: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:55 UTC 2017
ssl.sh: #1037: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:55 UTC 2017
ssl.sh: #1038: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:55 UTC 2017
ssl.sh: #1039: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:55 UTC 2017
ssl.sh: #1040: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:56 UTC 2017
ssl.sh: #1041: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:56 UTC 2017
ssl.sh: #1042: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:56 UTC 2017
ssl.sh: #1043: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:56 UTC 2017
ssl.sh: #1044: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:56 UTC 2017
ssl.sh: #1045: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:56 UTC 2017
ssl.sh: #1046: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3688 >/dev/null 2>/dev/null
selfserv_9590 with PID 3688 found at Tue May  2 15:20:56 UTC 2017
ssl.sh: #1047: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 3688 at Tue May  2 15:20:56 UTC 2017
kill -USR1 3688
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3688 killed at Tue May  2 15:20:56 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:20:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:20:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:56 UTC 2017
selfserv_9590 with PID 5111 started at Tue May  2 15:20:56 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:57 UTC 2017
ssl.sh: #1048: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:57 UTC 2017
ssl.sh: #1049: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:57 UTC 2017
ssl.sh: #1050: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:57 UTC 2017
ssl.sh: #1051: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:57 UTC 2017
ssl.sh: #1052: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:57 UTC 2017
ssl.sh: #1053: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:57 UTC 2017
ssl.sh: #1054: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:57 UTC 2017
ssl.sh: #1055: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:58 UTC 2017
ssl.sh: #1056: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:58 UTC 2017
ssl.sh: #1057: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:58 UTC 2017
ssl.sh: #1058: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:58 UTC 2017
ssl.sh: #1059: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:58 UTC 2017
ssl.sh: #1060: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:58 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1061: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:58 UTC 2017
ssl.sh: #1062: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:58 UTC 2017
ssl.sh: #1063: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:58 UTC 2017
ssl.sh: #1064: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:59 UTC 2017
ssl.sh: #1065: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:59 UTC 2017
ssl.sh: #1066: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:59 UTC 2017
ssl.sh: #1067: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:59 UTC 2017
ssl.sh: #1068: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:59 UTC 2017
ssl.sh: #1069: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:59 UTC 2017
ssl.sh: #1070: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:59 UTC 2017
ssl.sh: #1071: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:20:59 UTC 2017
ssl.sh: #1072: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:00 UTC 2017
ssl.sh: #1073: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:00 UTC 2017
ssl.sh: #1074: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1075: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:00 UTC 2017
ssl.sh: #1076: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:00 UTC 2017
ssl.sh: #1077: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:00 UTC 2017
ssl.sh: #1078: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:00 UTC 2017
ssl.sh: #1079: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:00 UTC 2017
ssl.sh: #1080: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:00 UTC 2017
ssl.sh: #1081: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:00 UTC 2017
ssl.sh: #1082: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:01 UTC 2017
ssl.sh: #1083: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:01 UTC 2017
ssl.sh: #1084: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:01 UTC 2017
ssl.sh: #1085: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:01 UTC 2017
ssl.sh: #1086: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:01 UTC 2017
ssl.sh: #1087: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 5111 >/dev/null 2>/dev/null
selfserv_9590 with PID 5111 found at Tue May  2 15:21:01 UTC 2017
ssl.sh: #1088: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 5111 at Tue May  2 15:21:01 UTC 2017
kill -USR1 5111
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5111 killed at Tue May  2 15:21:01 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:21:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:01 UTC 2017
selfserv_9590 with PID 6533 started at Tue May  2 15:21:01 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:01 UTC 2017
ssl.sh: #1089: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:02 UTC 2017
ssl.sh: #1090: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:02 UTC 2017
ssl.sh: #1091: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:02 UTC 2017
ssl.sh: #1092: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:02 UTC 2017
ssl.sh: #1093: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:02 UTC 2017
ssl.sh: #1094: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:02 UTC 2017
ssl.sh: #1095: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:02 UTC 2017
ssl.sh: #1096: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:03 UTC 2017
ssl.sh: #1097: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:03 UTC 2017
ssl.sh: #1098: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:03 UTC 2017
ssl.sh: #1099: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:03 UTC 2017
ssl.sh: #1100: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:03 UTC 2017
ssl.sh: #1101: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:03 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1102: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:04 UTC 2017
ssl.sh: #1103: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:04 UTC 2017
ssl.sh: #1104: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:04 UTC 2017
ssl.sh: #1105: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:04 UTC 2017
ssl.sh: #1106: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:04 UTC 2017
ssl.sh: #1107: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:04 UTC 2017
ssl.sh: #1108: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:04 UTC 2017
ssl.sh: #1109: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:05 UTC 2017
ssl.sh: #1110: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:05 UTC 2017
ssl.sh: #1111: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:05 UTC 2017
ssl.sh: #1112: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:05 UTC 2017
ssl.sh: #1113: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:05 UTC 2017
ssl.sh: #1114: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:05 UTC 2017
ssl.sh: #1115: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1116: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:06 UTC 2017
ssl.sh: #1117: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:06 UTC 2017
ssl.sh: #1118: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:06 UTC 2017
ssl.sh: #1119: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:06 UTC 2017
ssl.sh: #1120: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:06 UTC 2017
ssl.sh: #1121: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:06 UTC 2017
ssl.sh: #1122: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:06 UTC 2017
ssl.sh: #1123: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:07 UTC 2017
ssl.sh: #1124: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:07 UTC 2017
ssl.sh: #1125: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:07 UTC 2017
ssl.sh: #1126: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:07 UTC 2017
ssl.sh: #1127: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:07 UTC 2017
ssl.sh: #1128: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6533 >/dev/null 2>/dev/null
selfserv_9590 with PID 6533 found at Tue May  2 15:21:07 UTC 2017
ssl.sh: #1129: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 6533 at Tue May  2 15:21:07 UTC 2017
kill -USR1 6533
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6533 killed at Tue May  2 15:21:07 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:21:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:07 UTC 2017
selfserv_9590 with PID 7957 started at Tue May  2 15:21:07 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:08 UTC 2017
ssl.sh: #1130: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:08 UTC 2017
ssl.sh: #1131: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:08 UTC 2017
ssl.sh: #1132: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:08 UTC 2017
ssl.sh: #1133: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:08 UTC 2017
ssl.sh: #1134: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:08 UTC 2017
ssl.sh: #1135: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:08 UTC 2017
ssl.sh: #1136: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:09 UTC 2017
ssl.sh: #1137: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:09 UTC 2017
ssl.sh: #1138: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:09 UTC 2017
ssl.sh: #1139: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:09 UTC 2017
ssl.sh: #1140: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:09 UTC 2017
ssl.sh: #1141: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:09 UTC 2017
ssl.sh: #1142: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1143: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:10 UTC 2017
ssl.sh: #1144: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:10 UTC 2017
ssl.sh: #1145: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:10 UTC 2017
ssl.sh: #1146: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:10 UTC 2017
ssl.sh: #1147: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:10 UTC 2017
ssl.sh: #1148: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:10 UTC 2017
ssl.sh: #1149: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:10 UTC 2017
ssl.sh: #1150: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:10 UTC 2017
ssl.sh: #1151: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:10 UTC 2017
ssl.sh: #1152: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:11 UTC 2017
ssl.sh: #1153: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:11 UTC 2017
ssl.sh: #1154: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:11 UTC 2017
ssl.sh: #1155: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:11 UTC 2017
ssl.sh: #1156: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1157: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:11 UTC 2017
ssl.sh: #1158: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:11 UTC 2017
ssl.sh: #1159: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:12 UTC 2017
ssl.sh: #1160: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:12 UTC 2017
ssl.sh: #1161: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:12 UTC 2017
ssl.sh: #1162: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:12 UTC 2017
ssl.sh: #1163: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:12 UTC 2017
ssl.sh: #1164: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:12 UTC 2017
ssl.sh: #1165: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:12 UTC 2017
ssl.sh: #1166: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:12 UTC 2017
ssl.sh: #1167: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:12 UTC 2017
ssl.sh: #1168: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:13 UTC 2017
ssl.sh: #1169: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7957 >/dev/null 2>/dev/null
selfserv_9590 with PID 7957 found at Tue May  2 15:21:13 UTC 2017
ssl.sh: #1170: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7957 at Tue May  2 15:21:13 UTC 2017
kill -USR1 7957
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7957 killed at Tue May  2 15:21:13 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:21:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9387 >/dev/null 2>/dev/null
selfserv_9590 with PID 9387 found at Tue May  2 15:21:13 UTC 2017
selfserv_9590 with PID 9387 started at Tue May  2 15:21:13 UTC 2017
trying to kill selfserv_9590 with PID 9387 at Tue May  2 15:21:13 UTC 2017
kill -USR1 9387
./ssl.sh: line 183:  9387 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9387 killed at Tue May  2 15:21:13 UTC 2017
selfserv_9590 starting at Tue May  2 15:21:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:13 UTC 2017
selfserv_9590 with PID 9429 started at Tue May  2 15:21:13 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:13 UTC 2017
ssl.sh: #1171: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:13 UTC 2017
ssl.sh: #1172: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:13 UTC 2017
ssl.sh: #1173: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:14 UTC 2017
ssl.sh: #1174: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:14 UTC 2017
ssl.sh: #1175: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:14 UTC 2017
ssl.sh: #1176: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:14 UTC 2017
ssl.sh: #1177: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:14 UTC 2017
ssl.sh: #1178: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:15 UTC 2017
ssl.sh: #1179: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:15 UTC 2017
ssl.sh: #1180: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:15 UTC 2017
ssl.sh: #1181: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:15 UTC 2017
ssl.sh: #1182: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:15 UTC 2017
ssl.sh: #1183: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1184: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:16 UTC 2017
ssl.sh: #1185: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:16 UTC 2017
ssl.sh: #1186: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:16 UTC 2017
ssl.sh: #1187: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:16 UTC 2017
ssl.sh: #1188: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:16 UTC 2017
ssl.sh: #1189: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:17 UTC 2017
ssl.sh: #1190: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:17 UTC 2017
ssl.sh: #1191: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:17 UTC 2017
ssl.sh: #1192: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:17 UTC 2017
ssl.sh: #1193: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:17 UTC 2017
ssl.sh: #1194: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:17 UTC 2017
ssl.sh: #1195: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:18 UTC 2017
ssl.sh: #1196: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:18 UTC 2017
ssl.sh: #1197: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1198: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:18 UTC 2017
ssl.sh: #1199: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:18 UTC 2017
ssl.sh: #1200: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:19 UTC 2017
ssl.sh: #1201: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:19 UTC 2017
ssl.sh: #1202: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:19 UTC 2017
ssl.sh: #1203: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:19 UTC 2017
ssl.sh: #1204: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:19 UTC 2017
ssl.sh: #1205: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:19 UTC 2017
ssl.sh: #1206: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:20 UTC 2017
ssl.sh: #1207: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:20 UTC 2017
ssl.sh: #1208: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:20 UTC 2017
ssl.sh: #1209: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:20 UTC 2017
ssl.sh: #1210: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9429 >/dev/null 2>/dev/null
selfserv_9590 with PID 9429 found at Tue May  2 15:21:20 UTC 2017
ssl.sh: #1211: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9429 at Tue May  2 15:21:20 UTC 2017
kill -USR1 9429
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9429 killed at Tue May  2 15:21:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:21:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:20 UTC 2017
selfserv_9590 with PID 10851 started at Tue May  2 15:21:20 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:21 UTC 2017
ssl.sh: #1212: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:21 UTC 2017
ssl.sh: #1213: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:21 UTC 2017
ssl.sh: #1214: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:21 UTC 2017
ssl.sh: #1215: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:21 UTC 2017
ssl.sh: #1216: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:22 UTC 2017
ssl.sh: #1217: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:22 UTC 2017
ssl.sh: #1218: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:22 UTC 2017
ssl.sh: #1219: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:22 UTC 2017
ssl.sh: #1220: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:22 UTC 2017
ssl.sh: #1221: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:23 UTC 2017
ssl.sh: #1222: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:23 UTC 2017
ssl.sh: #1223: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:23 UTC 2017
ssl.sh: #1224: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1225: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:23 UTC 2017
ssl.sh: #1226: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:24 UTC 2017
ssl.sh: #1227: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:24 UTC 2017
ssl.sh: #1228: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:24 UTC 2017
ssl.sh: #1229: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:24 UTC 2017
ssl.sh: #1230: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:24 UTC 2017
ssl.sh: #1231: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:25 UTC 2017
ssl.sh: #1232: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:25 UTC 2017
ssl.sh: #1233: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:25 UTC 2017
ssl.sh: #1234: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:25 UTC 2017
ssl.sh: #1235: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:25 UTC 2017
ssl.sh: #1236: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:26 UTC 2017
ssl.sh: #1237: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:26 UTC 2017
ssl.sh: #1238: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1239: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:26 UTC 2017
ssl.sh: #1240: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:26 UTC 2017
ssl.sh: #1241: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:27 UTC 2017
ssl.sh: #1242: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:27 UTC 2017
ssl.sh: #1243: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:27 UTC 2017
ssl.sh: #1244: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:27 UTC 2017
ssl.sh: #1245: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:27 UTC 2017
ssl.sh: #1246: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:28 UTC 2017
ssl.sh: #1247: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:28 UTC 2017
ssl.sh: #1248: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:28 UTC 2017
ssl.sh: #1249: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:28 UTC 2017
ssl.sh: #1250: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:28 UTC 2017
ssl.sh: #1251: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10851 >/dev/null 2>/dev/null
selfserv_9590 with PID 10851 found at Tue May  2 15:21:28 UTC 2017
ssl.sh: #1252: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 10851 at Tue May  2 15:21:29 UTC 2017
kill -USR1 10851
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10851 killed at Tue May  2 15:21:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:21:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:29 UTC 2017
selfserv_9590 with PID 12274 started at Tue May  2 15:21:29 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:29 UTC 2017
ssl.sh: #1253: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:29 UTC 2017
ssl.sh: #1254: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:29 UTC 2017
ssl.sh: #1255: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:29 UTC 2017
ssl.sh: #1256: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:29 UTC 2017
ssl.sh: #1257: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:29 UTC 2017
ssl.sh: #1258: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:30 UTC 2017
ssl.sh: #1259: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:30 UTC 2017
ssl.sh: #1260: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:30 UTC 2017
ssl.sh: #1261: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:30 UTC 2017
ssl.sh: #1262: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:30 UTC 2017
ssl.sh: #1263: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:30 UTC 2017
ssl.sh: #1264: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:31 UTC 2017
ssl.sh: #1265: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1266: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:31 UTC 2017
ssl.sh: #1267: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:31 UTC 2017
ssl.sh: #1268: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:31 UTC 2017
ssl.sh: #1269: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:31 UTC 2017
ssl.sh: #1270: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:31 UTC 2017
ssl.sh: #1271: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:32 UTC 2017
ssl.sh: #1272: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:32 UTC 2017
ssl.sh: #1273: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:32 UTC 2017
ssl.sh: #1274: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:32 UTC 2017
ssl.sh: #1275: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:32 UTC 2017
ssl.sh: #1276: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:32 UTC 2017
ssl.sh: #1277: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:32 UTC 2017
ssl.sh: #1278: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:33 UTC 2017
ssl.sh: #1279: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1280: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:33 UTC 2017
ssl.sh: #1281: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:33 UTC 2017
ssl.sh: #1282: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:33 UTC 2017
ssl.sh: #1283: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:33 UTC 2017
ssl.sh: #1284: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:34 UTC 2017
ssl.sh: #1285: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:34 UTC 2017
ssl.sh: #1286: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:34 UTC 2017
ssl.sh: #1287: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:34 UTC 2017
ssl.sh: #1288: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:34 UTC 2017
ssl.sh: #1289: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:34 UTC 2017
ssl.sh: #1290: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:34 UTC 2017
ssl.sh: #1291: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:35 UTC 2017
ssl.sh: #1292: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 12274 >/dev/null 2>/dev/null
selfserv_9590 with PID 12274 found at Tue May  2 15:21:35 UTC 2017
ssl.sh: #1293: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12274 at Tue May  2 15:21:35 UTC 2017
kill -USR1 12274
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12274 killed at Tue May  2 15:21:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:21:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:35 UTC 2017
selfserv_9590 with PID 13698 started at Tue May  2 15:21:35 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:35 UTC 2017
ssl.sh: #1294: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:35 UTC 2017
ssl.sh: #1295: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:35 UTC 2017
ssl.sh: #1296: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:36 UTC 2017
ssl.sh: #1297: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:36 UTC 2017
ssl.sh: #1298: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:36 UTC 2017
ssl.sh: #1299: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:36 UTC 2017
ssl.sh: #1300: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:36 UTC 2017
ssl.sh: #1301: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:37 UTC 2017
ssl.sh: #1302: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:37 UTC 2017
ssl.sh: #1303: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:37 UTC 2017
ssl.sh: #1304: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:37 UTC 2017
ssl.sh: #1305: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:37 UTC 2017
ssl.sh: #1306: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1307: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:38 UTC 2017
ssl.sh: #1308: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:38 UTC 2017
ssl.sh: #1309: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:38 UTC 2017
ssl.sh: #1310: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:38 UTC 2017
ssl.sh: #1311: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:39 UTC 2017
ssl.sh: #1312: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:39 UTC 2017
ssl.sh: #1313: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:39 UTC 2017
ssl.sh: #1314: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:39 UTC 2017
ssl.sh: #1315: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:39 UTC 2017
ssl.sh: #1316: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:40 UTC 2017
ssl.sh: #1317: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:40 UTC 2017
ssl.sh: #1318: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:40 UTC 2017
ssl.sh: #1319: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:40 UTC 2017
ssl.sh: #1320: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1321: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:41 UTC 2017
ssl.sh: #1322: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:41 UTC 2017
ssl.sh: #1323: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:41 UTC 2017
ssl.sh: #1324: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:41 UTC 2017
ssl.sh: #1325: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:41 UTC 2017
ssl.sh: #1326: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:41 UTC 2017
ssl.sh: #1327: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:42 UTC 2017
ssl.sh: #1328: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:42 UTC 2017
ssl.sh: #1329: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:42 UTC 2017
ssl.sh: #1330: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:42 UTC 2017
ssl.sh: #1331: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:42 UTC 2017
ssl.sh: #1332: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:43 UTC 2017
ssl.sh: #1333: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13698 >/dev/null 2>/dev/null
selfserv_9590 with PID 13698 found at Tue May  2 15:21:43 UTC 2017
ssl.sh: #1334: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 13698 at Tue May  2 15:21:43 UTC 2017
kill -USR1 13698
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13698 killed at Tue May  2 15:21:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:21:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:43 UTC 2017
selfserv_9590 with PID 15120 started at Tue May  2 15:21:43 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:43 UTC 2017
ssl.sh: #1335: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:43 UTC 2017
ssl.sh: #1336: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:44 UTC 2017
ssl.sh: #1337: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:44 UTC 2017
ssl.sh: #1338: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:44 UTC 2017
ssl.sh: #1339: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:44 UTC 2017
ssl.sh: #1340: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:44 UTC 2017
ssl.sh: #1341: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:45 UTC 2017
ssl.sh: #1342: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:45 UTC 2017
ssl.sh: #1343: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:45 UTC 2017
ssl.sh: #1344: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:45 UTC 2017
ssl.sh: #1345: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:46 UTC 2017
ssl.sh: #1346: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:46 UTC 2017
ssl.sh: #1347: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1348: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:46 UTC 2017
ssl.sh: #1349: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:46 UTC 2017
ssl.sh: #1350: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:47 UTC 2017
ssl.sh: #1351: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:47 UTC 2017
ssl.sh: #1352: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:47 UTC 2017
ssl.sh: #1353: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:47 UTC 2017
ssl.sh: #1354: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:47 UTC 2017
ssl.sh: #1355: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:48 UTC 2017
ssl.sh: #1356: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:48 UTC 2017
ssl.sh: #1357: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:48 UTC 2017
ssl.sh: #1358: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:48 UTC 2017
ssl.sh: #1359: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:49 UTC 2017
ssl.sh: #1360: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:49 UTC 2017
ssl.sh: #1361: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:49 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1362: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:49 UTC 2017
ssl.sh: #1363: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:49 UTC 2017
ssl.sh: #1364: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:50 UTC 2017
ssl.sh: #1365: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:50 UTC 2017
ssl.sh: #1366: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:50 UTC 2017
ssl.sh: #1367: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:50 UTC 2017
ssl.sh: #1368: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:50 UTC 2017
ssl.sh: #1369: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:51 UTC 2017
ssl.sh: #1370: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:51 UTC 2017
ssl.sh: #1371: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:51 UTC 2017
ssl.sh: #1372: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:51 UTC 2017
ssl.sh: #1373: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:51 UTC 2017
ssl.sh: #1374: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 15120 >/dev/null 2>/dev/null
selfserv_9590 with PID 15120 found at Tue May  2 15:21:52 UTC 2017
ssl.sh: #1375: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 15120 at Tue May  2 15:21:52 UTC 2017
kill -USR1 15120
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15120 killed at Tue May  2 15:21:52 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:21:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:52 UTC 2017
selfserv_9590 with PID 16542 started at Tue May  2 15:21:52 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:52 UTC 2017
ssl.sh: #1376: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:52 UTC 2017
ssl.sh: #1377: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:52 UTC 2017
ssl.sh: #1378: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:52 UTC 2017
ssl.sh: #1379: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:52 UTC 2017
ssl.sh: #1380: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:53 UTC 2017
ssl.sh: #1381: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:53 UTC 2017
ssl.sh: #1382: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:53 UTC 2017
ssl.sh: #1383: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:53 UTC 2017
ssl.sh: #1384: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:53 UTC 2017
ssl.sh: #1385: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:54 UTC 2017
ssl.sh: #1386: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:54 UTC 2017
ssl.sh: #1387: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:54 UTC 2017
ssl.sh: #1388: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1389: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:54 UTC 2017
ssl.sh: #1390: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:54 UTC 2017
ssl.sh: #1391: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:55 UTC 2017
ssl.sh: #1392: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:55 UTC 2017
ssl.sh: #1393: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:55 UTC 2017
ssl.sh: #1394: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:55 UTC 2017
ssl.sh: #1395: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:55 UTC 2017
ssl.sh: #1396: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:55 UTC 2017
ssl.sh: #1397: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:55 UTC 2017
ssl.sh: #1398: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:56 UTC 2017
ssl.sh: #1399: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:56 UTC 2017
ssl.sh: #1400: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:56 UTC 2017
ssl.sh: #1401: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:56 UTC 2017
ssl.sh: #1402: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:56 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1403: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:57 UTC 2017
ssl.sh: #1404: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:57 UTC 2017
ssl.sh: #1405: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:57 UTC 2017
ssl.sh: #1406: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:57 UTC 2017
ssl.sh: #1407: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:57 UTC 2017
ssl.sh: #1408: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:57 UTC 2017
ssl.sh: #1409: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:57 UTC 2017
ssl.sh: #1410: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:58 UTC 2017
ssl.sh: #1411: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:58 UTC 2017
ssl.sh: #1412: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:58 UTC 2017
ssl.sh: #1413: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:58 UTC 2017
ssl.sh: #1414: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:58 UTC 2017
ssl.sh: #1415: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16542 >/dev/null 2>/dev/null
selfserv_9590 with PID 16542 found at Tue May  2 15:21:58 UTC 2017
ssl.sh: #1416: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16542 at Tue May  2 15:21:58 UTC 2017
kill -USR1 16542
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16542 killed at Tue May  2 15:21:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:21:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17968 >/dev/null 2>/dev/null
selfserv_9590 with PID 17968 found at Tue May  2 15:21:59 UTC 2017
selfserv_9590 with PID 17968 started at Tue May  2 15:21:59 UTC 2017
trying to kill selfserv_9590 with PID 17968 at Tue May  2 15:21:59 UTC 2017
kill -USR1 17968
./ssl.sh: line 183: 17968 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17968 killed at Tue May  2 15:21:59 UTC 2017
selfserv_9590 starting at Tue May  2 15:21:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:21:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:21:59 UTC 2017
selfserv_9590 with PID 18010 started at Tue May  2 15:21:59 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:21:59 UTC 2017
ssl.sh: #1417: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:21:59 UTC 2017
ssl.sh: #1418: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:21:59 UTC 2017
ssl.sh: #1419: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:21:59 UTC 2017
ssl.sh: #1420: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:00 UTC 2017
ssl.sh: #1421: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:00 UTC 2017
ssl.sh: #1422: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:00 UTC 2017
ssl.sh: #1423: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:00 UTC 2017
ssl.sh: #1424: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:00 UTC 2017
ssl.sh: #1425: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:00 UTC 2017
ssl.sh: #1426: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:01 UTC 2017
ssl.sh: #1427: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:01 UTC 2017
ssl.sh: #1428: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:01 UTC 2017
ssl.sh: #1429: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1430: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:01 UTC 2017
ssl.sh: #1431: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:02 UTC 2017
ssl.sh: #1432: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:02 UTC 2017
ssl.sh: #1433: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:02 UTC 2017
ssl.sh: #1434: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:02 UTC 2017
ssl.sh: #1435: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:02 UTC 2017
ssl.sh: #1436: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:02 UTC 2017
ssl.sh: #1437: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:03 UTC 2017
ssl.sh: #1438: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:03 UTC 2017
ssl.sh: #1439: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:03 UTC 2017
ssl.sh: #1440: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:03 UTC 2017
ssl.sh: #1441: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:03 UTC 2017
ssl.sh: #1442: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:04 UTC 2017
ssl.sh: #1443: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1444: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:04 UTC 2017
ssl.sh: #1445: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:04 UTC 2017
ssl.sh: #1446: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:04 UTC 2017
ssl.sh: #1447: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:04 UTC 2017
ssl.sh: #1448: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:05 UTC 2017
ssl.sh: #1449: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:05 UTC 2017
ssl.sh: #1450: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:05 UTC 2017
ssl.sh: #1451: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:05 UTC 2017
ssl.sh: #1452: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:05 UTC 2017
ssl.sh: #1453: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:06 UTC 2017
ssl.sh: #1454: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:06 UTC 2017
ssl.sh: #1455: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:06 UTC 2017
ssl.sh: #1456: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18010 >/dev/null 2>/dev/null
selfserv_9590 with PID 18010 found at Tue May  2 15:22:06 UTC 2017
ssl.sh: #1457: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18010 at Tue May  2 15:22:06 UTC 2017
kill -USR1 18010
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18010 killed at Tue May  2 15:22:06 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:06 UTC 2017
selfserv_9590 with PID 19432 started at Tue May  2 15:22:06 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:06 UTC 2017
ssl.sh: #1458: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:07 UTC 2017
ssl.sh: #1459: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:07 UTC 2017
ssl.sh: #1460: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:07 UTC 2017
ssl.sh: #1461: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:07 UTC 2017
ssl.sh: #1462: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:07 UTC 2017
ssl.sh: #1463: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:08 UTC 2017
ssl.sh: #1464: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:08 UTC 2017
ssl.sh: #1465: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:08 UTC 2017
ssl.sh: #1466: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:08 UTC 2017
ssl.sh: #1467: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:08 UTC 2017
ssl.sh: #1468: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:09 UTC 2017
ssl.sh: #1469: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:09 UTC 2017
ssl.sh: #1470: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1471: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:09 UTC 2017
ssl.sh: #1472: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:09 UTC 2017
ssl.sh: #1473: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:10 UTC 2017
ssl.sh: #1474: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:10 UTC 2017
ssl.sh: #1475: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:10 UTC 2017
ssl.sh: #1476: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:10 UTC 2017
ssl.sh: #1477: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:10 UTC 2017
ssl.sh: #1478: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:11 UTC 2017
ssl.sh: #1479: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:11 UTC 2017
ssl.sh: #1480: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:11 UTC 2017
ssl.sh: #1481: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:11 UTC 2017
ssl.sh: #1482: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:11 UTC 2017
ssl.sh: #1483: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:12 UTC 2017
ssl.sh: #1484: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:12 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1485: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:12 UTC 2017
ssl.sh: #1486: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:12 UTC 2017
ssl.sh: #1487: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:12 UTC 2017
ssl.sh: #1488: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:12 UTC 2017
ssl.sh: #1489: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:13 UTC 2017
ssl.sh: #1490: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:13 UTC 2017
ssl.sh: #1491: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:13 UTC 2017
ssl.sh: #1492: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:13 UTC 2017
ssl.sh: #1493: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:13 UTC 2017
ssl.sh: #1494: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:14 UTC 2017
ssl.sh: #1495: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:14 UTC 2017
ssl.sh: #1496: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:14 UTC 2017
ssl.sh: #1497: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19432 >/dev/null 2>/dev/null
selfserv_9590 with PID 19432 found at Tue May  2 15:22:14 UTC 2017
ssl.sh: #1498: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 19432 at Tue May  2 15:22:14 UTC 2017
kill -USR1 19432
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19432 killed at Tue May  2 15:22:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:14 UTC 2017
selfserv_9590 with PID 20854 started at Tue May  2 15:22:14 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:14 UTC 2017
ssl.sh: #1499: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:15 UTC 2017
ssl.sh: #1500: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:15 UTC 2017
ssl.sh: #1501: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:15 UTC 2017
ssl.sh: #1502: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:15 UTC 2017
ssl.sh: #1503: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:15 UTC 2017
ssl.sh: #1504: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:15 UTC 2017
ssl.sh: #1505: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:15 UTC 2017
ssl.sh: #1506: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:16 UTC 2017
ssl.sh: #1507: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:16 UTC 2017
ssl.sh: #1508: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:16 UTC 2017
ssl.sh: #1509: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:16 UTC 2017
ssl.sh: #1510: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:16 UTC 2017
ssl.sh: #1511: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1512: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:17 UTC 2017
ssl.sh: #1513: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:17 UTC 2017
ssl.sh: #1514: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:17 UTC 2017
ssl.sh: #1515: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:17 UTC 2017
ssl.sh: #1516: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:17 UTC 2017
ssl.sh: #1517: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:17 UTC 2017
ssl.sh: #1518: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:17 UTC 2017
ssl.sh: #1519: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:18 UTC 2017
ssl.sh: #1520: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:18 UTC 2017
ssl.sh: #1521: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:18 UTC 2017
ssl.sh: #1522: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:18 UTC 2017
ssl.sh: #1523: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:18 UTC 2017
ssl.sh: #1524: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:18 UTC 2017
ssl.sh: #1525: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1526: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:19 UTC 2017
ssl.sh: #1527: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:19 UTC 2017
ssl.sh: #1528: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:19 UTC 2017
ssl.sh: #1529: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:19 UTC 2017
ssl.sh: #1530: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:19 UTC 2017
ssl.sh: #1531: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:19 UTC 2017
ssl.sh: #1532: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:20 UTC 2017
ssl.sh: #1533: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:20 UTC 2017
ssl.sh: #1534: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:20 UTC 2017
ssl.sh: #1535: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:20 UTC 2017
ssl.sh: #1536: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:20 UTC 2017
ssl.sh: #1537: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:20 UTC 2017
ssl.sh: #1538: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20854 >/dev/null 2>/dev/null
selfserv_9590 with PID 20854 found at Tue May  2 15:22:20 UTC 2017
ssl.sh: #1539: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20854 at Tue May  2 15:22:20 UTC 2017
kill -USR1 20854
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20854 killed at Tue May  2 15:22:20 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:21 UTC 2017
selfserv_9590 with PID 22277 started at Tue May  2 15:22:21 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:21 UTC 2017
ssl.sh: #1540: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:21 UTC 2017
ssl.sh: #1541: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:21 UTC 2017
ssl.sh: #1542: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:21 UTC 2017
ssl.sh: #1543: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:22 UTC 2017
ssl.sh: #1544: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:22 UTC 2017
ssl.sh: #1545: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:22 UTC 2017
ssl.sh: #1546: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:22 UTC 2017
ssl.sh: #1547: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:22 UTC 2017
ssl.sh: #1548: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:23 UTC 2017
ssl.sh: #1549: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:23 UTC 2017
ssl.sh: #1550: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:23 UTC 2017
ssl.sh: #1551: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:23 UTC 2017
ssl.sh: #1552: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:23 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1553: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:24 UTC 2017
ssl.sh: #1554: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:24 UTC 2017
ssl.sh: #1555: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:24 UTC 2017
ssl.sh: #1556: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:24 UTC 2017
ssl.sh: #1557: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:24 UTC 2017
ssl.sh: #1558: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:25 UTC 2017
ssl.sh: #1559: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:25 UTC 2017
ssl.sh: #1560: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:25 UTC 2017
ssl.sh: #1561: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:25 UTC 2017
ssl.sh: #1562: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:25 UTC 2017
ssl.sh: #1563: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:26 UTC 2017
ssl.sh: #1564: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:26 UTC 2017
ssl.sh: #1565: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:26 UTC 2017
ssl.sh: #1566: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1567: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:26 UTC 2017
ssl.sh: #1568: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:27 UTC 2017
ssl.sh: #1569: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:27 UTC 2017
ssl.sh: #1570: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:27 UTC 2017
ssl.sh: #1571: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:27 UTC 2017
ssl.sh: #1572: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:27 UTC 2017
ssl.sh: #1573: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:28 UTC 2017
ssl.sh: #1574: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:28 UTC 2017
ssl.sh: #1575: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:28 UTC 2017
ssl.sh: #1576: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:28 UTC 2017
ssl.sh: #1577: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:28 UTC 2017
ssl.sh: #1578: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:28 UTC 2017
ssl.sh: #1579: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22277 >/dev/null 2>/dev/null
selfserv_9590 with PID 22277 found at Tue May  2 15:22:29 UTC 2017
ssl.sh: #1580: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 22277 at Tue May  2 15:22:29 UTC 2017
kill -USR1 22277
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22277 killed at Tue May  2 15:22:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:29 UTC 2017
selfserv_9590 with PID 23699 started at Tue May  2 15:22:29 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:29 UTC 2017
ssl.sh: #1581: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:29 UTC 2017
ssl.sh: #1582: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:29 UTC 2017
ssl.sh: #1583: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:30 UTC 2017
ssl.sh: #1584: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:30 UTC 2017
ssl.sh: #1585: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:30 UTC 2017
ssl.sh: #1586: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:30 UTC 2017
ssl.sh: #1587: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:31 UTC 2017
ssl.sh: #1588: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:31 UTC 2017
ssl.sh: #1589: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:31 UTC 2017
ssl.sh: #1590: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:31 UTC 2017
ssl.sh: #1591: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:31 UTC 2017
ssl.sh: #1592: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:32 UTC 2017
ssl.sh: #1593: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1594: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:32 UTC 2017
ssl.sh: #1595: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:32 UTC 2017
ssl.sh: #1596: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:32 UTC 2017
ssl.sh: #1597: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:33 UTC 2017
ssl.sh: #1598: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:33 UTC 2017
ssl.sh: #1599: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:33 UTC 2017
ssl.sh: #1600: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:33 UTC 2017
ssl.sh: #1601: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:33 UTC 2017
ssl.sh: #1602: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:34 UTC 2017
ssl.sh: #1603: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:34 UTC 2017
ssl.sh: #1604: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:34 UTC 2017
ssl.sh: #1605: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:34 UTC 2017
ssl.sh: #1606: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:35 UTC 2017
ssl.sh: #1607: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1608: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:35 UTC 2017
ssl.sh: #1609: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:35 UTC 2017
ssl.sh: #1610: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:35 UTC 2017
ssl.sh: #1611: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:35 UTC 2017
ssl.sh: #1612: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:36 UTC 2017
ssl.sh: #1613: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:36 UTC 2017
ssl.sh: #1614: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:36 UTC 2017
ssl.sh: #1615: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:36 UTC 2017
ssl.sh: #1616: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:37 UTC 2017
ssl.sh: #1617: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:37 UTC 2017
ssl.sh: #1618: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:37 UTC 2017
ssl.sh: #1619: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:37 UTC 2017
ssl.sh: #1620: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23699 >/dev/null 2>/dev/null
selfserv_9590 with PID 23699 found at Tue May  2 15:22:37 UTC 2017
ssl.sh: #1621: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 23699 at Tue May  2 15:22:37 UTC 2017
kill -USR1 23699
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 23699 killed at Tue May  2 15:22:37 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:37 UTC 2017
selfserv_9590 with PID 25122 started at Tue May  2 15:22:37 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:38 UTC 2017
ssl.sh: #1622: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:38 UTC 2017
ssl.sh: #1623: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:38 UTC 2017
ssl.sh: #1624: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:38 UTC 2017
ssl.sh: #1625: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:38 UTC 2017
ssl.sh: #1626: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:38 UTC 2017
ssl.sh: #1627: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:39 UTC 2017
ssl.sh: #1628: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:39 UTC 2017
ssl.sh: #1629: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:39 UTC 2017
ssl.sh: #1630: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:39 UTC 2017
ssl.sh: #1631: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:39 UTC 2017
ssl.sh: #1632: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:39 UTC 2017
ssl.sh: #1633: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:40 UTC 2017
ssl.sh: #1634: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1635: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:40 UTC 2017
ssl.sh: #1636: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:40 UTC 2017
ssl.sh: #1637: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:40 UTC 2017
ssl.sh: #1638: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:41 UTC 2017
ssl.sh: #1639: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:41 UTC 2017
ssl.sh: #1640: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:41 UTC 2017
ssl.sh: #1641: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:41 UTC 2017
ssl.sh: #1642: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:41 UTC 2017
ssl.sh: #1643: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:41 UTC 2017
ssl.sh: #1644: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:41 UTC 2017
ssl.sh: #1645: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:42 UTC 2017
ssl.sh: #1646: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:42 UTC 2017
ssl.sh: #1647: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:42 UTC 2017
ssl.sh: #1648: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #1649: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:42 UTC 2017
ssl.sh: #1650: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:43 UTC 2017
ssl.sh: #1651: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:43 UTC 2017
ssl.sh: #1652: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:43 UTC 2017
ssl.sh: #1653: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:43 UTC 2017
ssl.sh: #1654: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:43 UTC 2017
ssl.sh: #1655: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:43 UTC 2017
ssl.sh: #1656: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:43 UTC 2017
ssl.sh: #1657: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:44 UTC 2017
ssl.sh: #1658: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:44 UTC 2017
ssl.sh: #1659: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:44 UTC 2017
ssl.sh: #1660: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:44 UTC 2017
ssl.sh: #1661: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25122 >/dev/null 2>/dev/null
selfserv_9590 with PID 25122 found at Tue May  2 15:22:44 UTC 2017
ssl.sh: #1662: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 25122 at Tue May  2 15:22:44 UTC 2017
kill -USR1 25122
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 25122 killed at Tue May  2 15:22:44 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26546 >/dev/null 2>/dev/null
selfserv_9590 with PID 26546 found at Tue May  2 15:22:44 UTC 2017
selfserv_9590 with PID 26546 started at Tue May  2 15:22:44 UTC 2017
trying to kill selfserv_9590 with PID 26546 at Tue May  2 15:22:44 UTC 2017
kill -USR1 26546
./ssl.sh: line 183: 26546 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 26546 killed at Tue May  2 15:22:44 UTC 2017
ssl.sh: SSL - FIPS mode on for server ===============================
ssl.sh: Turning FIPS on for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -fips true -force
FIPS mode enabled.
ssl.sh: #1663:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -list
ssl.sh: #1664:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1665:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -fips true -force
FIPS mode enabled.
ssl.sh: #1666:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -list
ssl.sh: #1667:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #1668:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server fips/client normal  - with ECC ===============================
selfserv_9590 starting at Tue May  2 15:22:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26656 >/dev/null 2>/dev/null
selfserv_9590 with PID 26656 found at Tue May  2 15:22:45 UTC 2017
selfserv_9590 with PID 26656 started at Tue May  2 15:22:45 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1669: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1670: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1671: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1672: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1673: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1674: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1675: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1676: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1677: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1678: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1679: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1680: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1681: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1682: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1683: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1684: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1685: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1686: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1687: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1688: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1689: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1690: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1691: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1692: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1693: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1694: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1695: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1696: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1697: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1698: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1699: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1700: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1701: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1702: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1703: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1704: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1705: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1706: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1707: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1708: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1709: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1710: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1711: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1712: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1713: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1714: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1715: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1716: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1717: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1718: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1719: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1720: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1721: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1722: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1723: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1724: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1725: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1726: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1727: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1728: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1729: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1730: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1731: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1732: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1733: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1734: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1735: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1736: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1737: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1738: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1739: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1740: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1741: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1742: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1743: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1744: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1745: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1746: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1747: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1748: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1749: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1750: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1751: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1752: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1753: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1754: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1755: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1756: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1757: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1758: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1759: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1760: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1761: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1762: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1763: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1764: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1765: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1766: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1767: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1768: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1769: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1770: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1771: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1772: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1773: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1774: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1775: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1776: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1777: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1778: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1779: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1780: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1781: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1782: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1783: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1784: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1785: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1786: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1787: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1788: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1789: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 26656 at Tue May  2 15:22:53 UTC 2017
kill -USR1 26656
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 26656 killed at Tue May  2 15:22:53 UTC 2017
ssl.sh: SSL Client Authentication  - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:22:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28921 >/dev/null 2>/dev/null
selfserv_9590 with PID 28921 found at Tue May  2 15:22:54 UTC 2017
selfserv_9590 with PID 28921 started at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1790: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 28921 at Tue May  2 15:22:54 UTC 2017
kill -USR1 28921
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28921 killed at Tue May  2 15:22:54 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:22:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28978 >/dev/null 2>/dev/null
selfserv_9590 with PID 28978 found at Tue May  2 15:22:54 UTC 2017
selfserv_9590 with PID 28978 started at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1791: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 28978 at Tue May  2 15:22:54 UTC 2017
kill -USR1 28978
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28978 killed at Tue May  2 15:22:54 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29035 >/dev/null 2>/dev/null
selfserv_9590 with PID 29035 found at Tue May  2 15:22:54 UTC 2017
selfserv_9590 with PID 29035 started at Tue May  2 15:22:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1792: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29035 at Tue May  2 15:22:55 UTC 2017
kill -USR1 29035
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29035 killed at Tue May  2 15:22:55 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:22:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29092 >/dev/null 2>/dev/null
selfserv_9590 with PID 29092 found at Tue May  2 15:22:55 UTC 2017
selfserv_9590 with PID 29092 started at Tue May  2 15:22:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1793: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29092 at Tue May  2 15:22:55 UTC 2017
kill -USR1 29092
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29092 killed at Tue May  2 15:22:55 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:22:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29149 >/dev/null 2>/dev/null
selfserv_9590 with PID 29149 found at Tue May  2 15:22:55 UTC 2017
selfserv_9590 with PID 29149 started at Tue May  2 15:22:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1794: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29149 at Tue May  2 15:22:55 UTC 2017
kill -USR1 29149
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29149 killed at Tue May  2 15:22:55 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29208 >/dev/null 2>/dev/null
selfserv_9590 with PID 29208 found at Tue May  2 15:22:55 UTC 2017
selfserv_9590 with PID 29208 started at Tue May  2 15:22:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1795: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29208 at Tue May  2 15:22:56 UTC 2017
kill -USR1 29208
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29208 killed at Tue May  2 15:22:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:22:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29265 >/dev/null 2>/dev/null
selfserv_9590 with PID 29265 found at Tue May  2 15:22:56 UTC 2017
selfserv_9590 with PID 29265 started at Tue May  2 15:22:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1796: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29265 at Tue May  2 15:22:56 UTC 2017
kill -USR1 29265
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29265 killed at Tue May  2 15:22:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:22:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29322 >/dev/null 2>/dev/null
selfserv_9590 with PID 29322 found at Tue May  2 15:22:56 UTC 2017
selfserv_9590 with PID 29322 started at Tue May  2 15:22:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1797: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29322 at Tue May  2 15:22:56 UTC 2017
kill -USR1 29322
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29322 killed at Tue May  2 15:22:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29379 >/dev/null 2>/dev/null
selfserv_9590 with PID 29379 found at Tue May  2 15:22:56 UTC 2017
selfserv_9590 with PID 29379 started at Tue May  2 15:22:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1798: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29379 at Tue May  2 15:22:56 UTC 2017
kill -USR1 29379
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29379 killed at Tue May  2 15:22:56 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:22:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29436 >/dev/null 2>/dev/null
selfserv_9590 with PID 29436 found at Tue May  2 15:22:56 UTC 2017
selfserv_9590 with PID 29436 started at Tue May  2 15:22:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1799: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29436 at Tue May  2 15:22:57 UTC 2017
kill -USR1 29436
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29436 killed at Tue May  2 15:22:57 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:22:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29493 >/dev/null 2>/dev/null
selfserv_9590 with PID 29493 found at Tue May  2 15:22:57 UTC 2017
selfserv_9590 with PID 29493 started at Tue May  2 15:22:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1800: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29493 at Tue May  2 15:22:57 UTC 2017
kill -USR1 29493
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29493 killed at Tue May  2 15:22:57 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29550 >/dev/null 2>/dev/null
selfserv_9590 with PID 29550 found at Tue May  2 15:22:57 UTC 2017
selfserv_9590 with PID 29550 started at Tue May  2 15:22:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1801: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29550 at Tue May  2 15:22:57 UTC 2017
kill -USR1 29550
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29550 killed at Tue May  2 15:22:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:22:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29607 >/dev/null 2>/dev/null
selfserv_9590 with PID 29607 found at Tue May  2 15:22:57 UTC 2017
selfserv_9590 with PID 29607 started at Tue May  2 15:22:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1802: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29607 at Tue May  2 15:22:58 UTC 2017
kill -USR1 29607
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29607 killed at Tue May  2 15:22:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:22:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29664 >/dev/null 2>/dev/null
selfserv_9590 with PID 29664 found at Tue May  2 15:22:58 UTC 2017
selfserv_9590 with PID 29664 started at Tue May  2 15:22:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1803: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29664 at Tue May  2 15:22:58 UTC 2017
kill -USR1 29664
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29664 killed at Tue May  2 15:22:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29721 >/dev/null 2>/dev/null
selfserv_9590 with PID 29721 found at Tue May  2 15:22:58 UTC 2017
selfserv_9590 with PID 29721 started at Tue May  2 15:22:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1804: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29721 at Tue May  2 15:22:59 UTC 2017
kill -USR1 29721
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29721 killed at Tue May  2 15:22:59 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:22:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29778 >/dev/null 2>/dev/null
selfserv_9590 with PID 29778 found at Tue May  2 15:22:59 UTC 2017
selfserv_9590 with PID 29778 started at Tue May  2 15:22:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1805: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29778 at Tue May  2 15:22:59 UTC 2017
kill -USR1 29778
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29778 killed at Tue May  2 15:22:59 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:22:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29835 >/dev/null 2>/dev/null
selfserv_9590 with PID 29835 found at Tue May  2 15:22:59 UTC 2017
selfserv_9590 with PID 29835 started at Tue May  2 15:22:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1806: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29835 at Tue May  2 15:22:59 UTC 2017
kill -USR1 29835
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29835 killed at Tue May  2 15:22:59 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:22:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:22:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29892 >/dev/null 2>/dev/null
selfserv_9590 with PID 29892 found at Tue May  2 15:22:59 UTC 2017
selfserv_9590 with PID 29892 started at Tue May  2 15:22:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1807: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29892 at Tue May  2 15:23:00 UTC 2017
kill -USR1 29892
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29892 killed at Tue May  2 15:23:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:23:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29949 >/dev/null 2>/dev/null
selfserv_9590 with PID 29949 found at Tue May  2 15:23:00 UTC 2017
selfserv_9590 with PID 29949 started at Tue May  2 15:23:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1808: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 29949 at Tue May  2 15:23:00 UTC 2017
kill -USR1 29949
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29949 killed at Tue May  2 15:23:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30006 >/dev/null 2>/dev/null
selfserv_9590 with PID 30006 found at Tue May  2 15:23:00 UTC 2017
selfserv_9590 with PID 30006 started at Tue May  2 15:23:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1809: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30006 at Tue May  2 15:23:01 UTC 2017
kill -USR1 30006
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30006 killed at Tue May  2 15:23:01 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30063 >/dev/null 2>/dev/null
selfserv_9590 with PID 30063 found at Tue May  2 15:23:01 UTC 2017
selfserv_9590 with PID 30063 started at Tue May  2 15:23:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1810: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30063 at Tue May  2 15:23:01 UTC 2017
kill -USR1 30063
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30063 killed at Tue May  2 15:23:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:23:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30120 >/dev/null 2>/dev/null
selfserv_9590 with PID 30120 found at Tue May  2 15:23:01 UTC 2017
selfserv_9590 with PID 30120 started at Tue May  2 15:23:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1811: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30120 at Tue May  2 15:23:01 UTC 2017
kill -USR1 30120
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30120 killed at Tue May  2 15:23:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30177 >/dev/null 2>/dev/null
selfserv_9590 with PID 30177 found at Tue May  2 15:23:01 UTC 2017
selfserv_9590 with PID 30177 started at Tue May  2 15:23:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1812: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30177 at Tue May  2 15:23:02 UTC 2017
kill -USR1 30177
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30177 killed at Tue May  2 15:23:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30234 >/dev/null 2>/dev/null
selfserv_9590 with PID 30234 found at Tue May  2 15:23:02 UTC 2017
selfserv_9590 with PID 30234 started at Tue May  2 15:23:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1813: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30234 at Tue May  2 15:23:02 UTC 2017
kill -USR1 30234
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30234 killed at Tue May  2 15:23:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:23:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30291 >/dev/null 2>/dev/null
selfserv_9590 with PID 30291 found at Tue May  2 15:23:02 UTC 2017
selfserv_9590 with PID 30291 started at Tue May  2 15:23:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1814: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30291 at Tue May  2 15:23:03 UTC 2017
kill -USR1 30291
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30291 killed at Tue May  2 15:23:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30348 >/dev/null 2>/dev/null
selfserv_9590 with PID 30348 found at Tue May  2 15:23:03 UTC 2017
selfserv_9590 with PID 30348 started at Tue May  2 15:23:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1815: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30348 at Tue May  2 15:23:03 UTC 2017
kill -USR1 30348
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30348 killed at Tue May  2 15:23:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30405 >/dev/null 2>/dev/null
selfserv_9590 with PID 30405 found at Tue May  2 15:23:03 UTC 2017
selfserv_9590 with PID 30405 started at Tue May  2 15:23:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1816: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30405 at Tue May  2 15:23:03 UTC 2017
kill -USR1 30405
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30405 killed at Tue May  2 15:23:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:23:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30462 >/dev/null 2>/dev/null
selfserv_9590 with PID 30462 found at Tue May  2 15:23:03 UTC 2017
selfserv_9590 with PID 30462 started at Tue May  2 15:23:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1817: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30462 at Tue May  2 15:23:04 UTC 2017
kill -USR1 30462
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30462 killed at Tue May  2 15:23:04 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30519 >/dev/null 2>/dev/null
selfserv_9590 with PID 30519 found at Tue May  2 15:23:04 UTC 2017
selfserv_9590 with PID 30519 started at Tue May  2 15:23:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1818: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30519 at Tue May  2 15:23:04 UTC 2017
kill -USR1 30519
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30519 killed at Tue May  2 15:23:04 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30576 >/dev/null 2>/dev/null
selfserv_9590 with PID 30576 found at Tue May  2 15:23:04 UTC 2017
selfserv_9590 with PID 30576 started at Tue May  2 15:23:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1819: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30576 at Tue May  2 15:23:04 UTC 2017
kill -USR1 30576
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30576 killed at Tue May  2 15:23:04 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30648 >/dev/null 2>/dev/null
selfserv_9590 with PID 30648 found at Tue May  2 15:23:04 UTC 2017
selfserv_9590 with PID 30648 started at Tue May  2 15:23:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1820: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30648 at Tue May  2 15:23:05 UTC 2017
kill -USR1 30648
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30648 killed at Tue May  2 15:23:05 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30705 >/dev/null 2>/dev/null
selfserv_9590 with PID 30705 found at Tue May  2 15:23:05 UTC 2017
selfserv_9590 with PID 30705 started at Tue May  2 15:23:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1821: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30705 at Tue May  2 15:23:05 UTC 2017
kill -USR1 30705
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30705 killed at Tue May  2 15:23:05 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30762 >/dev/null 2>/dev/null
selfserv_9590 with PID 30762 found at Tue May  2 15:23:05 UTC 2017
selfserv_9590 with PID 30762 started at Tue May  2 15:23:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1822: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30762 at Tue May  2 15:23:05 UTC 2017
kill -USR1 30762
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30762 killed at Tue May  2 15:23:05 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30819 >/dev/null 2>/dev/null
selfserv_9590 with PID 30819 found at Tue May  2 15:23:05 UTC 2017
selfserv_9590 with PID 30819 started at Tue May  2 15:23:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1823: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30819 at Tue May  2 15:23:06 UTC 2017
kill -USR1 30819
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30819 killed at Tue May  2 15:23:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30876 >/dev/null 2>/dev/null
selfserv_9590 with PID 30876 found at Tue May  2 15:23:06 UTC 2017
selfserv_9590 with PID 30876 started at Tue May  2 15:23:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1824: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30876 at Tue May  2 15:23:06 UTC 2017
kill -USR1 30876
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30876 killed at Tue May  2 15:23:06 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30933 >/dev/null 2>/dev/null
selfserv_9590 with PID 30933 found at Tue May  2 15:23:06 UTC 2017
selfserv_9590 with PID 30933 started at Tue May  2 15:23:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1825: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 30933 at Tue May  2 15:23:06 UTC 2017
kill -USR1 30933
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30933 killed at Tue May  2 15:23:06 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30990 >/dev/null 2>/dev/null
selfserv_9590 with PID 30990 found at Tue May  2 15:23:06 UTC 2017
selfserv_9590 with PID 30990 started at Tue May  2 15:23:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1826: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30990 at Tue May  2 15:23:07 UTC 2017
kill -USR1 30990
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30990 killed at Tue May  2 15:23:07 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31047 >/dev/null 2>/dev/null
selfserv_9590 with PID 31047 found at Tue May  2 15:23:07 UTC 2017
selfserv_9590 with PID 31047 started at Tue May  2 15:23:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1827: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31047 at Tue May  2 15:23:07 UTC 2017
kill -USR1 31047
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31047 killed at Tue May  2 15:23:07 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31104 >/dev/null 2>/dev/null
selfserv_9590 with PID 31104 found at Tue May  2 15:23:07 UTC 2017
selfserv_9590 with PID 31104 started at Tue May  2 15:23:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1828: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31104 at Tue May  2 15:23:07 UTC 2017
kill -USR1 31104
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31104 killed at Tue May  2 15:23:07 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31161 >/dev/null 2>/dev/null
selfserv_9590 with PID 31161 found at Tue May  2 15:23:08 UTC 2017
selfserv_9590 with PID 31161 started at Tue May  2 15:23:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1829: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31161 at Tue May  2 15:23:08 UTC 2017
kill -USR1 31161
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31161 killed at Tue May  2 15:23:08 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31218 >/dev/null 2>/dev/null
selfserv_9590 with PID 31218 found at Tue May  2 15:23:08 UTC 2017
selfserv_9590 with PID 31218 started at Tue May  2 15:23:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1830: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31218 at Tue May  2 15:23:08 UTC 2017
kill -USR1 31218
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31218 killed at Tue May  2 15:23:08 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31275 >/dev/null 2>/dev/null
selfserv_9590 with PID 31275 found at Tue May  2 15:23:08 UTC 2017
selfserv_9590 with PID 31275 started at Tue May  2 15:23:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1831: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31275 at Tue May  2 15:23:09 UTC 2017
kill -USR1 31275
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31275 killed at Tue May  2 15:23:09 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31332 >/dev/null 2>/dev/null
selfserv_9590 with PID 31332 found at Tue May  2 15:23:09 UTC 2017
selfserv_9590 with PID 31332 started at Tue May  2 15:23:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1832: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31332 at Tue May  2 15:23:09 UTC 2017
kill -USR1 31332
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31332 killed at Tue May  2 15:23:09 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31389 >/dev/null 2>/dev/null
selfserv_9590 with PID 31389 found at Tue May  2 15:23:09 UTC 2017
selfserv_9590 with PID 31389 started at Tue May  2 15:23:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1833: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31389 at Tue May  2 15:23:10 UTC 2017
kill -USR1 31389
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31389 killed at Tue May  2 15:23:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31446 >/dev/null 2>/dev/null
selfserv_9590 with PID 31446 found at Tue May  2 15:23:10 UTC 2017
selfserv_9590 with PID 31446 started at Tue May  2 15:23:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1834: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31446 at Tue May  2 15:23:10 UTC 2017
kill -USR1 31446
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31446 killed at Tue May  2 15:23:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31503 >/dev/null 2>/dev/null
selfserv_9590 with PID 31503 found at Tue May  2 15:23:10 UTC 2017
selfserv_9590 with PID 31503 started at Tue May  2 15:23:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1835: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31503 at Tue May  2 15:23:10 UTC 2017
kill -USR1 31503
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31503 killed at Tue May  2 15:23:10 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31560 >/dev/null 2>/dev/null
selfserv_9590 with PID 31560 found at Tue May  2 15:23:11 UTC 2017
selfserv_9590 with PID 31560 started at Tue May  2 15:23:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1836: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31560 at Tue May  2 15:23:11 UTC 2017
kill -USR1 31560
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31560 killed at Tue May  2 15:23:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31617 >/dev/null 2>/dev/null
selfserv_9590 with PID 31617 found at Tue May  2 15:23:11 UTC 2017
selfserv_9590 with PID 31617 started at Tue May  2 15:23:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1837: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31617 at Tue May  2 15:23:11 UTC 2017
kill -USR1 31617
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31617 killed at Tue May  2 15:23:11 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:23:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31674 >/dev/null 2>/dev/null
selfserv_9590 with PID 31674 found at Tue May  2 15:23:11 UTC 2017
selfserv_9590 with PID 31674 started at Tue May  2 15:23:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #1838: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31674 at Tue May  2 15:23:12 UTC 2017
kill -USR1 31674
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31674 killed at Tue May  2 15:23:12 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31731 >/dev/null 2>/dev/null
selfserv_9590 with PID 31731 found at Tue May  2 15:23:12 UTC 2017
selfserv_9590 with PID 31731 started at Tue May  2 15:23:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1839: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31731 at Tue May  2 15:23:12 UTC 2017
kill -USR1 31731
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31731 killed at Tue May  2 15:23:12 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9590 starting at Tue May  2 15:23:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31809 >/dev/null 2>/dev/null
selfserv_9590 with PID 31809 found at Tue May  2 15:23:12 UTC 2017
selfserv_9590 with PID 31809 started at Tue May  2 15:23:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1840: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31809 at Tue May  2 15:23:12 UTC 2017
kill -USR1 31809
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31809 killed at Tue May  2 15:23:12 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9590 starting at Tue May  2 15:23:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31872 >/dev/null 2>/dev/null
selfserv_9590 with PID 31872 found at Tue May  2 15:23:12 UTC 2017
selfserv_9590 with PID 31872 started at Tue May  2 15:23:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1841: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31872 at Tue May  2 15:23:13 UTC 2017
kill -USR1 31872
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31872 killed at Tue May  2 15:23:13 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9590 starting at Tue May  2 15:23:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31935 >/dev/null 2>/dev/null
selfserv_9590 with PID 31935 found at Tue May  2 15:23:13 UTC 2017
selfserv_9590 with PID 31935 started at Tue May  2 15:23:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1842: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31935 at Tue May  2 15:23:13 UTC 2017
kill -USR1 31935
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31935 killed at Tue May  2 15:23:13 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9590 starting at Tue May  2 15:23:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31998 >/dev/null 2>/dev/null
selfserv_9590 with PID 31998 found at Tue May  2 15:23:13 UTC 2017
selfserv_9590 with PID 31998 started at Tue May  2 15:23:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1843: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 31998 at Tue May  2 15:23:13 UTC 2017
kill -USR1 31998
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31998 killed at Tue May  2 15:23:13 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9590 starting at Tue May  2 15:23:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32061 >/dev/null 2>/dev/null
selfserv_9590 with PID 32061 found at Tue May  2 15:23:13 UTC 2017
selfserv_9590 with PID 32061 started at Tue May  2 15:23:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #1844: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 32061 at Tue May  2 15:23:14 UTC 2017
kill -USR1 32061
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32061 killed at Tue May  2 15:23:14 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9590 starting at Tue May  2 15:23:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32124 >/dev/null 2>/dev/null
selfserv_9590 with PID 32124 found at Tue May  2 15:23:14 UTC 2017
selfserv_9590 with PID 32124 started at Tue May  2 15:23:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1845: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 32124 at Tue May  2 15:23:14 UTC 2017
kill -USR1 32124
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32124 killed at Tue May  2 15:23:14 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9590 starting at Tue May  2 15:23:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32187 >/dev/null 2>/dev/null
selfserv_9590 with PID 32187 found at Tue May  2 15:23:14 UTC 2017
selfserv_9590 with PID 32187 started at Tue May  2 15:23:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1846: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 32187 at Tue May  2 15:23:14 UTC 2017
kill -USR1 32187
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32187 killed at Tue May  2 15:23:14 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9590 starting at Tue May  2 15:23:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32250 >/dev/null 2>/dev/null
selfserv_9590 with PID 32250 found at Tue May  2 15:23:14 UTC 2017
selfserv_9590 with PID 32250 started at Tue May  2 15:23:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #1847: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 32250 at Tue May  2 15:23:15 UTC 2017
kill -USR1 32250
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32250 killed at Tue May  2 15:23:15 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9590 starting at Tue May  2 15:23:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32313 >/dev/null 2>/dev/null
selfserv_9590 with PID 32313 found at Tue May  2 15:23:15 UTC 2017
selfserv_9590 with PID 32313 started at Tue May  2 15:23:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1848: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 32313 at Tue May  2 15:23:15 UTC 2017
kill -USR1 32313
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32313 killed at Tue May  2 15:23:15 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9590 starting at Tue May  2 15:23:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32376 >/dev/null 2>/dev/null
selfserv_9590 with PID 32376 found at Tue May  2 15:23:15 UTC 2017
selfserv_9590 with PID 32376 started at Tue May  2 15:23:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #1849: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 32376 at Tue May  2 15:23:15 UTC 2017
kill -USR1 32376
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32376 killed at Tue May  2 15:23:15 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9590 starting at Tue May  2 15:23:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32483 >/dev/null 2>/dev/null
selfserv_9590 with PID 32483 found at Tue May  2 15:23:15 UTC 2017
selfserv_9590 with PID 32483 started at Tue May  2 15:23:15 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:15 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:16 UTC 2017
ssl.sh: #1850: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 32483 at Tue May  2 15:23:16 UTC 2017
kill -USR1 32483
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32483 killed at Tue May  2 15:23:16 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9590 starting at Tue May  2 15:23:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32554 >/dev/null 2>/dev/null
selfserv_9590 with PID 32554 found at Tue May  2 15:23:16 UTC 2017
selfserv_9590 with PID 32554 started at Tue May  2 15:23:16 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:16 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:17 UTC 2017
ssl.sh: #1851: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 32554 at Tue May  2 15:23:17 UTC 2017
kill -USR1 32554
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32554 killed at Tue May  2 15:23:17 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9590 starting at Tue May  2 15:23:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32625 >/dev/null 2>/dev/null
selfserv_9590 with PID 32625 found at Tue May  2 15:23:17 UTC 2017
selfserv_9590 with PID 32625 started at Tue May  2 15:23:17 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:18 UTC 2017
ssl.sh: #1852: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 32625 at Tue May  2 15:23:18 UTC 2017
kill -USR1 32625
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32625 killed at Tue May  2 15:23:18 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9590 starting at Tue May  2 15:23:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 32697 >/dev/null 2>/dev/null
selfserv_9590 with PID 32697 found at Tue May  2 15:23:18 UTC 2017
selfserv_9590 with PID 32697 started at Tue May  2 15:23:18 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:18 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:23:19 UTC 2017
ssl.sh: #1853: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 32697 at Tue May  2 15:23:19 UTC 2017
kill -USR1 32697
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 32697 killed at Tue May  2 15:23:19 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9590 starting at Tue May  2 15:23:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 300 >/dev/null 2>/dev/null
selfserv_9590 with PID 300 found at Tue May  2 15:23:19 UTC 2017
selfserv_9590 with PID 300 started at Tue May  2 15:23:19 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:19 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:19 UTC 2017
ssl.sh: #1854: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 300 at Tue May  2 15:23:19 UTC 2017
kill -USR1 300
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 300 killed at Tue May  2 15:23:19 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9590 starting at Tue May  2 15:23:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 375 >/dev/null 2>/dev/null
selfserv_9590 with PID 375 found at Tue May  2 15:23:20 UTC 2017
selfserv_9590 with PID 375 started at Tue May  2 15:23:20 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:23:20 UTC 2017
ssl.sh: #1855: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 375 at Tue May  2 15:23:20 UTC 2017
kill -USR1 375
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 375 killed at Tue May  2 15:23:20 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9590 starting at Tue May  2 15:23:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 455 >/dev/null 2>/dev/null
selfserv_9590 with PID 455 found at Tue May  2 15:23:21 UTC 2017
selfserv_9590 with PID 455 started at Tue May  2 15:23:21 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:23:21 UTC 2017
ssl.sh: #1856: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 455 at Tue May  2 15:23:21 UTC 2017
kill -USR1 455
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 455 killed at Tue May  2 15:23:21 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI) ----
selfserv_9590 starting at Tue May  2 15:23:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 551 >/dev/null 2>/dev/null
selfserv_9590 with PID 551 found at Tue May  2 15:23:21 UTC 2017
selfserv_9590 with PID 551 started at Tue May  2 15:23:21 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:23:22 UTC 2017
ssl.sh: #1857: Stress TLS RC4 128 with MD5 (session ticket, SNI) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 551 at Tue May  2 15:23:22 UTC 2017
kill -USR1 551
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 551 killed at Tue May  2 15:23:22 UTC 2017
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:23:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 640 >/dev/null 2>/dev/null
selfserv_9590 with PID 640 found at Tue May  2 15:23:22 UTC 2017
selfserv_9590 with PID 640 started at Tue May  2 15:23:22 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:23:23 UTC 2017
ssl.sh: #1858: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 640 at Tue May  2 15:23:23 UTC 2017
kill -USR1 640
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 640 killed at Tue May  2 15:23:23 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:23:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 713 >/dev/null 2>/dev/null
selfserv_9590 with PID 713 found at Tue May  2 15:23:24 UTC 2017
selfserv_9590 with PID 713 started at Tue May  2 15:23:24 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:23:25 UTC 2017
ssl.sh: #1859: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 713 at Tue May  2 15:23:25 UTC 2017
kill -USR1 713
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 713 killed at Tue May  2 15:23:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9590 starting at Tue May  2 15:23:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 835 >/dev/null 2>/dev/null
selfserv_9590 with PID 835 found at Tue May  2 15:23:25 UTC 2017
selfserv_9590 with PID 835 started at Tue May  2 15:23:25 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:23:25 UTC 2017
ssl.sh: #1860: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 835 at Tue May  2 15:23:25 UTC 2017
kill -USR1 835
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 835 killed at Tue May  2 15:23:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9590 starting at Tue May  2 15:23:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 906 >/dev/null 2>/dev/null
selfserv_9590 with PID 906 found at Tue May  2 15:23:25 UTC 2017
selfserv_9590 with PID 906 started at Tue May  2 15:23:25 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:25 UTC 2017
ssl.sh: #1861: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 906 at Tue May  2 15:23:25 UTC 2017
kill -USR1 906
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 906 killed at Tue May  2 15:23:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9590 starting at Tue May  2 15:23:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 977 >/dev/null 2>/dev/null
selfserv_9590 with PID 977 found at Tue May  2 15:23:26 UTC 2017
selfserv_9590 with PID 977 started at Tue May  2 15:23:26 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:26 UTC 2017
ssl.sh: #1862: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 977 at Tue May  2 15:23:26 UTC 2017
kill -USR1 977
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 977 killed at Tue May  2 15:23:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9590 starting at Tue May  2 15:23:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1051 >/dev/null 2>/dev/null
selfserv_9590 with PID 1051 found at Tue May  2 15:23:26 UTC 2017
selfserv_9590 with PID 1051 started at Tue May  2 15:23:26 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:23:26 UTC 2017
ssl.sh: #1863: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1051 at Tue May  2 15:23:26 UTC 2017
kill -USR1 1051
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1051 killed at Tue May  2 15:23:26 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9590 starting at Tue May  2 15:23:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1122 >/dev/null 2>/dev/null
selfserv_9590 with PID 1122 found at Tue May  2 15:23:26 UTC 2017
selfserv_9590 with PID 1122 started at Tue May  2 15:23:26 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:23:27 UTC 2017
ssl.sh: #1864: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1122 at Tue May  2 15:23:27 UTC 2017
kill -USR1 1122
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1122 killed at Tue May  2 15:23:27 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9590 starting at Tue May  2 15:23:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1199 >/dev/null 2>/dev/null
selfserv_9590 with PID 1199 found at Tue May  2 15:23:27 UTC 2017
selfserv_9590 with PID 1199 started at Tue May  2 15:23:27 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:23:27 UTC 2017
ssl.sh: #1865: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1199 at Tue May  2 15:23:27 UTC 2017
kill -USR1 1199
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1199 killed at Tue May  2 15:23:27 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9590 starting at Tue May  2 15:23:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1276 >/dev/null 2>/dev/null
selfserv_9590 with PID 1276 found at Tue May  2 15:23:28 UTC 2017
selfserv_9590 with PID 1276 started at Tue May  2 15:23:28 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:23:28 UTC 2017
ssl.sh: #1866: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1276 at Tue May  2 15:23:29 UTC 2017
kill -USR1 1276
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1276 killed at Tue May  2 15:23:29 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:23:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1362 >/dev/null 2>/dev/null
selfserv_9590 with PID 1362 found at Tue May  2 15:23:29 UTC 2017
selfserv_9590 with PID 1362 started at Tue May  2 15:23:29 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:23:31 UTC 2017
ssl.sh: #1867: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1362 at Tue May  2 15:23:31 UTC 2017
kill -USR1 1362
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1362 killed at Tue May  2 15:23:31 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9590 starting at Tue May  2 15:23:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1432 >/dev/null 2>/dev/null
selfserv_9590 with PID 1432 found at Tue May  2 15:23:31 UTC 2017
selfserv_9590 with PID 1432 started at Tue May  2 15:23:31 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:23:34 UTC 2017
ssl.sh: #1868: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1432 at Tue May  2 15:23:34 UTC 2017
kill -USR1 1432
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1432 killed at Tue May  2 15:23:34 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9590 starting at Tue May  2 15:23:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1502 >/dev/null 2>/dev/null
selfserv_9590 with PID 1502 found at Tue May  2 15:23:34 UTC 2017
selfserv_9590 with PID 1502 started at Tue May  2 15:23:34 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:23:37 UTC 2017
ssl.sh: #1869: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1502 at Tue May  2 15:23:37 UTC 2017
kill -USR1 1502
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1502 killed at Tue May  2 15:23:37 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:23:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1572 >/dev/null 2>/dev/null
selfserv_9590 with PID 1572 found at Tue May  2 15:23:37 UTC 2017
selfserv_9590 with PID 1572 started at Tue May  2 15:23:37 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:37 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:23:40 UTC 2017
ssl.sh: #1870: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1572 at Tue May  2 15:23:40 UTC 2017
kill -USR1 1572
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1572 killed at Tue May  2 15:23:40 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:23:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1642 >/dev/null 2>/dev/null
selfserv_9590 with PID 1642 found at Tue May  2 15:23:40 UTC 2017
selfserv_9590 with PID 1642 started at Tue May  2 15:23:40 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:23:42 UTC 2017
ssl.sh: #1871: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1642 at Tue May  2 15:23:42 UTC 2017
kill -USR1 1642
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1642 killed at Tue May  2 15:23:42 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9590 starting at Tue May  2 15:23:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1712 >/dev/null 2>/dev/null
selfserv_9590 with PID 1712 found at Tue May  2 15:23:42 UTC 2017
selfserv_9590 with PID 1712 started at Tue May  2 15:23:42 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:43 UTC 2017
ssl.sh: #1872: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1712 at Tue May  2 15:23:43 UTC 2017
kill -USR1 1712
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1712 killed at Tue May  2 15:23:43 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9590 starting at Tue May  2 15:23:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1783 >/dev/null 2>/dev/null
selfserv_9590 with PID 1783 found at Tue May  2 15:23:43 UTC 2017
selfserv_9590 with PID 1783 started at Tue May  2 15:23:43 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:44 UTC 2017
ssl.sh: #1873: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1783 at Tue May  2 15:23:44 UTC 2017
kill -USR1 1783
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1783 killed at Tue May  2 15:23:44 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9590 starting at Tue May  2 15:23:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1854 >/dev/null 2>/dev/null
selfserv_9590 with PID 1854 found at Tue May  2 15:23:44 UTC 2017
selfserv_9590 with PID 1854 started at Tue May  2 15:23:44 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:45 UTC 2017
ssl.sh: #1874: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1854 at Tue May  2 15:23:45 UTC 2017
kill -USR1 1854
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1854 killed at Tue May  2 15:23:45 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9590 starting at Tue May  2 15:23:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 15:23:45 UTC 2017
selfserv_9590 with PID 1925 started at Tue May  2 15:23:45 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:23:46 UTC 2017
ssl.sh: #1875: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1925 at Tue May  2 15:23:46 UTC 2017
kill -USR1 1925
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1925 killed at Tue May  2 15:23:46 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9590 starting at Tue May  2 15:23:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1996 >/dev/null 2>/dev/null
selfserv_9590 with PID 1996 found at Tue May  2 15:23:46 UTC 2017
selfserv_9590 with PID 1996 started at Tue May  2 15:23:46 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:23:46 UTC 2017
ssl.sh: #1876: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 1996 at Tue May  2 15:23:46 UTC 2017
kill -USR1 1996
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1996 killed at Tue May  2 15:23:46 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:23:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2082 >/dev/null 2>/dev/null
selfserv_9590 with PID 2082 found at Tue May  2 15:23:46 UTC 2017
selfserv_9590 with PID 2082 started at Tue May  2 15:23:46 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:46 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:23:47 UTC 2017
ssl.sh: #1877: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2082 at Tue May  2 15:23:47 UTC 2017
kill -USR1 2082
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2082 killed at Tue May  2 15:23:47 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9590 starting at Tue May  2 15:23:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2152 >/dev/null 2>/dev/null
selfserv_9590 with PID 2152 found at Tue May  2 15:23:47 UTC 2017
selfserv_9590 with PID 2152 started at Tue May  2 15:23:47 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:47 UTC 2017
ssl.sh: #1878: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2152 at Tue May  2 15:23:47 UTC 2017
kill -USR1 2152
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2152 killed at Tue May  2 15:23:47 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:23:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2223 >/dev/null 2>/dev/null
selfserv_9590 with PID 2223 found at Tue May  2 15:23:47 UTC 2017
selfserv_9590 with PID 2223 started at Tue May  2 15:23:47 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:23:48 UTC 2017
ssl.sh: #1879: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2223 at Tue May  2 15:23:48 UTC 2017
kill -USR1 2223
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2223 killed at Tue May  2 15:23:48 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:23:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2293 >/dev/null 2>/dev/null
selfserv_9590 with PID 2293 found at Tue May  2 15:23:48 UTC 2017
selfserv_9590 with PID 2293 started at Tue May  2 15:23:48 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:23:48 UTC 2017
ssl.sh: #1880: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2293 at Tue May  2 15:23:48 UTC 2017
kill -USR1 2293
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2293 killed at Tue May  2 15:23:48 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9590 starting at Tue May  2 15:23:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2363 >/dev/null 2>/dev/null
selfserv_9590 with PID 2363 found at Tue May  2 15:23:49 UTC 2017
selfserv_9590 with PID 2363 started at Tue May  2 15:23:49 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:49 UTC 2017
ssl.sh: #1881: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2363 at Tue May  2 15:23:49 UTC 2017
kill -USR1 2363
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2363 killed at Tue May  2 15:23:49 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9590 starting at Tue May  2 15:23:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2434 >/dev/null 2>/dev/null
selfserv_9590 with PID 2434 found at Tue May  2 15:23:49 UTC 2017
selfserv_9590 with PID 2434 started at Tue May  2 15:23:49 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:23:49 UTC 2017
ssl.sh: #1882: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2434 at Tue May  2 15:23:49 UTC 2017
kill -USR1 2434
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2434 killed at Tue May  2 15:23:49 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:23:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2520 >/dev/null 2>/dev/null
selfserv_9590 with PID 2520 found at Tue May  2 15:23:49 UTC 2017
selfserv_9590 with PID 2520 started at Tue May  2 15:23:49 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 4 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:23:51 UTC 2017
ssl.sh: #1883: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2520 at Tue May  2 15:23:51 UTC 2017
kill -USR1 2520
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2520 killed at Tue May  2 15:23:51 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9590 starting at Tue May  2 15:23:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2590 >/dev/null 2>/dev/null
selfserv_9590 with PID 2590 found at Tue May  2 15:23:51 UTC 2017
selfserv_9590 with PID 2590 started at Tue May  2 15:23:51 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:51 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:23:52 UTC 2017
ssl.sh: #1884: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2590 at Tue May  2 15:23:52 UTC 2017
kill -USR1 2590
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2590 killed at Tue May  2 15:23:52 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:23:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2661 >/dev/null 2>/dev/null
selfserv_9590 with PID 2661 found at Tue May  2 15:23:52 UTC 2017
selfserv_9590 with PID 2661 started at Tue May  2 15:23:52 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:52 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:23:54 UTC 2017
ssl.sh: #1885: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2661 at Tue May  2 15:23:54 UTC 2017
kill -USR1 2661
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2661 killed at Tue May  2 15:23:54 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9590 starting at Tue May  2 15:23:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2731 >/dev/null 2>/dev/null
selfserv_9590 with PID 2731 found at Tue May  2 15:23:54 UTC 2017
selfserv_9590 with PID 2731 started at Tue May  2 15:23:54 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:54 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:23:56 UTC 2017
ssl.sh: #1886: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2731 at Tue May  2 15:23:56 UTC 2017
kill -USR1 2731
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2731 killed at Tue May  2 15:23:56 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:23:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:23:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2811 >/dev/null 2>/dev/null
selfserv_9590 with PID 2811 found at Tue May  2 15:23:56 UTC 2017
selfserv_9590 with PID 2811 started at Tue May  2 15:23:56 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:23:56 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:24:14 UTC 2017
ssl.sh: #1887: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2811 at Tue May  2 15:24:14 UTC 2017
kill -USR1 2811
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2811 killed at Tue May  2 15:24:14 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9590 starting at Tue May  2 15:24:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:24:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2891 >/dev/null 2>/dev/null
selfserv_9590 with PID 2891 found at Tue May  2 15:24:14 UTC 2017
selfserv_9590 with PID 2891 started at Tue May  2 15:24:14 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:14 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:24:33 UTC 2017
ssl.sh: #1888: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2891 at Tue May  2 15:24:33 UTC 2017
kill -USR1 2891
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2891 killed at Tue May  2 15:24:33 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9590 starting at Tue May  2 15:24:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:24:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2962 >/dev/null 2>/dev/null
selfserv_9590 with PID 2962 found at Tue May  2 15:24:33 UTC 2017
selfserv_9590 with PID 2962 started at Tue May  2 15:24:33 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:24:34 UTC 2017
ssl.sh: #1889: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 2962 at Tue May  2 15:24:34 UTC 2017
kill -USR1 2962
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2962 killed at Tue May  2 15:24:34 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9590 starting at Tue May  2 15:24:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:24:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3032 >/dev/null 2>/dev/null
selfserv_9590 with PID 3032 found at Tue May  2 15:24:34 UTC 2017
selfserv_9590 with PID 3032 started at Tue May  2 15:24:34 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 7 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:24:36 UTC 2017
ssl.sh: #1890: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 3032 at Tue May  2 15:24:36 UTC 2017
kill -USR1 3032
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3032 killed at Tue May  2 15:24:36 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9590 starting at Tue May  2 15:24:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:24:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3102 >/dev/null 2>/dev/null
selfserv_9590 with PID 3102 found at Tue May  2 15:24:36 UTC 2017
selfserv_9590 with PID 3102 started at Tue May  2 15:24:36 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 5 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:24:38 UTC 2017
ssl.sh: #1891: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 3102 at Tue May  2 15:24:38 UTC 2017
kill -USR1 3102
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3102 killed at Tue May  2 15:24:38 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:24:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:24:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3187 >/dev/null 2>/dev/null
selfserv_9590 with PID 3187 found at Tue May  2 15:24:38 UTC 2017
selfserv_9590 with PID 3187 started at Tue May  2 15:24:38 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:24:40 UTC 2017
ssl.sh: #1892: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 3187 at Tue May  2 15:24:40 UTC 2017
kill -USR1 3187
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3187 killed at Tue May  2 15:24:41 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9590 starting at Tue May  2 15:24:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:24:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3257 >/dev/null 2>/dev/null
selfserv_9590 with PID 3257 found at Tue May  2 15:24:41 UTC 2017
selfserv_9590 with PID 3257 started at Tue May  2 15:24:41 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:24:41 UTC 2017
ssl.sh: #1893: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 3257 at Tue May  2 15:24:41 UTC 2017
kill -USR1 3257
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3257 killed at Tue May  2 15:24:41 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:24:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:24:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3343 >/dev/null 2>/dev/null
selfserv_9590 with PID 3343 found at Tue May  2 15:24:41 UTC 2017
selfserv_9590 with PID 3343 started at Tue May  2 15:24:41 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:24:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:25:04 UTC 2017
ssl.sh: #1894: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 3343 at Tue May  2 15:25:04 UTC 2017
kill -USR1 3343
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3343 killed at Tue May  2 15:25:04 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:25:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3413 >/dev/null 2>/dev/null
selfserv_9590 with PID 3413 found at Tue May  2 15:25:04 UTC 2017
selfserv_9590 with PID 3413 started at Tue May  2 15:25:04 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:25:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:25:28 UTC 2017
ssl.sh: #1895: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 3413 at Tue May  2 15:25:28 UTC 2017
kill -USR1 3413
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3413 killed at Tue May  2 15:25:28 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server fips/client normal  - with ECC ===============================
selfserv_9590 starting at Tue May  2 15:25:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3475 >/dev/null 2>/dev/null
selfserv_9590 with PID 3475 found at Tue May  2 15:25:28 UTC 2017
selfserv_9590 with PID 3475 started at Tue May  2 15:25:28 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1896: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1897: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1898: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1899: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1900: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1901: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1902: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1903: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1904: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1905: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1906: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1907: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1908: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1909: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1910: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1911: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1912: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1913: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1914: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1915: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1916: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1917: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1918: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1919: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1920: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1921: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1922: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1923: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1924: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1925: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1926: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1927: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1928: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1929: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1930: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1931: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1932: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1933: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1934: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1935: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1936: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1937: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1938: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1939: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1940: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1941: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1942: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1943: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1944: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1945: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1946: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1947: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1948: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1949: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1950: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1951: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1952: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1953: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1954: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1955: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1956: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1957: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1958: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1959: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1960: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1961: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1962: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1963: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1964: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1965: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1966: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1967: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1968: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1969: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1970: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1971: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1972: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1973: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1974: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1975: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1976: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1977: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1978: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1979: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1980: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1981: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1982: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1983: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1984: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1985: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1986: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1987: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1988: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1989: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1990: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1991: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1992: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1993: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1994: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1995: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1996: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1997: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1998: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #1999: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2000: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2001: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2002: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2003: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2004: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2005: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2006: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2007: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2008: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2009: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2010: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2011: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2012: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2013: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2014: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2015: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2016: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3475 at Tue May  2 15:25:37 UTC 2017
kill -USR1 3475
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3475 killed at Tue May  2 15:25:37 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:25:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5738 >/dev/null 2>/dev/null
selfserv_9590 with PID 5738 found at Tue May  2 15:25:38 UTC 2017
selfserv_9590 with PID 5738 started at Tue May  2 15:25:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2017: TLS Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5738 at Tue May  2 15:25:38 UTC 2017
kill -USR1 5738
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5738 killed at Tue May  2 15:25:38 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5795 >/dev/null 2>/dev/null
selfserv_9590 with PID 5795 found at Tue May  2 15:25:38 UTC 2017
selfserv_9590 with PID 5795 started at Tue May  2 15:25:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2018: TLS Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5795 at Tue May  2 15:25:38 UTC 2017
kill -USR1 5795
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5795 killed at Tue May  2 15:25:38 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5852 >/dev/null 2>/dev/null
selfserv_9590 with PID 5852 found at Tue May  2 15:25:38 UTC 2017
selfserv_9590 with PID 5852 started at Tue May  2 15:25:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2019: TLS Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5852 at Tue May  2 15:25:39 UTC 2017
kill -USR1 5852
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5852 killed at Tue May  2 15:25:39 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:25:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5909 >/dev/null 2>/dev/null
selfserv_9590 with PID 5909 found at Tue May  2 15:25:39 UTC 2017
selfserv_9590 with PID 5909 started at Tue May  2 15:25:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2020: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 5909 at Tue May  2 15:25:39 UTC 2017
kill -USR1 5909
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5909 killed at Tue May  2 15:25:39 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5966 >/dev/null 2>/dev/null
selfserv_9590 with PID 5966 found at Tue May  2 15:25:39 UTC 2017
selfserv_9590 with PID 5966 started at Tue May  2 15:25:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2021: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 5966 at Tue May  2 15:25:39 UTC 2017
kill -USR1 5966
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5966 killed at Tue May  2 15:25:39 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6023 >/dev/null 2>/dev/null
selfserv_9590 with PID 6023 found at Tue May  2 15:25:40 UTC 2017
selfserv_9590 with PID 6023 started at Tue May  2 15:25:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2022: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6023 at Tue May  2 15:25:40 UTC 2017
kill -USR1 6023
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6023 killed at Tue May  2 15:25:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:25:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6080 >/dev/null 2>/dev/null
selfserv_9590 with PID 6080 found at Tue May  2 15:25:40 UTC 2017
selfserv_9590 with PID 6080 started at Tue May  2 15:25:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2023: SSL3 Request don't require client auth (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6080 at Tue May  2 15:25:40 UTC 2017
kill -USR1 6080
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6080 killed at Tue May  2 15:25:40 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6137 >/dev/null 2>/dev/null
selfserv_9590 with PID 6137 found at Tue May  2 15:25:40 UTC 2017
selfserv_9590 with PID 6137 started at Tue May  2 15:25:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2024: SSL3 Request don't require client auth (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6137 at Tue May  2 15:25:40 UTC 2017
kill -USR1 6137
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6137 killed at Tue May  2 15:25:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6194 >/dev/null 2>/dev/null
selfserv_9590 with PID 6194 found at Tue May  2 15:25:41 UTC 2017
selfserv_9590 with PID 6194 started at Tue May  2 15:25:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2025: SSL3 Request don't require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6194 at Tue May  2 15:25:41 UTC 2017
kill -USR1 6194
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6194 killed at Tue May  2 15:25:41 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:25:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6251 >/dev/null 2>/dev/null
selfserv_9590 with PID 6251 found at Tue May  2 15:25:41 UTC 2017
selfserv_9590 with PID 6251 started at Tue May  2 15:25:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2026: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6251 at Tue May  2 15:25:41 UTC 2017
kill -USR1 6251
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6251 killed at Tue May  2 15:25:41 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6308 >/dev/null 2>/dev/null
selfserv_9590 with PID 6308 found at Tue May  2 15:25:41 UTC 2017
selfserv_9590 with PID 6308 started at Tue May  2 15:25:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2027: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6308 at Tue May  2 15:25:41 UTC 2017
kill -USR1 6308
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6308 killed at Tue May  2 15:25:41 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6365 >/dev/null 2>/dev/null
selfserv_9590 with PID 6365 found at Tue May  2 15:25:42 UTC 2017
selfserv_9590 with PID 6365 started at Tue May  2 15:25:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2028: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6365 at Tue May  2 15:25:42 UTC 2017
kill -USR1 6365
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6365 killed at Tue May  2 15:25:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:25:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6422 >/dev/null 2>/dev/null
selfserv_9590 with PID 6422 found at Tue May  2 15:25:42 UTC 2017
selfserv_9590 with PID 6422 started at Tue May  2 15:25:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2029: TLS Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6422 at Tue May  2 15:25:42 UTC 2017
kill -USR1 6422
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6422 killed at Tue May  2 15:25:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6479 >/dev/null 2>/dev/null
selfserv_9590 with PID 6479 found at Tue May  2 15:25:42 UTC 2017
selfserv_9590 with PID 6479 started at Tue May  2 15:25:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2030: TLS Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6479 at Tue May  2 15:25:43 UTC 2017
kill -USR1 6479
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6479 killed at Tue May  2 15:25:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6536 >/dev/null 2>/dev/null
selfserv_9590 with PID 6536 found at Tue May  2 15:25:43 UTC 2017
selfserv_9590 with PID 6536 started at Tue May  2 15:25:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2031: TLS Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6536 at Tue May  2 15:25:43 UTC 2017
kill -USR1 6536
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6536 killed at Tue May  2 15:25:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:25:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6593 >/dev/null 2>/dev/null
selfserv_9590 with PID 6593 found at Tue May  2 15:25:43 UTC 2017
selfserv_9590 with PID 6593 started at Tue May  2 15:25:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2032: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6593 at Tue May  2 15:25:44 UTC 2017
kill -USR1 6593
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6593 killed at Tue May  2 15:25:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6650 >/dev/null 2>/dev/null
selfserv_9590 with PID 6650 found at Tue May  2 15:25:44 UTC 2017
selfserv_9590 with PID 6650 started at Tue May  2 15:25:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2033: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6650 at Tue May  2 15:25:44 UTC 2017
kill -USR1 6650
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6650 killed at Tue May  2 15:25:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6707 >/dev/null 2>/dev/null
selfserv_9590 with PID 6707 found at Tue May  2 15:25:44 UTC 2017
selfserv_9590 with PID 6707 started at Tue May  2 15:25:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2034: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6707 at Tue May  2 15:25:45 UTC 2017
kill -USR1 6707
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6707 killed at Tue May  2 15:25:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:25:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6764 >/dev/null 2>/dev/null
selfserv_9590 with PID 6764 found at Tue May  2 15:25:45 UTC 2017
selfserv_9590 with PID 6764 started at Tue May  2 15:25:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2035: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6764 at Tue May  2 15:25:45 UTC 2017
kill -USR1 6764
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6764 killed at Tue May  2 15:25:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6821 >/dev/null 2>/dev/null
selfserv_9590 with PID 6821 found at Tue May  2 15:25:45 UTC 2017
selfserv_9590 with PID 6821 started at Tue May  2 15:25:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2036: TLS 1.0 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6821 at Tue May  2 15:25:45 UTC 2017
kill -USR1 6821
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6821 killed at Tue May  2 15:25:45 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6878 >/dev/null 2>/dev/null
selfserv_9590 with PID 6878 found at Tue May  2 15:25:46 UTC 2017
selfserv_9590 with PID 6878 started at Tue May  2 15:25:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2037: TLS 1.0 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6878 at Tue May  2 15:25:46 UTC 2017
kill -USR1 6878
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6878 killed at Tue May  2 15:25:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:25:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6935 >/dev/null 2>/dev/null
selfserv_9590 with PID 6935 found at Tue May  2 15:25:46 UTC 2017
selfserv_9590 with PID 6935 started at Tue May  2 15:25:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2038: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6935 at Tue May  2 15:25:46 UTC 2017
kill -USR1 6935
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6935 killed at Tue May  2 15:25:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6992 >/dev/null 2>/dev/null
selfserv_9590 with PID 6992 found at Tue May  2 15:25:46 UTC 2017
selfserv_9590 with PID 6992 started at Tue May  2 15:25:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2039: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6992 at Tue May  2 15:25:47 UTC 2017
kill -USR1 6992
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6992 killed at Tue May  2 15:25:47 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7049 >/dev/null 2>/dev/null
selfserv_9590 with PID 7049 found at Tue May  2 15:25:47 UTC 2017
selfserv_9590 with PID 7049 started at Tue May  2 15:25:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2040: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7049 at Tue May  2 15:25:47 UTC 2017
kill -USR1 7049
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7049 killed at Tue May  2 15:25:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:25:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7106 >/dev/null 2>/dev/null
selfserv_9590 with PID 7106 found at Tue May  2 15:25:47 UTC 2017
selfserv_9590 with PID 7106 started at Tue May  2 15:25:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2041: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7106 at Tue May  2 15:25:48 UTC 2017
kill -USR1 7106
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7106 killed at Tue May  2 15:25:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7163 >/dev/null 2>/dev/null
selfserv_9590 with PID 7163 found at Tue May  2 15:25:48 UTC 2017
selfserv_9590 with PID 7163 started at Tue May  2 15:25:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2042: SSL3 Request don't require client auth on 2nd hs (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7163 at Tue May  2 15:25:48 UTC 2017
kill -USR1 7163
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7163 killed at Tue May  2 15:25:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7220 >/dev/null 2>/dev/null
selfserv_9590 with PID 7220 found at Tue May  2 15:25:48 UTC 2017
selfserv_9590 with PID 7220 started at Tue May  2 15:25:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2043: SSL3 Request don't require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7220 at Tue May  2 15:25:48 UTC 2017
kill -USR1 7220
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7220 killed at Tue May  2 15:25:48 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:25:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7277 >/dev/null 2>/dev/null
selfserv_9590 with PID 7277 found at Tue May  2 15:25:48 UTC 2017
selfserv_9590 with PID 7277 started at Tue May  2 15:25:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2044: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7277 at Tue May  2 15:25:49 UTC 2017
kill -USR1 7277
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7277 killed at Tue May  2 15:25:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7334 >/dev/null 2>/dev/null
selfserv_9590 with PID 7334 found at Tue May  2 15:25:49 UTC 2017
selfserv_9590 with PID 7334 started at Tue May  2 15:25:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2045: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7334 at Tue May  2 15:25:49 UTC 2017
kill -USR1 7334
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7334 killed at Tue May  2 15:25:49 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7391 >/dev/null 2>/dev/null
selfserv_9590 with PID 7391 found at Tue May  2 15:25:49 UTC 2017
selfserv_9590 with PID 7391 started at Tue May  2 15:25:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2046: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7391 at Tue May  2 15:25:50 UTC 2017
kill -USR1 7391
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7391 killed at Tue May  2 15:25:50 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7465 >/dev/null 2>/dev/null
selfserv_9590 with PID 7465 found at Tue May  2 15:25:50 UTC 2017
selfserv_9590 with PID 7465 started at Tue May  2 15:25:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2047: TLS Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7465 at Tue May  2 15:25:50 UTC 2017
kill -USR1 7465
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7465 killed at Tue May  2 15:25:50 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7522 >/dev/null 2>/dev/null
selfserv_9590 with PID 7522 found at Tue May  2 15:25:50 UTC 2017
selfserv_9590 with PID 7522 started at Tue May  2 15:25:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2048: TLS Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7522 at Tue May  2 15:25:50 UTC 2017
kill -USR1 7522
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7522 killed at Tue May  2 15:25:50 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7579 >/dev/null 2>/dev/null
selfserv_9590 with PID 7579 found at Tue May  2 15:25:50 UTC 2017
selfserv_9590 with PID 7579 started at Tue May  2 15:25:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2049: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7579 at Tue May  2 15:25:51 UTC 2017
kill -USR1 7579
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7579 killed at Tue May  2 15:25:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7636 >/dev/null 2>/dev/null
selfserv_9590 with PID 7636 found at Tue May  2 15:25:51 UTC 2017
selfserv_9590 with PID 7636 started at Tue May  2 15:25:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2050: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7636 at Tue May  2 15:25:51 UTC 2017
kill -USR1 7636
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7636 killed at Tue May  2 15:25:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7693 >/dev/null 2>/dev/null
selfserv_9590 with PID 7693 found at Tue May  2 15:25:51 UTC 2017
selfserv_9590 with PID 7693 started at Tue May  2 15:25:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2051: SSL3 Request don't require client auth (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7693 at Tue May  2 15:25:51 UTC 2017
kill -USR1 7693
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7693 killed at Tue May  2 15:25:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7750 >/dev/null 2>/dev/null
selfserv_9590 with PID 7750 found at Tue May  2 15:25:52 UTC 2017
selfserv_9590 with PID 7750 started at Tue May  2 15:25:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2052: SSL3 Request don't require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7750 at Tue May  2 15:25:52 UTC 2017
kill -USR1 7750
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7750 killed at Tue May  2 15:25:52 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7807 >/dev/null 2>/dev/null
selfserv_9590 with PID 7807 found at Tue May  2 15:25:52 UTC 2017
selfserv_9590 with PID 7807 started at Tue May  2 15:25:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2053: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7807 at Tue May  2 15:25:52 UTC 2017
kill -USR1 7807
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7807 killed at Tue May  2 15:25:52 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7864 >/dev/null 2>/dev/null
selfserv_9590 with PID 7864 found at Tue May  2 15:25:52 UTC 2017
selfserv_9590 with PID 7864 started at Tue May  2 15:25:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2054: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7864 at Tue May  2 15:25:53 UTC 2017
kill -USR1 7864
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7864 killed at Tue May  2 15:25:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7921 >/dev/null 2>/dev/null
selfserv_9590 with PID 7921 found at Tue May  2 15:25:53 UTC 2017
selfserv_9590 with PID 7921 started at Tue May  2 15:25:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2055: TLS Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7921 at Tue May  2 15:25:53 UTC 2017
kill -USR1 7921
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7921 killed at Tue May  2 15:25:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7978 >/dev/null 2>/dev/null
selfserv_9590 with PID 7978 found at Tue May  2 15:25:53 UTC 2017
selfserv_9590 with PID 7978 started at Tue May  2 15:25:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2056: TLS Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7978 at Tue May  2 15:25:54 UTC 2017
kill -USR1 7978
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7978 killed at Tue May  2 15:25:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8035 >/dev/null 2>/dev/null
selfserv_9590 with PID 8035 found at Tue May  2 15:25:54 UTC 2017
selfserv_9590 with PID 8035 started at Tue May  2 15:25:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2057: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8035 at Tue May  2 15:25:54 UTC 2017
kill -USR1 8035
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8035 killed at Tue May  2 15:25:54 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8092 >/dev/null 2>/dev/null
selfserv_9590 with PID 8092 found at Tue May  2 15:25:54 UTC 2017
selfserv_9590 with PID 8092 started at Tue May  2 15:25:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2058: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8092 at Tue May  2 15:25:54 UTC 2017
kill -USR1 8092
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8092 killed at Tue May  2 15:25:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8152 >/dev/null 2>/dev/null
selfserv_9590 with PID 8152 found at Tue May  2 15:25:55 UTC 2017
selfserv_9590 with PID 8152 started at Tue May  2 15:25:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2059: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8152 at Tue May  2 15:25:55 UTC 2017
kill -USR1 8152
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8152 killed at Tue May  2 15:25:55 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8209 >/dev/null 2>/dev/null
selfserv_9590 with PID 8209 found at Tue May  2 15:25:55 UTC 2017
selfserv_9590 with PID 8209 started at Tue May  2 15:25:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2060: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8209 at Tue May  2 15:25:55 UTC 2017
kill -USR1 8209
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8209 killed at Tue May  2 15:25:55 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8266 >/dev/null 2>/dev/null
selfserv_9590 with PID 8266 found at Tue May  2 15:25:56 UTC 2017
selfserv_9590 with PID 8266 started at Tue May  2 15:25:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2061: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8266 at Tue May  2 15:25:56 UTC 2017
kill -USR1 8266
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8266 killed at Tue May  2 15:25:56 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8323 >/dev/null 2>/dev/null
selfserv_9590 with PID 8323 found at Tue May  2 15:25:56 UTC 2017
selfserv_9590 with PID 8323 started at Tue May  2 15:25:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2062: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8323 at Tue May  2 15:25:56 UTC 2017
kill -USR1 8323
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8323 killed at Tue May  2 15:25:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8380 >/dev/null 2>/dev/null
selfserv_9590 with PID 8380 found at Tue May  2 15:25:56 UTC 2017
selfserv_9590 with PID 8380 started at Tue May  2 15:25:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2063: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8380 at Tue May  2 15:25:57 UTC 2017
kill -USR1 8380
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8380 killed at Tue May  2 15:25:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8437 >/dev/null 2>/dev/null
selfserv_9590 with PID 8437 found at Tue May  2 15:25:57 UTC 2017
selfserv_9590 with PID 8437 started at Tue May  2 15:25:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2064: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8437 at Tue May  2 15:25:57 UTC 2017
kill -USR1 8437
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8437 killed at Tue May  2 15:25:57 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:25:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8495 >/dev/null 2>/dev/null
selfserv_9590 with PID 8495 found at Tue May  2 15:25:57 UTC 2017
selfserv_9590 with PID 8495 started at Tue May  2 15:25:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2065: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8495 at Tue May  2 15:25:58 UTC 2017
kill -USR1 8495
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8495 killed at Tue May  2 15:25:58 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:25:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8552 >/dev/null 2>/dev/null
selfserv_9590 with PID 8552 found at Tue May  2 15:25:58 UTC 2017
selfserv_9590 with PID 8552 started at Tue May  2 15:25:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2066: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8552 at Tue May  2 15:25:58 UTC 2017
kill -USR1 8552
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8552 killed at Tue May  2 15:25:58 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server fips/client normal  - with ECC ===============================
ssl.sh: Stress SSL3 RC4 128 with MD5 ----
selfserv_9590 starting at Tue May  2 15:25:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8694 >/dev/null 2>/dev/null
selfserv_9590 with PID 8694 found at Tue May  2 15:25:58 UTC 2017
selfserv_9590 with PID 8694 started at Tue May  2 15:25:58 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -c 1000 -C c -V ssl3:ssl3 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:25:58 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:25:59 UTC 2017
ssl.sh: #2067: Stress SSL3 RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 8694 at Tue May  2 15:25:59 UTC 2017
kill -USR1 8694
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8694 killed at Tue May  2 15:25:59 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 ----
selfserv_9590 starting at Tue May  2 15:25:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:25:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8766 >/dev/null 2>/dev/null
selfserv_9590 with PID 8766 found at Tue May  2 15:25:59 UTC 2017
selfserv_9590 with PID 8766 started at Tue May  2 15:25:59 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -c 1000 -C c \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:25:59 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:00 UTC 2017
ssl.sh: #2068: Stress TLS  RC4 128 with MD5 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 8766 at Tue May  2 15:26:00 UTC 2017
kill -USR1 8766
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8766 killed at Tue May  2 15:26:00 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (false start) ----
selfserv_9590 starting at Tue May  2 15:26:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss   -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8838 >/dev/null 2>/dev/null
selfserv_9590 with PID 8838 found at Tue May  2 15:26:00 UTC 2017
selfserv_9590 with PID 8838 started at Tue May  2 15:26:00 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -c 1000 -C c -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:00 UTC 2017
ssl.sh: #2069: Stress TLS  RC4 128 with MD5 (false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 8838 at Tue May  2 15:26:00 UTC 2017
kill -USR1 8838
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8838 killed at Tue May  2 15:26:00 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket) ----
selfserv_9590 starting at Tue May  2 15:26:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8910 >/dev/null 2>/dev/null
selfserv_9590 with PID 8910 found at Tue May  2 15:26:00 UTC 2017
selfserv_9590 with PID 8910 started at Tue May  2 15:26:00 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:00 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:26:01 UTC 2017
ssl.sh: #2070: Stress TLS  RC4 128 with MD5 (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 8910 at Tue May  2 15:26:01 UTC 2017
kill -USR1 8910
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8910 killed at Tue May  2 15:26:01 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (compression) ----
selfserv_9590 starting at Tue May  2 15:26:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8981 >/dev/null 2>/dev/null
selfserv_9590 with PID 8981 found at Tue May  2 15:26:01 UTC 2017
selfserv_9590 with PID 8981 started at Tue May  2 15:26:01 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:01 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:02 UTC 2017
ssl.sh: #2071: Stress TLS  RC4 128 with MD5 (compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 8981 at Tue May  2 15:26:02 UTC 2017
kill -USR1 8981
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8981 killed at Tue May  2 15:26:02 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression) ----
selfserv_9590 starting at Tue May  2 15:26:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9052 >/dev/null 2>/dev/null
selfserv_9590 with PID 9052 found at Tue May  2 15:26:02 UTC 2017
selfserv_9590 with PID 9052 started at Tue May  2 15:26:02 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:02 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:26:03 UTC 2017
ssl.sh: #2072: Stress TLS  RC4 128 with MD5 (session ticket, compression) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9052 at Tue May  2 15:26:03 UTC 2017
kill -USR1 9052
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9052 killed at Tue May  2 15:26:03 UTC 2017
ssl.sh: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) ----
selfserv_9590 starting at Tue May  2 15:26:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9124 >/dev/null 2>/dev/null
selfserv_9590 with PID 9124 found at Tue May  2 15:26:03 UTC 2017
selfserv_9590 with PID 9124 started at Tue May  2 15:26:03 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C c -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:03 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:26:04 UTC 2017
ssl.sh: #2073: Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9124 at Tue May  2 15:26:04 UTC 2017
kill -USR1 9124
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9124 killed at Tue May  2 15:26:04 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:26:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9212 >/dev/null 2>/dev/null
selfserv_9590 with PID 9212 found at Tue May  2 15:26:04 UTC 2017
selfserv_9590 with PID 9212 started at Tue May  2 15:26:04 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:04 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:05 UTC 2017
ssl.sh: #2074: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9212 at Tue May  2 15:26:05 UTC 2017
kill -USR1 9212
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9212 killed at Tue May  2 15:26:05 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:26:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9282 >/dev/null 2>/dev/null
selfserv_9590 with PID 9282 found at Tue May  2 15:26:05 UTC 2017
selfserv_9590 with PID 9282 started at Tue May  2 15:26:05 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:07 UTC 2017
ssl.sh: #2075: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9282 at Tue May  2 15:26:07 UTC 2017
kill -USR1 9282
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9282 killed at Tue May  2 15:26:07 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9590 starting at Tue May  2 15:26:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9352 >/dev/null 2>/dev/null
selfserv_9590 with PID 9352 found at Tue May  2 15:26:07 UTC 2017
selfserv_9590 with PID 9352 started at Tue May  2 15:26:07 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:26:07 UTC 2017
ssl.sh: #2076: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9352 at Tue May  2 15:26:07 UTC 2017
kill -USR1 9352
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9352 killed at Tue May  2 15:26:07 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9590 starting at Tue May  2 15:26:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9423 >/dev/null 2>/dev/null
selfserv_9590 with PID 9423 found at Tue May  2 15:26:07 UTC 2017
selfserv_9590 with PID 9423 started at Tue May  2 15:26:07 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:07 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:07 UTC 2017
ssl.sh: #2077: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9423 at Tue May  2 15:26:07 UTC 2017
kill -USR1 9423
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9423 killed at Tue May  2 15:26:07 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9590 starting at Tue May  2 15:26:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9494 >/dev/null 2>/dev/null
selfserv_9590 with PID 9494 found at Tue May  2 15:26:08 UTC 2017
selfserv_9590 with PID 9494 started at Tue May  2 15:26:08 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:08 UTC 2017
ssl.sh: #2078: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9494 at Tue May  2 15:26:08 UTC 2017
kill -USR1 9494
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9494 killed at Tue May  2 15:26:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9590 starting at Tue May  2 15:26:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9565 >/dev/null 2>/dev/null
selfserv_9590 with PID 9565 found at Tue May  2 15:26:08 UTC 2017
selfserv_9590 with PID 9565 started at Tue May  2 15:26:08 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:26:08 UTC 2017
ssl.sh: #2079: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9565 at Tue May  2 15:26:08 UTC 2017
kill -USR1 9565
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9565 killed at Tue May  2 15:26:08 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9590 starting at Tue May  2 15:26:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9636 >/dev/null 2>/dev/null
selfserv_9590 with PID 9636 found at Tue May  2 15:26:08 UTC 2017
selfserv_9590 with PID 9636 started at Tue May  2 15:26:08 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:26:09 UTC 2017
ssl.sh: #2080: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9636 at Tue May  2 15:26:09 UTC 2017
kill -USR1 9636
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9636 killed at Tue May  2 15:26:09 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:26:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9726 >/dev/null 2>/dev/null
selfserv_9590 with PID 9726 found at Tue May  2 15:26:09 UTC 2017
selfserv_9590 with PID 9726 started at Tue May  2 15:26:09 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:09 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:13 UTC 2017
ssl.sh: #2081: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9726 at Tue May  2 15:26:13 UTC 2017
kill -USR1 9726
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9726 killed at Tue May  2 15:26:13 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) ----
selfserv_9590 starting at Tue May  2 15:26:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C023 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9796 >/dev/null 2>/dev/null
selfserv_9590 with PID 9796 found at Tue May  2 15:26:13 UTC 2017
selfserv_9590 with PID 9796 started at Tue May  2 15:26:13 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C023 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:17 UTC 2017
ssl.sh: #2082: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9796 at Tue May  2 15:26:17 UTC 2017
kill -USR1 9796
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9796 killed at Tue May  2 15:26:17 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) ----
selfserv_9590 starting at Tue May  2 15:26:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02B -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9866 >/dev/null 2>/dev/null
selfserv_9590 with PID 9866 found at Tue May  2 15:26:17 UTC 2017
selfserv_9590 with PID 9866 started at Tue May  2 15:26:17 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C02B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:17 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:20 UTC 2017
ssl.sh: #2083: Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9866 at Tue May  2 15:26:20 UTC 2017
kill -USR1 9866
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9866 killed at Tue May  2 15:26:20 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:26:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9936 >/dev/null 2>/dev/null
selfserv_9590 with PID 9936 found at Tue May  2 15:26:20 UTC 2017
selfserv_9590 with PID 9936 started at Tue May  2 15:26:20 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C004 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:20 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:23 UTC 2017
ssl.sh: #2084: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 9936 at Tue May  2 15:26:23 UTC 2017
kill -USR1 9936
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9936 killed at Tue May  2 15:26:23 UTC 2017
ssl.sh: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:26:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C00E -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10006 >/dev/null 2>/dev/null
selfserv_9590 with PID 10006 found at Tue May  2 15:26:24 UTC 2017
selfserv_9590 with PID 10006 started at Tue May  2 15:26:24 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C00E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:24 UTC 2017
ssl.sh: #2085: Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10006 at Tue May  2 15:26:24 UTC 2017
kill -USR1 10006
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10006 killed at Tue May  2 15:26:24 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA ----
selfserv_9590 starting at Tue May  2 15:26:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C013 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10076 >/dev/null 2>/dev/null
selfserv_9590 with PID 10076 found at Tue May  2 15:26:24 UTC 2017
selfserv_9590 with PID 10076 started at Tue May  2 15:26:24 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C013 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:25 UTC 2017
ssl.sh: #2086: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10076 at Tue May  2 15:26:25 UTC 2017
kill -USR1 10076
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10076 killed at Tue May  2 15:26:25 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 ----
selfserv_9590 starting at Tue May  2 15:26:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C027 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10147 >/dev/null 2>/dev/null
selfserv_9590 with PID 10147 found at Tue May  2 15:26:25 UTC 2017
selfserv_9590 with PID 10147 started at Tue May  2 15:26:25 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C027 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:26 UTC 2017
ssl.sh: #2087: Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10147 at Tue May  2 15:26:26 UTC 2017
kill -USR1 10147
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10147 killed at Tue May  2 15:26:26 UTC 2017
ssl.sh: Stress TLS  ECDHE-RSA   AES 128 GCM ----
selfserv_9590 starting at Tue May  2 15:26:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C02F -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10218 >/dev/null 2>/dev/null
selfserv_9590 with PID 10218 found at Tue May  2 15:26:26 UTC 2017
selfserv_9590 with PID 10218 started at Tue May  2 15:26:26 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C02F \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:27 UTC 2017
ssl.sh: #2088: Stress TLS  ECDHE-RSA   AES 128 GCM produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10218 at Tue May  2 15:26:27 UTC 2017
kill -USR1 10218
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10218 killed at Tue May  2 15:26:27 UTC 2017
ssl.sh: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) ----
selfserv_9590 starting at Tue May  2 15:26:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C004 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10289 >/dev/null 2>/dev/null
selfserv_9590 with PID 10289 found at Tue May  2 15:26:27 UTC 2017
selfserv_9590 with PID 10289 started at Tue May  2 15:26:27 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :C004 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:26:28 UTC 2017
ssl.sh: #2089: Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10289 at Tue May  2 15:26:28 UTC 2017
kill -USR1 10289
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10289 killed at Tue May  2 15:26:28 UTC 2017
ssl.sh: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) ----
selfserv_9590 starting at Tue May  2 15:26:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C009 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10360 >/dev/null 2>/dev/null
selfserv_9590 with PID 10360 found at Tue May  2 15:26:28 UTC 2017
selfserv_9590 with PID 10360 started at Tue May  2 15:26:28 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C009 -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:26:28 UTC 2017
ssl.sh: #2090: Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10360 at Tue May  2 15:26:28 UTC 2017
kill -USR1 10360
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10360 killed at Tue May  2 15:26:28 UTC 2017
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:26:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10446 >/dev/null 2>/dev/null
selfserv_9590 with PID 10446 found at Tue May  2 15:26:28 UTC 2017
selfserv_9590 with PID 10446 started at Tue May  2 15:26:28 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:26:29 UTC 2017
ssl.sh: #2091: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10446 at Tue May  2 15:26:29 UTC 2017
kill -USR1 10446
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10446 killed at Tue May  2 15:26:29 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9590 starting at Tue May  2 15:26:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10516 >/dev/null 2>/dev/null
selfserv_9590 with PID 10516 found at Tue May  2 15:26:29 UTC 2017
selfserv_9590 with PID 10516 started at Tue May  2 15:26:29 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:29 UTC 2017
ssl.sh: #2092: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10516 at Tue May  2 15:26:29 UTC 2017
kill -USR1 10516
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10516 killed at Tue May  2 15:26:29 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:26:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10587 >/dev/null 2>/dev/null
selfserv_9590 with PID 10587 found at Tue May  2 15:26:30 UTC 2017
selfserv_9590 with PID 10587 started at Tue May  2 15:26:30 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:26:30 UTC 2017
ssl.sh: #2093: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10587 at Tue May  2 15:26:30 UTC 2017
kill -USR1 10587
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10587 killed at Tue May  2 15:26:30 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:26:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10657 >/dev/null 2>/dev/null
selfserv_9590 with PID 10657 found at Tue May  2 15:26:30 UTC 2017
selfserv_9590 with PID 10657 started at Tue May  2 15:26:30 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:30 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:26:31 UTC 2017
ssl.sh: #2094: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10657 at Tue May  2 15:26:31 UTC 2017
kill -USR1 10657
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10657 killed at Tue May  2 15:26:31 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9590 starting at Tue May  2 15:26:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10727 >/dev/null 2>/dev/null
selfserv_9590 with PID 10727 found at Tue May  2 15:26:31 UTC 2017
selfserv_9590 with PID 10727 started at Tue May  2 15:26:31 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:31 UTC 2017
ssl.sh: #2095: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10727 at Tue May  2 15:26:31 UTC 2017
kill -USR1 10727
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10727 killed at Tue May  2 15:26:31 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9590 starting at Tue May  2 15:26:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10798 >/dev/null 2>/dev/null
selfserv_9590 with PID 10798 found at Tue May  2 15:26:31 UTC 2017
selfserv_9590 with PID 10798 started at Tue May  2 15:26:31 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:31 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:26:32 UTC 2017
ssl.sh: #2096: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10798 at Tue May  2 15:26:32 UTC 2017
kill -USR1 10798
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10798 killed at Tue May  2 15:26:32 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:26:32 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0016 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10884 >/dev/null 2>/dev/null
selfserv_9590 with PID 10884 found at Tue May  2 15:26:32 UTC 2017
selfserv_9590 with PID 10884 started at Tue May  2 15:26:32 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0016 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:32 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 4 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:33 UTC 2017
ssl.sh: #2097: Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10884 at Tue May  2 15:26:33 UTC 2017
kill -USR1 10884
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10884 killed at Tue May  2 15:26:33 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA ----
selfserv_9590 starting at Tue May  2 15:26:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0033 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10954 >/dev/null 2>/dev/null
selfserv_9590 with PID 10954 found at Tue May  2 15:26:33 UTC 2017
selfserv_9590 with PID 10954 started at Tue May  2 15:26:33 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0033 \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:26:34 UTC 2017
ssl.sh: #2098: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 10954 at Tue May  2 15:26:34 UTC 2017
kill -USR1 10954
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10954 killed at Tue May  2 15:26:34 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:26:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0039 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11025 >/dev/null 2>/dev/null
selfserv_9590 with PID 11025 found at Tue May  2 15:26:34 UTC 2017
selfserv_9590 with PID 11025 started at Tue May  2 15:26:34 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0039 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:36 UTC 2017
ssl.sh: #2099: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11025 at Tue May  2 15:26:36 UTC 2017
kill -USR1 11025
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11025 killed at Tue May  2 15:26:36 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) ----
selfserv_9590 starting at Tue May  2 15:26:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0040 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11095 >/dev/null 2>/dev/null
selfserv_9590 with PID 11095 found at Tue May  2 15:26:36 UTC 2017
selfserv_9590 with PID 11095 started at Tue May  2 15:26:36 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0040 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:26:38 UTC 2017
ssl.sh: #2100: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11095 at Tue May  2 15:26:38 UTC 2017
kill -USR1 11095
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11095 killed at Tue May  2 15:26:38 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) ----
selfserv_9590 starting at Tue May  2 15:26:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :0038 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:26:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11176 >/dev/null 2>/dev/null
selfserv_9590 with PID 11176 found at Tue May  2 15:26:38 UTC 2017
selfserv_9590 with PID 11176 started at Tue May  2 15:26:38 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0038 -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:26:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:27:05 UTC 2017
ssl.sh: #2101: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11176 at Tue May  2 15:27:05 UTC 2017
kill -USR1 11176
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11176 killed at Tue May  2 15:27:05 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse ----
selfserv_9590 starting at Tue May  2 15:27:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006A -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:27:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11267 >/dev/null 2>/dev/null
selfserv_9590 with PID 11267 found at Tue May  2 15:27:05 UTC 2017
selfserv_9590 with PID 11267 started at Tue May  2 15:27:05 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :006A -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:27:05 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:27:36 UTC 2017
ssl.sh: #2102: Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11267 at Tue May  2 15:27:36 UTC 2017
kill -USR1 11267
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11267 killed at Tue May  2 15:27:36 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) ----
selfserv_9590 starting at Tue May  2 15:27:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :006B -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:27:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11341 >/dev/null 2>/dev/null
selfserv_9590 with PID 11341 found at Tue May  2 15:27:36 UTC 2017
selfserv_9590 with PID 11341 started at Tue May  2 15:27:36 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :006B -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:27:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 3 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:27:38 UTC 2017
ssl.sh: #2103: Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11341 at Tue May  2 15:27:38 UTC 2017
kill -USR1 11341
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11341 killed at Tue May  2 15:27:38 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) ----
selfserv_9590 starting at Tue May  2 15:27:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009E -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:27:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11411 >/dev/null 2>/dev/null
selfserv_9590 with PID 11411 found at Tue May  2 15:27:39 UTC 2017
selfserv_9590 with PID 11411 started at Tue May  2 15:27:39 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009E -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:27:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:27:40 UTC 2017
ssl.sh: #2104: Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11411 at Tue May  2 15:27:40 UTC 2017
kill -USR1 11411
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11411 killed at Tue May  2 15:27:40 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) ----
selfserv_9590 starting at Tue May  2 15:27:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :009F -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:27:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11481 >/dev/null 2>/dev/null
selfserv_9590 with PID 11481 found at Tue May  2 15:27:40 UTC 2017
selfserv_9590 with PID 11481 started at Tue May  2 15:27:40 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :009F -N \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:27:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:27:42 UTC 2017
ssl.sh: #2105: Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11481 at Tue May  2 15:27:42 UTC 2017
kill -USR1 11481
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11481 killed at Tue May  2 15:27:42 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:27:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:27:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11566 >/dev/null 2>/dev/null
selfserv_9590 with PID 11566 found at Tue May  2 15:27:42 UTC 2017
selfserv_9590 with PID 11566 started at Tue May  2 15:27:42 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:27:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:27:47 UTC 2017
ssl.sh: #2106: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11566 at Tue May  2 15:27:47 UTC 2017
kill -USR1 11566
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11566 killed at Tue May  2 15:27:47 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9590 starting at Tue May  2 15:27:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:27:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11642 >/dev/null 2>/dev/null
selfserv_9590 with PID 11642 found at Tue May  2 15:27:47 UTC 2017
selfserv_9590 with PID 11642 started at Tue May  2 15:27:47 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:27:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:27:47 UTC 2017
ssl.sh: #2107: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11642 at Tue May  2 15:27:47 UTC 2017
kill -USR1 11642
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11642 killed at Tue May  2 15:27:47 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:27:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:27:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11728 >/dev/null 2>/dev/null
selfserv_9590 with PID 11728 found at Tue May  2 15:27:47 UTC 2017
selfserv_9590 with PID 11728 started at Tue May  2 15:27:47 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:27:47 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:28:22 UTC 2017
ssl.sh: #2108: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11728 at Tue May  2 15:28:22 UTC 2017
kill -USR1 11728
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11728 killed at Tue May  2 15:28:22 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:28:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:28:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11806 >/dev/null 2>/dev/null
selfserv_9590 with PID 11806 found at Tue May  2 15:28:22 UTC 2017
selfserv_9590 with PID 11806 started at Tue May  2 15:28:22 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:28:22 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:28:56 UTC 2017
ssl.sh: #2109: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 11806 at Tue May  2 15:28:56 UTC 2017
kill -USR1 11806
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11806 killed at Tue May  2 15:28:56 UTC 2017
ssl.sh: SSL - FIPS mode off for server ===============================
ssl.sh: Turning FIPS off for the  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -fips false -force
FIPS mode disabled.
ssl.sh: #2110:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/server -list
ssl.sh: #2111:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2112:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  server
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -fips false -force
FIPS mode disabled.
ssl.sh: #2113:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_server -list
ssl.sh: #2114:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2115:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: SSL - FIPS mode on for client ===============================
ssl.sh: Turning FIPS on for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -fips true -force
FIPS mode enabled.
ssl.sh: #2116:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -list
ssl.sh: #2117:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2118:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: Turning FIPS on for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -fips true -force
FIPS mode enabled.
ssl.sh: #2119:  (modutil -fips true) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2120:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
  1. NSS Internal FIPS PKCS #11 Module
ssl.sh: #2121:  (grep "FIPS PKCS #11") produced a returncode of 0, expected is 0 - PASSED
ssl.sh: SSL Cipher Coverage  - server normal/client fips  - with ECC ===============================
selfserv_9590 starting at Tue May  2 15:28:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:28:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11998 >/dev/null 2>/dev/null
selfserv_9590 with PID 11998 found at Tue May  2 15:28:57 UTC 2017
selfserv_9590 with PID 11998 started at Tue May  2 15:28:57 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2122: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2123: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2124: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2125: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2126: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2127: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2128: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2129: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2130: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2131: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2132: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2133: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2134: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2135: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2136: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2137: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2138: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2139: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2140: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2141: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2142: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2143: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2144: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2145: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2146: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2147: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2148: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2149: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2150: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2151: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2152: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2153: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2154: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2155: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2156: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2157: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2158: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2159: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2160: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2161: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2162: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2163: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2164: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2165: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2166: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2167: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2168: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2169: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2170: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (DSA),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2171: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2172: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2173: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2174: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2175: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2176: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2177: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2178: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2179: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2180: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2181: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2182: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2183: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2184: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2185: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2186: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2187: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2188: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2189: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2190: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2191: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2192: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2193: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2194: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2195: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2196: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2197: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2198: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2199: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2200: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2201: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2202: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2203: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2204: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2205: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2206: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2207: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2208: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2209: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2210: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2211: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2212: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2213: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2214: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2215: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2216: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2217: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2218: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2219: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2220: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2221: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2222: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2223: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2224: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2225: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2226: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2227: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2228: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2229: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2230: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2231: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2232: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2233: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2234: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2235: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2236: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2237: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2238: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2239: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2240: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2241: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2242: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 11998 at Tue May  2 15:29:18 UTC 2017
kill -USR1 11998
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11998 killed at Tue May  2 15:29:18 UTC 2017
ssl.sh: SSL Client Authentication  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:29:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:29:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14268 >/dev/null 2>/dev/null
selfserv_9590 with PID 14268 found at Tue May  2 15:29:18 UTC 2017
selfserv_9590 with PID 14268 started at Tue May  2 15:29:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2243: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 14268 at Tue May  2 15:29:18 UTC 2017
kill -USR1 14268
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14268 killed at Tue May  2 15:29:18 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:29:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:29:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14325 >/dev/null 2>/dev/null
selfserv_9590 with PID 14325 found at Tue May  2 15:29:18 UTC 2017
selfserv_9590 with PID 14325 started at Tue May  2 15:29:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2244: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 14325 at Tue May  2 15:29:45 UTC 2017
kill -USR1 14325
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14325 killed at Tue May  2 15:29:45 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:29:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:29:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14383 >/dev/null 2>/dev/null
selfserv_9590 with PID 14383 found at Tue May  2 15:29:45 UTC 2017
selfserv_9590 with PID 14383 started at Tue May  2 15:29:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2245: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 14383 at Tue May  2 15:29:45 UTC 2017
kill -USR1 14383
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14383 killed at Tue May  2 15:29:45 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:29:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:29:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14446 >/dev/null 2>/dev/null
selfserv_9590 with PID 14446 found at Tue May  2 15:29:45 UTC 2017
selfserv_9590 with PID 14446 started at Tue May  2 15:29:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2246: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 14446 at Tue May  2 15:29:45 UTC 2017
kill -USR1 14446
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14446 killed at Tue May  2 15:29:45 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:29:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:29:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14503 >/dev/null 2>/dev/null
selfserv_9590 with PID 14503 found at Tue May  2 15:29:45 UTC 2017
selfserv_9590 with PID 14503 started at Tue May  2 15:29:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2247: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 14503 at Tue May  2 15:30:08 UTC 2017
kill -USR1 14503
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14503 killed at Tue May  2 15:30:08 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:30:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:30:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14561 >/dev/null 2>/dev/null
selfserv_9590 with PID 14561 found at Tue May  2 15:30:09 UTC 2017
selfserv_9590 with PID 14561 started at Tue May  2 15:30:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2248: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 14561 at Tue May  2 15:30:09 UTC 2017
kill -USR1 14561
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14561 killed at Tue May  2 15:30:09 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:30:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:30:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14624 >/dev/null 2>/dev/null
selfserv_9590 with PID 14624 found at Tue May  2 15:30:09 UTC 2017
selfserv_9590 with PID 14624 started at Tue May  2 15:30:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2249: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 14624 at Tue May  2 15:30:09 UTC 2017
kill -USR1 14624
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14624 killed at Tue May  2 15:30:09 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:30:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:30:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14681 >/dev/null 2>/dev/null
selfserv_9590 with PID 14681 found at Tue May  2 15:30:09 UTC 2017
selfserv_9590 with PID 14681 started at Tue May  2 15:30:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2250: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 14681 at Tue May  2 15:30:35 UTC 2017
kill -USR1 14681
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14681 killed at Tue May  2 15:30:35 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:30:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:30:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14738 >/dev/null 2>/dev/null
selfserv_9590 with PID 14738 found at Tue May  2 15:30:35 UTC 2017
selfserv_9590 with PID 14738 started at Tue May  2 15:30:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2251: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 14738 at Tue May  2 15:30:36 UTC 2017
kill -USR1 14738
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14738 killed at Tue May  2 15:30:36 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:30:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:30:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14801 >/dev/null 2>/dev/null
selfserv_9590 with PID 14801 found at Tue May  2 15:30:36 UTC 2017
selfserv_9590 with PID 14801 started at Tue May  2 15:30:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2252: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 14801 at Tue May  2 15:30:36 UTC 2017
kill -USR1 14801
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14801 killed at Tue May  2 15:30:36 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:30:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:30:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14858 >/dev/null 2>/dev/null
selfserv_9590 with PID 14858 found at Tue May  2 15:30:36 UTC 2017
selfserv_9590 with PID 14858 started at Tue May  2 15:30:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2253: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 14858 at Tue May  2 15:31:02 UTC 2017
kill -USR1 14858
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14858 killed at Tue May  2 15:31:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:31:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:31:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14915 >/dev/null 2>/dev/null
selfserv_9590 with PID 14915 found at Tue May  2 15:31:02 UTC 2017
selfserv_9590 with PID 14915 started at Tue May  2 15:31:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2254: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 14915 at Tue May  2 15:31:03 UTC 2017
kill -USR1 14915
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14915 killed at Tue May  2 15:31:03 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:31:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:31:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14978 >/dev/null 2>/dev/null
selfserv_9590 with PID 14978 found at Tue May  2 15:31:03 UTC 2017
selfserv_9590 with PID 14978 started at Tue May  2 15:31:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2255: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 14978 at Tue May  2 15:31:03 UTC 2017
kill -USR1 14978
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14978 killed at Tue May  2 15:31:03 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:31:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:31:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15035 >/dev/null 2>/dev/null
selfserv_9590 with PID 15035 found at Tue May  2 15:31:03 UTC 2017
selfserv_9590 with PID 15035 started at Tue May  2 15:31:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2256: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 15035 at Tue May  2 15:31:26 UTC 2017
kill -USR1 15035
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15035 killed at Tue May  2 15:31:26 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:31:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:31:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15092 >/dev/null 2>/dev/null
selfserv_9590 with PID 15092 found at Tue May  2 15:31:26 UTC 2017
selfserv_9590 with PID 15092 started at Tue May  2 15:31:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2257: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15092 at Tue May  2 15:31:26 UTC 2017
kill -USR1 15092
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15092 killed at Tue May  2 15:31:26 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:31:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:31:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15168 >/dev/null 2>/dev/null
selfserv_9590 with PID 15168 found at Tue May  2 15:31:27 UTC 2017
selfserv_9590 with PID 15168 started at Tue May  2 15:31:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2258: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 15168 at Tue May  2 15:31:53 UTC 2017
kill -USR1 15168
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15168 killed at Tue May  2 15:31:53 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:31:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:31:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15225 >/dev/null 2>/dev/null
selfserv_9590 with PID 15225 found at Tue May  2 15:31:53 UTC 2017
selfserv_9590 with PID 15225 started at Tue May  2 15:31:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2259: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15225 at Tue May  2 15:31:53 UTC 2017
kill -USR1 15225
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15225 killed at Tue May  2 15:31:53 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:31:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:31:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15286 >/dev/null 2>/dev/null
selfserv_9590 with PID 15286 found at Tue May  2 15:31:53 UTC 2017
selfserv_9590 with PID 15286 started at Tue May  2 15:31:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2260: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 15286 at Tue May  2 15:32:16 UTC 2017
kill -USR1 15286
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15286 killed at Tue May  2 15:32:16 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:32:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15343 >/dev/null 2>/dev/null
selfserv_9590 with PID 15343 found at Tue May  2 15:32:16 UTC 2017
selfserv_9590 with PID 15343 started at Tue May  2 15:32:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2261: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15343 at Tue May  2 15:32:17 UTC 2017
kill -USR1 15343
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15343 killed at Tue May  2 15:32:17 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:32:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15404 >/dev/null 2>/dev/null
selfserv_9590 with PID 15404 found at Tue May  2 15:32:17 UTC 2017
selfserv_9590 with PID 15404 started at Tue May  2 15:32:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2262: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 15404 at Tue May  2 15:32:43 UTC 2017
kill -USR1 15404
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15404 killed at Tue May  2 15:32:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:32:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:32:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15461 >/dev/null 2>/dev/null
selfserv_9590 with PID 15461 found at Tue May  2 15:32:43 UTC 2017
selfserv_9590 with PID 15461 started at Tue May  2 15:32:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2263: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15461 at Tue May  2 15:32:43 UTC 2017
kill -USR1 15461
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15461 killed at Tue May  2 15:32:43 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:32:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:32:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15522 >/dev/null 2>/dev/null
selfserv_9590 with PID 15522 found at Tue May  2 15:32:43 UTC 2017
selfserv_9590 with PID 15522 started at Tue May  2 15:32:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w bogus -n TestUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12286:
Cannot communicate securely with peer: no common encryption algorithm(s).
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_NO_CYPHER_OVERLAP: Cannot communicate securely with peer: no common encryption algorithm(s).
ssl.sh: #2264: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 15522 at Tue May  2 15:33:09 UTC 2017
kill -USR1 15522
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15522 killed at Tue May  2 15:33:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:33:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15579 >/dev/null 2>/dev/null
selfserv_9590 with PID 15579 found at Tue May  2 15:33:09 UTC 2017
selfserv_9590 with PID 15579 started at Tue May  2 15:33:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.0 -w nss -n TestUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2265: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15579 at Tue May  2 15:33:10 UTC 2017
kill -USR1 15579
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15579 killed at Tue May  2 15:33:10 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:33:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15640 >/dev/null 2>/dev/null
selfserv_9590 with PID 15640 found at Tue May  2 15:33:10 UTC 2017
selfserv_9590 with PID 15640 started at Tue May  2 15:33:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2266: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 15640 at Tue May  2 15:33:33 UTC 2017
kill -USR1 15640
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15640 killed at Tue May  2 15:33:33 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:33:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15697 >/dev/null 2>/dev/null
selfserv_9590 with PID 15697 found at Tue May  2 15:33:33 UTC 2017
selfserv_9590 with PID 15697 started at Tue May  2 15:33:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -n TestUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2267: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15697 at Tue May  2 15:33:33 UTC 2017
kill -USR1 15697
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15697 killed at Tue May  2 15:33:33 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9590 starting at Tue May  2 15:33:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15775 >/dev/null 2>/dev/null
selfserv_9590 with PID 15775 found at Tue May  2 15:33:34 UTC 2017
selfserv_9590 with PID 15775 started at Tue May  2 15:33:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2268: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15775 at Tue May  2 15:33:34 UTC 2017
kill -USR1 15775
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15775 killed at Tue May  2 15:33:34 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9590 starting at Tue May  2 15:33:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15838 >/dev/null 2>/dev/null
selfserv_9590 with PID 15838 found at Tue May  2 15:33:34 UTC 2017
selfserv_9590 with PID 15838 started at Tue May  2 15:33:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2269: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15838 at Tue May  2 15:33:34 UTC 2017
kill -USR1 15838
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15838 killed at Tue May  2 15:33:34 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9590 starting at Tue May  2 15:33:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15901 >/dev/null 2>/dev/null
selfserv_9590 with PID 15901 found at Tue May  2 15:33:34 UTC 2017
selfserv_9590 with PID 15901 started at Tue May  2 15:33:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2270: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 15901 at Tue May  2 15:33:34 UTC 2017
kill -USR1 15901
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15901 killed at Tue May  2 15:33:34 UTC 2017
ssl.sh: SSL3 Server hello response without SNI ----
selfserv_9590 starting at Tue May  2 15:33:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15964 >/dev/null 2>/dev/null
selfserv_9590 with PID 15964 found at Tue May  2 15:33:34 UTC 2017
selfserv_9590 with PID 15964 started at Tue May  2 15:33:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2271: SSL3 Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15964 at Tue May  2 15:33:35 UTC 2017
kill -USR1 15964
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15964 killed at Tue May  2 15:33:35 UTC 2017
ssl.sh: SSL3 Server hello response with SNI: SSL don't have SH extensions ----
selfserv_9590 starting at Tue May  2 15:33:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16027 >/dev/null 2>/dev/null
selfserv_9590 with PID 16027 found at Tue May  2 15:33:35 UTC 2017
selfserv_9590 with PID 16027 started at Tue May  2 15:33:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:ssl3 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
ssl.sh: #2272: SSL3 Server hello response with SNI: SSL don't have SH extensions produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16027 at Tue May  2 15:33:35 UTC 2017
kill -USR1 16027
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16027 killed at Tue May  2 15:33:35 UTC 2017
ssl.sh: TLS Server hello response without SNI ----
selfserv_9590 starting at Tue May  2 15:33:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16090 >/dev/null 2>/dev/null
selfserv_9590 with PID 16090 found at Tue May  2 15:33:35 UTC 2017
selfserv_9590 with PID 16090 started at Tue May  2 15:33:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2273: TLS Server hello response without SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 16090 at Tue May  2 15:33:35 UTC 2017
kill -USR1 16090
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16090 killed at Tue May  2 15:33:35 UTC 2017
ssl.sh: TLS Server hello response with SNI ----
selfserv_9590 starting at Tue May  2 15:33:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16153 >/dev/null 2>/dev/null
selfserv_9590 with PID 16153 found at Tue May  2 15:33:35 UTC 2017
selfserv_9590 with PID 16153 started at Tue May  2 15:33:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2274: TLS Server hello response with SNI produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 16153 at Tue May  2 15:33:35 UTC 2017
kill -USR1 16153
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16153 killed at Tue May  2 15:33:35 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name on 2d HS ----
selfserv_9590 starting at Tue May  2 15:33:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16216 >/dev/null 2>/dev/null
selfserv_9590 with PID 16216 found at Tue May  2 15:33:35 UTC 2017
selfserv_9590 with PID 16216 started at Tue May  2 15:33:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -w nss -n TestUser -a localhost-sni.localdomain -a localhost.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SSL_ERROR_BAD_CERT_DOMAIN: Unable to communicate securely with peer: requested domain name does not match the server's certificate.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #2275: TLS Server hello response with SNI: Change name on 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16216 at Tue May  2 15:33:36 UTC 2017
kill -USR1 16216
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16216 killed at Tue May  2 15:33:36 UTC 2017
ssl.sh: TLS Server hello response with SNI: Change name to invalid 2d HS ----
selfserv_9590 starting at Tue May  2 15:33:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16279 >/dev/null 2>/dev/null
selfserv_9590 with PID 16279 found at Tue May  2 15:33:36 UTC 2017
selfserv_9590 with PID 16279 started at Tue May  2 15:33:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni.localdomain -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12182:
SSL peer has no certificate for the requested DNS name.
subject DN: CN=localhost-sni.localdomain,E=localhost-sni.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2276: TLS Server hello response with SNI: Change name to invalid 2d HS produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16279 at Tue May  2 15:33:36 UTC 2017
kill -USR1 16279
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16279 killed at Tue May  2 15:33:36 UTC 2017
ssl.sh: TLS Server response with alert ----
selfserv_9590 starting at Tue May  2 15:33:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16342 >/dev/null 2>/dev/null
selfserv_9590 with PID 16342 found at Tue May  2 15:33:36 UTC 2017
selfserv_9590 with PID 16342 started at Tue May  2 15:33:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client   \
        -V ssl3:tls1.2 -c v -w nss -n TestUser -a localhost-sni1.localdomain  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12182:
SSL peer has no certificate for the requested DNS name.
tstclnt: write to SSL socket failed: SSL_ERROR_UNRECOGNIZED_NAME_ALERT: SSL peer has no certificate for the requested DNS name.
ssl.sh: #2277: TLS Server response with alert produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16342 at Tue May  2 15:33:36 UTC 2017
kill -USR1 16342
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16342 killed at Tue May  2 15:33:36 UTC 2017
ssl.sh: SSL Cert Status (OCSP Stapling)  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, revoked status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, signed response, unknown status (non-FIPS only)
ssl.sh: skipping  OCSP stapling, unsigned failure response (non-FIPS only)
ssl.sh: skipping  OCSP stapling, good status, bad signature (non-FIPS only)
ssl.sh: skipping  OCSP stapling, invalid cert status data (non-FIPS only)
ssl.sh: skipping  Valid cert, Server doesn't staple (non-FIPS only)
ssl.sh: skipping  Stress OCSP stapling, server uses random status (non-FIPS only)
ssl.sh: SSL Stress Test  - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16441 >/dev/null 2>/dev/null
selfserv_9590 with PID 16441 found at Tue May  2 15:33:36 UTC 2017
selfserv_9590 with PID 16441 started at Tue May  2 15:33:36 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:36 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:33:38 UTC 2017
ssl.sh: #2278: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 16441 at Tue May  2 15:33:38 UTC 2017
kill -USR1 16441
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16441 killed at Tue May  2 15:33:38 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16513 >/dev/null 2>/dev/null
selfserv_9590 with PID 16513 found at Tue May  2 15:33:38 UTC 2017
selfserv_9590 with PID 16513 started at Tue May  2 15:33:38 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -c 100 -C c -N -n TestUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:38 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:33:39 UTC 2017
ssl.sh: #2279: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 16513 at Tue May  2 15:33:39 UTC 2017
kill -USR1 16513
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16513 killed at Tue May  2 15:33:39 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16585 >/dev/null 2>/dev/null
selfserv_9590 with PID 16585 found at Tue May  2 15:33:39 UTC 2017
selfserv_9590 with PID 16585 started at Tue May  2 15:33:39 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:33:39 UTC 2017
ssl.sh: #2280: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 16585 at Tue May  2 15:33:39 UTC 2017
kill -USR1 16585
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16585 killed at Tue May  2 15:33:39 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16656 >/dev/null 2>/dev/null
selfserv_9590 with PID 16656 found at Tue May  2 15:33:39 UTC 2017
selfserv_9590 with PID 16656 started at Tue May  2 15:33:39 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:39 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:33:39 UTC 2017
ssl.sh: #2281: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 16656 at Tue May  2 15:33:39 UTC 2017
kill -USR1 16656
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16656 killed at Tue May  2 15:33:39 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9590 starting at Tue May  2 15:33:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16727 >/dev/null 2>/dev/null
selfserv_9590 with PID 16727 found at Tue May  2 15:33:40 UTC 2017
selfserv_9590 with PID 16727 started at Tue May  2 15:33:40 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:33:40 UTC 2017
ssl.sh: #2282: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 16727 at Tue May  2 15:33:40 UTC 2017
kill -USR1 16727
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16727 killed at Tue May  2 15:33:40 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16798 >/dev/null 2>/dev/null
selfserv_9590 with PID 16798 found at Tue May  2 15:33:40 UTC 2017
selfserv_9590 with PID 16798 started at Tue May  2 15:33:40 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:33:40 UTC 2017
ssl.sh: #2283: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 16798 at Tue May  2 15:33:40 UTC 2017
kill -USR1 16798
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16798 killed at Tue May  2 15:33:40 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9590 starting at Tue May  2 15:33:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16869 >/dev/null 2>/dev/null
selfserv_9590 with PID 16869 found at Tue May  2 15:33:40 UTC 2017
selfserv_9590 with PID 16869 started at Tue May  2 15:33:40 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C c -n TestUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:40 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:33:40 UTC 2017
ssl.sh: #2284: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 16869 at Tue May  2 15:33:40 UTC 2017
kill -USR1 16869
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16869 killed at Tue May  2 15:33:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) ----
selfserv_9590 starting at Tue May  2 15:33:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16946 >/dev/null 2>/dev/null
selfserv_9590 with PID 16946 found at Tue May  2 15:33:41 UTC 2017
selfserv_9590 with PID 16946 started at Tue May  2 15:33:41 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:33:41 UTC 2017
ssl.sh: #2285: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 16946 at Tue May  2 15:33:41 UTC 2017
kill -USR1 16946
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16946 killed at Tue May  2 15:33:41 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) ----
selfserv_9590 starting at Tue May  2 15:33:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -a localhost-sni.localdomain -k localhost-sni.localdomain -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17023 >/dev/null 2>/dev/null
selfserv_9590 with PID 17023 found at Tue May  2 15:33:41 UTC 2017
selfserv_9590 with PID 17023 started at Tue May  2 15:33:41 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V tls1.0:tls1.2 -c 1000 -C c -u -a localhost-sni.localdomain \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:41 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes
strsclnt completed at Tue May  2 15:33:42 UTC 2017
ssl.sh: #2286: Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17023 at Tue May  2 15:33:42 UTC 2017
kill -USR1 17023
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          999 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17023 killed at Tue May  2 15:33:42 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17126 >/dev/null 2>/dev/null
selfserv_9590 with PID 17126 found at Tue May  2 15:33:42 UTC 2017
selfserv_9590 with PID 17126 started at Tue May  2 15:33:42 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:42 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:33:43 UTC 2017
ssl.sh: #2287: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17126 at Tue May  2 15:33:43 UTC 2017
kill -USR1 17126
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17126 killed at Tue May  2 15:33:43 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9590 starting at Tue May  2 15:33:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17196 >/dev/null 2>/dev/null
selfserv_9590 with PID 17196 found at Tue May  2 15:33:43 UTC 2017
selfserv_9590 with PID 17196 started at Tue May  2 15:33:43 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:33:43 UTC 2017
ssl.sh: #2288: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17196 at Tue May  2 15:33:43 UTC 2017
kill -USR1 17196
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17196 killed at Tue May  2 15:33:43 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17267 >/dev/null 2>/dev/null
selfserv_9590 with PID 17267 found at Tue May  2 15:33:43 UTC 2017
selfserv_9590 with PID 17267 started at Tue May  2 15:33:43 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:43 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:33:44 UTC 2017
ssl.sh: #2289: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17267 at Tue May  2 15:33:44 UTC 2017
kill -USR1 17267
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17267 killed at Tue May  2 15:33:44 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17338 >/dev/null 2>/dev/null
selfserv_9590 with PID 17338 found at Tue May  2 15:33:44 UTC 2017
selfserv_9590 with PID 17338 started at Tue May  2 15:33:44 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n TestUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:33:44 UTC 2017
ssl.sh: #2290: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17338 at Tue May  2 15:33:44 UTC 2017
kill -USR1 17338
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17338 killed at Tue May  2 15:33:44 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9590 starting at Tue May  2 15:33:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17409 >/dev/null 2>/dev/null
selfserv_9590 with PID 17409 found at Tue May  2 15:33:44 UTC 2017
selfserv_9590 with PID 17409 started at Tue May  2 15:33:44 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:44 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:33:45 UTC 2017
ssl.sh: #2291: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17409 at Tue May  2 15:33:45 UTC 2017
kill -USR1 17409
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17409 killed at Tue May  2 15:33:45 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17482 >/dev/null 2>/dev/null
selfserv_9590 with PID 17482 found at Tue May  2 15:33:45 UTC 2017
selfserv_9590 with PID 17482 started at Tue May  2 15:33:45 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n TestUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:33:45 UTC 2017
ssl.sh: #2292: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17482 at Tue May  2 15:33:45 UTC 2017
kill -USR1 17482
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17482 killed at Tue May  2 15:33:45 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17591 >/dev/null 2>/dev/null
selfserv_9590 with PID 17591 found at Tue May  2 15:33:45 UTC 2017
selfserv_9590 with PID 17591 started at Tue May  2 15:33:45 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:45 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:33:48 UTC 2017
ssl.sh: #2293: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17591 at Tue May  2 15:33:48 UTC 2017
kill -USR1 17591
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17591 killed at Tue May  2 15:33:48 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9590 starting at Tue May  2 15:33:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17661 >/dev/null 2>/dev/null
selfserv_9590 with PID 17661 found at Tue May  2 15:33:48 UTC 2017
selfserv_9590 with PID 17661 started at Tue May  2 15:33:48 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n TestUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:48 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:33:49 UTC 2017
ssl.sh: #2294: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17661 at Tue May  2 15:33:49 UTC 2017
kill -USR1 17661
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17661 killed at Tue May  2 15:33:49 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:33:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:33:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17744 >/dev/null 2>/dev/null
selfserv_9590 with PID 17744 found at Tue May  2 15:33:49 UTC 2017
selfserv_9590 with PID 17744 started at Tue May  2 15:33:49 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:33:49 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:34:13 UTC 2017
ssl.sh: #2295: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17744 at Tue May  2 15:34:13 UTC 2017
kill -USR1 17744
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17744 killed at Tue May  2 15:34:13 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:34:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:34:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17814 >/dev/null 2>/dev/null
selfserv_9590 with PID 17814 found at Tue May  2 15:34:13 UTC 2017
selfserv_9590 with PID 17814 started at Tue May  2 15:34:13 UTC 2017
strsclnt -q -p 9590 -d ../client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n TestUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:34:13 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:34:37 UTC 2017
ssl.sh: #2296: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 17814 at Tue May  2 15:34:37 UTC 2017
kill -USR1 17814
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17814 killed at Tue May  2 15:34:37 UTC 2017
ssl.sh: SSL Cipher Coverage Extended Test - server normal/client fips  - with ECC ===============================
selfserv_9590 starting at Tue May  2 15:34:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:34:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17876 >/dev/null 2>/dev/null
selfserv_9590 with PID 17876 found at Tue May  2 15:34:37 UTC 2017
selfserv_9590 with PID 17876 started at Tue May  2 15:34:37 UTC 2017
ssl.sh: running SSL3_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2297: SSL3_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2298: SSL3_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2299: SSL3_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2300: SSL3_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2301: SSL3_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2302: SSL3_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2303: SSL3_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running SSL3_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:ssl3  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2304: SSL3_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2305: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :00A3 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2306: TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2307: TLS_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2308: TLS_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2309: TLS_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2310: TLS_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2311: TLS_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2312: TLS_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2313: TLS_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2314: TLS_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2315: TLS_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2316: TLS11_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2317: TLS11_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2318: TLS11_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2319: TLS11_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2320: TLS11_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2321: TLS11_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2322: TLS11_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2323: TLS11_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c c -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2324: TLS12_RSA_WITH_RC4_128_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2325: TLS12_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_DES_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c e -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2326: TLS12_RSA_WITH_DES_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_MD5 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c i -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2327: TLS12_RSA_WITH_NULL_MD5 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c n -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2328: TLS12_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c v -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2329: TLS12_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c y -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2330: TLS12_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c z -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2331: TLS12_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0016 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2332: TLS12_DHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0032 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2333: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0033 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2334: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0038 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2335: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0039 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2336: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_NULL_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2337: TLS12_RSA_WITH_NULL_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2338: TLS12_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :003D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2339: TLS12_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0040 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2340: TLS12_DHE_DSS_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :0067 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2341: TLS12_DHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :006A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2342: TLS12_DHE_DSS_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :006B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2343: TLS12_DHE_RSA_WITH_AES_256_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2344: TLS12_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :009E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2345: TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :00A2 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-dsa@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (DSA),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2346: TLS12_DHE_DSS_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCAA -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2347: TLS12_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2348: TLS_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2349: TLS_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2350: TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2351: TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2352: TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2353: TLS_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2354: TLS_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2355: TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2356: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2357: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2358: TLS_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2359: TLS_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2360: TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2361: TLS_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2362: TLS_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2363: TLS_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2364: TLS_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2365: TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2366: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.0  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2367: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2368: TLS11_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2369: TLS11_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2370: TLS11_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2371: TLS11_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2372: TLS11_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2373: TLS11_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2374: TLS11_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2375: TLS11_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2376: TLS11_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2377: TLS11_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2378: TLS11_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2379: TLS11_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2380: TLS11_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2381: TLS11_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2382: TLS11_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2383: TLS11_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2384: TLS11_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2385: TLS11_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2386: TLS11_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.1  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2387: TLS11_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C001 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2388: TLS12_ECDH_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C002 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2389: TLS12_ECDH_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C003 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2390: TLS12_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C004 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2391: TLS12_ECDH_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C005 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2392: TLS12_ECDH_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C006 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2393: TLS12_ECDHE_ECDSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C007 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2394: TLS12_ECDHE_ECDSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C008 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2395: TLS12_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C009 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2396: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00A -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2397: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2398: TLS12_ECDH_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2399: TLS12_ECDH_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00D -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2400: TLS12_ECDH_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00E -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2401: TLS12_ECDH_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C00F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ecmixed@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2402: TLS12_ECDH_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_NULL_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C010 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2403: TLS12_ECDHE_RSA_WITH_NULL_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_RC4_128_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C011 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2404: TLS12_ECDHE_RSA_WITH_RC4_128_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C012 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2405: TLS12_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C013 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2406: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C014 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2407: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C023 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2408: TLS12_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C024 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2409: TLS12_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C027 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2410: TLS12_ECDHE_RSA_WITH_AES_128_CBC_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C028 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2411: TLS12_ECDHE_RSA_WITH_AES_256_CBC_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02B -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2412: TLS12_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02C -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2413: TLS12_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C02F -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2414: TLS12_ECDHE_RSA_WITH_AES_128_GCM_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :C030 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2415: TLS12_ECDHE_RSA_WITH_AES_256_GCM_SHA384 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCA8 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2416: TLS12_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 ----------------------------
tstclnt -p 9590 -h localhost.localdomain -c :CCA9 -V ssl3:tls1.2  \
        -f -d ../ext_client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2417: TLS12_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 17876 at Tue May  2 15:34:59 UTC 2017
kill -USR1 17876
selfserv: 0 cache hits; 121 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17876 killed at Tue May  2 15:34:59 UTC 2017
ssl.sh: SSL Client Authentication Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  TLS Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:34:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:34:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20145 >/dev/null 2>/dev/null
selfserv_9590 with PID 20145 found at Tue May  2 15:34:59 UTC 2017
selfserv_9590 with PID 20145 started at Tue May  2 15:34:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2418: TLS Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20145 at Tue May  2 15:34:59 UTC 2017
kill -USR1 20145
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20145 killed at Tue May  2 15:34:59 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:34:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:34:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20202 >/dev/null 2>/dev/null
selfserv_9590 with PID 20202 found at Tue May  2 15:34:59 UTC 2017
selfserv_9590 with PID 20202 started at Tue May  2 15:34:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2419: TLS Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20202 at Tue May  2 15:35:26 UTC 2017
kill -USR1 20202
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20202 killed at Tue May  2 15:35:26 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:35:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:35:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20259 >/dev/null 2>/dev/null
selfserv_9590 with PID 20259 found at Tue May  2 15:35:27 UTC 2017
selfserv_9590 with PID 20259 started at Tue May  2 15:35:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2420: TLS Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20259 at Tue May  2 15:35:27 UTC 2017
kill -USR1 20259
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20259 killed at Tue May  2 15:35:27 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:35:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:35:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20322 >/dev/null 2>/dev/null
selfserv_9590 with PID 20322 found at Tue May  2 15:35:27 UTC 2017
selfserv_9590 with PID 20322 started at Tue May  2 15:35:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2421: SSL3 Require client auth (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20322 at Tue May  2 15:35:27 UTC 2017
kill -USR1 20322
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20322 killed at Tue May  2 15:35:27 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:35:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:35:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20379 >/dev/null 2>/dev/null
selfserv_9590 with PID 20379 found at Tue May  2 15:35:27 UTC 2017
selfserv_9590 with PID 20379 started at Tue May  2 15:35:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2422: SSL3 Require client auth (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20379 at Tue May  2 15:35:50 UTC 2017
kill -USR1 20379
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20379 killed at Tue May  2 15:35:50 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:35:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:35:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20436 >/dev/null 2>/dev/null
selfserv_9590 with PID 20436 found at Tue May  2 15:35:50 UTC 2017
selfserv_9590 with PID 20436 started at Tue May  2 15:35:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2423: SSL3 Require client auth (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20436 at Tue May  2 15:35:51 UTC 2017
kill -USR1 20436
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20436 killed at Tue May  2 15:35:51 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:35:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:35:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20499 >/dev/null 2>/dev/null
selfserv_9590 with PID 20499 found at Tue May  2 15:35:51 UTC 2017
selfserv_9590 with PID 20499 started at Tue May  2 15:35:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2424: TLS Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20499 at Tue May  2 15:35:51 UTC 2017
kill -USR1 20499
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20499 killed at Tue May  2 15:35:51 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:35:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:35:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20556 >/dev/null 2>/dev/null
selfserv_9590 with PID 20556 found at Tue May  2 15:35:51 UTC 2017
selfserv_9590 with PID 20556 started at Tue May  2 15:35:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2425: TLS Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20556 at Tue May  2 15:36:18 UTC 2017
kill -USR1 20556
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20556 killed at Tue May  2 15:36:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:36:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20613 >/dev/null 2>/dev/null
selfserv_9590 with PID 20613 found at Tue May  2 15:36:18 UTC 2017
selfserv_9590 with PID 20613 started at Tue May  2 15:36:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2426: TLS Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20613 at Tue May  2 15:36:19 UTC 2017
kill -USR1 20613
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20613 killed at Tue May  2 15:36:19 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:36:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20676 >/dev/null 2>/dev/null
selfserv_9590 with PID 20676 found at Tue May  2 15:36:19 UTC 2017
selfserv_9590 with PID 20676 started at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2427: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20676 at Tue May  2 15:36:19 UTC 2017
kill -USR1 20676
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20676 killed at Tue May  2 15:36:19 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:36:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20733 >/dev/null 2>/dev/null
selfserv_9590 with PID 20733 found at Tue May  2 15:36:19 UTC 2017
selfserv_9590 with PID 20733 started at Tue May  2 15:36:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2428: TLS 1.0 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20733 at Tue May  2 15:36:46 UTC 2017
kill -USR1 20733
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20733 killed at Tue May  2 15:36:46 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:36:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:36:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20790 >/dev/null 2>/dev/null
selfserv_9590 with PID 20790 found at Tue May  2 15:36:46 UTC 2017
selfserv_9590 with PID 20790 started at Tue May  2 15:36:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2429: TLS 1.0 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20790 at Tue May  2 15:36:47 UTC 2017
kill -USR1 20790
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20790 killed at Tue May  2 15:36:47 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:36:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:36:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20853 >/dev/null 2>/dev/null
selfserv_9590 with PID 20853 found at Tue May  2 15:36:47 UTC 2017
selfserv_9590 with PID 20853 started at Tue May  2 15:36:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #2430: SSL3 Require client auth on 2nd hs (client does not provide auth) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20853 at Tue May  2 15:36:47 UTC 2017
kill -USR1 20853
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20853 killed at Tue May  2 15:36:47 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:36:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:36:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20910 >/dev/null 2>/dev/null
selfserv_9590 with PID 20910 found at Tue May  2 15:36:47 UTC 2017
selfserv_9590 with PID 20910 started at Tue May  2 15:36:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2431: SSL3 Require client auth on 2nd hs (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20910 at Tue May  2 15:37:10 UTC 2017
kill -USR1 20910
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20910 killed at Tue May  2 15:37:10 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:37:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:37:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21123 >/dev/null 2>/dev/null
selfserv_9590 with PID 21123 found at Tue May  2 15:37:10 UTC 2017
selfserv_9590 with PID 21123 started at Tue May  2 15:37:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2432: SSL3 Require client auth on 2nd hs (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21123 at Tue May  2 15:37:10 UTC 2017
kill -USR1 21123
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21123 killed at Tue May  2 15:37:10 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:37:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:37:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21199 >/dev/null 2>/dev/null
selfserv_9590 with PID 21199 found at Tue May  2 15:37:10 UTC 2017
selfserv_9590 with PID 21199 started at Tue May  2 15:37:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2433: TLS Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21199 at Tue May  2 15:37:38 UTC 2017
kill -USR1 21199
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21199 killed at Tue May  2 15:37:38 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:37:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:37:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21266 >/dev/null 2>/dev/null
selfserv_9590 with PID 21266 found at Tue May  2 15:37:38 UTC 2017
selfserv_9590 with PID 21266 started at Tue May  2 15:37:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2434: TLS Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21266 at Tue May  2 15:37:38 UTC 2017
kill -USR1 21266
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21266 killed at Tue May  2 15:37:38 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:37:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:37:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21327 >/dev/null 2>/dev/null
selfserv_9590 with PID 21327 found at Tue May  2 15:37:38 UTC 2017
selfserv_9590 with PID 21327 started at Tue May  2 15:37:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2435: SSL3 Require client auth (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21327 at Tue May  2 15:38:01 UTC 2017
kill -USR1 21327
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21327 killed at Tue May  2 15:38:01 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:38:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:38:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21388 >/dev/null 2>/dev/null
selfserv_9590 with PID 21388 found at Tue May  2 15:38:02 UTC 2017
selfserv_9590 with PID 21388 started at Tue May  2 15:38:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2436: SSL3 Require client auth (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21388 at Tue May  2 15:38:02 UTC 2017
kill -USR1 21388
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21388 killed at Tue May  2 15:38:02 UTC 2017
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:38:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:38:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21450 >/dev/null 2>/dev/null
selfserv_9590 with PID 21450 found at Tue May  2 15:38:02 UTC 2017
selfserv_9590 with PID 21450 started at Tue May  2 15:38:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2437: TLS Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21450 at Tue May  2 15:38:29 UTC 2017
kill -USR1 21450
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21450 killed at Tue May  2 15:38:29 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:38:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:38:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21521 >/dev/null 2>/dev/null
selfserv_9590 with PID 21521 found at Tue May  2 15:38:29 UTC 2017
selfserv_9590 with PID 21521 started at Tue May  2 15:38:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.2 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2438: TLS Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21521 at Tue May  2 15:38:30 UTC 2017
kill -USR1 21521
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21521 killed at Tue May  2 15:38:30 UTC 2017
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:38:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:38:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21582 >/dev/null 2>/dev/null
selfserv_9590 with PID 21582 found at Tue May  2 15:38:30 UTC 2017
selfserv_9590 with PID 21582 started at Tue May  2 15:38:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w bogus -n ExtendedSSLUser-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12192:
Peer reports failure of signature verification or key exchange.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_BAD_SIGNATURE: Peer's certificate has an invalid signature.
ssl.sh: #2439: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21582 at Tue May  2 15:38:57 UTC 2017
kill -USR1 21582
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21582 killed at Tue May  2 15:38:57 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:38:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:38:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21639 >/dev/null 2>/dev/null
selfserv_9590 with PID 21639 found at Tue May  2 15:38:57 UTC 2017
selfserv_9590 with PID 21639 started at Tue May  2 15:38:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:tls1.0 -w nss -n ExtendedSSLUser-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA (ECC),O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2440: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21639 at Tue May  2 15:38:57 UTC 2017
kill -USR1 21639
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21639 killed at Tue May  2 15:38:57 UTC 2017
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (non-FIPS only)
ssl.sh: skipping  SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (non-FIPS only)
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:38:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:38:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21700 >/dev/null 2>/dev/null
selfserv_9590 with PID 21700 found at Tue May  2 15:38:58 UTC 2017
selfserv_9590 with PID 21700 started at Tue May  2 15:38:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12227:
SSL peer was unable to negotiate an acceptable set of security parameters.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SEC_ERROR_NO_MODULE: security library: no security module can perform the requested operation.
ssl.sh: #2441: SSL3 Require client auth on 2nd hs (EC) (bad password) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21700 at Tue May  2 15:39:21 UTC 2017
kill -USR1 21700
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21700 killed at Tue May  2 15:39:21 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:39:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21757 >/dev/null 2>/dev/null
selfserv_9590 with PID 21757 found at Tue May  2 15:39:21 UTC 2017
selfserv_9590 with PID 21757 started at Tue May  2 15:39:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../ext_client   \
        -V ssl3:ssl3 -n ExtendedSSLUser-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Chain2 Server Test CA,O=BOGUS NSS,L=Santa Clara,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #2442: SSL3 Require client auth on 2nd hs (EC) (client auth) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21757 at Tue May  2 15:39:21 UTC 2017
kill -USR1 21757
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21757 killed at Tue May  2 15:39:21 UTC 2017
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: skipping  SSL3 Server hello response without SNI for Extended Test
ssl.sh: skipping  SSL3 Server hello response with SNI: SSL don't have SH extensions for Extended Test
ssl.sh: skipping  TLS Server hello response without SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name on 2d HS for Extended Test
ssl.sh: skipping  TLS Server hello response with SNI: Change name to invalid 2d HS for Extended Test
ssl.sh: skipping  TLS Server response with alert for Extended Test
ssl.sh: SSL Cert Status (OCSP Stapling) Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  OCSP stapling, signed response, good status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, revoked status for Extended Test
ssl.sh: skipping  OCSP stapling, signed response, unknown status for Extended Test
ssl.sh: skipping  OCSP stapling, unsigned failure response for Extended Test
ssl.sh: skipping  OCSP stapling, good status, bad signature for Extended Test
ssl.sh: skipping  OCSP stapling, invalid cert status data for Extended Test
ssl.sh: skipping  Valid cert, Server doesn't staple for Extended Test
ssl.sh: skipping  Stress OCSP stapling, server uses random status for Extended Test
ssl.sh: SSL Stress Test Extended Test - server normal/client fips  - with ECC ===============================
ssl.sh: skipping  Form is subject to the terms of the Mozilla Public (non-FIPS only)
ssl.sh: skipping  If a copy of the MPL was not distributed with this (non-FIPS only)
ssl.sh: skipping  obtain one at http://mozilla.org/MPL/2.0/. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  the stress tests for SSL/TLS. (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  client                         Test Case name (non-FIPS only)
ssl.sh: skipping  params (non-FIPS only)
ssl.sh: skipping  ------                         --------------- (non-FIPS only)
ssl.sh: skipping  Stress SSL3 RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression) (non-FIPS only)
ssl.sh: skipping  Stress TLS  RC4 128 with MD5 (session ticket, compression, false start) (non-FIPS only)
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21891 >/dev/null 2>/dev/null
selfserv_9590 with PID 21891 found at Tue May  2 15:39:21 UTC 2017
selfserv_9590 with PID 21891 started at Tue May  2 15:39:21 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -c 100 -C c -V ssl3:ssl3 -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:21 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:39:23 UTC 2017
ssl.sh: #2443: Stress SSL3 RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 21891 at Tue May  2 15:39:23 UTC 2017
kill -USR1 21891
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21891 killed at Tue May  2 15:39:23 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21961 >/dev/null 2>/dev/null
selfserv_9590 with PID 21961 found at Tue May  2 15:39:23 UTC 2017
selfserv_9590 with PID 21961 started at Tue May  2 15:39:23 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -c 100 -C c -N -n ExtendedSSLUser \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:23 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:39:24 UTC 2017
ssl.sh: #2444: Stress TLS RC4 128 with MD5 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 21961 at Tue May  2 15:39:24 UTC 2017
kill -USR1 21961
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21961 killed at Tue May  2 15:39:24 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22031 >/dev/null 2>/dev/null
selfserv_9590 with PID 22031 found at Tue May  2 15:39:24 UTC 2017
selfserv_9590 with PID 22031 started at Tue May  2 15:39:24 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:39:24 UTC 2017
ssl.sh: #2445: Stress TLS RC4 128 with MD5 (session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22031 at Tue May  2 15:39:24 UTC 2017
kill -USR1 22031
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22031 killed at Tue May  2 15:39:24 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22102 >/dev/null 2>/dev/null
selfserv_9590 with PID 22102 found at Tue May  2 15:39:24 UTC 2017
selfserv_9590 with PID 22102 started at Tue May  2 15:39:24 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:24 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:39:25 UTC 2017
ssl.sh: #2446: Stress TLS RC4 128 with MD5 (compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22102 at Tue May  2 15:39:25 UTC 2017
kill -USR1 22102
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22102 killed at Tue May  2 15:39:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (compression, client auth, false start) ----
selfserv_9590 starting at Tue May  2 15:39:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22173 >/dev/null 2>/dev/null
selfserv_9590 with PID 22173 found at Tue May  2 15:39:25 UTC 2017
selfserv_9590 with PID 22173 started at Tue May  2 15:39:25 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:39:25 UTC 2017
ssl.sh: #2447: Stress TLS RC4 128 with MD5 (compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22173 at Tue May  2 15:39:25 UTC 2017
kill -USR1 22173
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22173 killed at Tue May  2 15:39:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22244 >/dev/null 2>/dev/null
selfserv_9590 with PID 22244 found at Tue May  2 15:39:25 UTC 2017
selfserv_9590 with PID 22244 started at Tue May  2 15:39:25 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:39:25 UTC 2017
ssl.sh: #2448: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22244 at Tue May  2 15:39:25 UTC 2017
kill -USR1 22244
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22244 killed at Tue May  2 15:39:25 UTC 2017
ssl.sh: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) ----
selfserv_9590 starting at Tue May  2 15:39:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -u -z -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22315 >/dev/null 2>/dev/null
selfserv_9590 with PID 22315 found at Tue May  2 15:39:25 UTC 2017
selfserv_9590 with PID 22315 started at Tue May  2 15:39:25 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C c -n ExtendedSSLUser -u -z -g \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:25 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:39:26 UTC 2017
ssl.sh: #2449: Stress TLS RC4 128 with MD5 (session ticket, compression, client auth, false start) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22315 at Tue May  2 15:39:26 UTC 2017
kill -USR1 22315
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22315 killed at Tue May  2 15:39:26 UTC 2017
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, default virt host) for Extended Test
ssl.sh: skipping  Stress TLS RC4 128 with MD5 (session ticket, SNI, client auth, change virt host) for Extended Test
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 GCM (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-RSA    AES 128 CBC with SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 CBC with SHA256 (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-RSA   AES 128 GCM (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDH-ECDSA  AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  Stress TLS  ECDHE-ECDSA AES 128 CBC with SHA (session ticket) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C009 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22422 >/dev/null 2>/dev/null
selfserv_9590 with PID 22422 found at Tue May  2 15:39:26 UTC 2017
selfserv_9590 with PID 22422 started at Tue May  2 15:39:26 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C009 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:26 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:39:26 UTC 2017
ssl.sh: #2450: Stress TLS ECDHE-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22422 at Tue May  2 15:39:27 UTC 2017
kill -USR1 22422
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22422 killed at Tue May  2 15:39:27 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) ----
selfserv_9590 starting at Tue May  2 15:39:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22492 >/dev/null 2>/dev/null
selfserv_9590 with PID 22492 found at Tue May  2 15:39:27 UTC 2017
selfserv_9590 with PID 22492 started at Tue May  2 15:39:27 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:39:27 UTC 2017
ssl.sh: #2451: Stress TLS ECDHE-RSA AES 128 CBC with SHA (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22492 at Tue May  2 15:39:27 UTC 2017
kill -USR1 22492
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22492 killed at Tue May  2 15:39:27 UTC 2017
ssl.sh: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C004 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22563 >/dev/null 2>/dev/null
selfserv_9590 with PID 22563 found at Tue May  2 15:39:27 UTC 2017
selfserv_9590 with PID 22563 started at Tue May  2 15:39:27 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C004 -N -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:27 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:39:28 UTC 2017
ssl.sh: #2452: Stress TLS ECDH-ECDSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22563 at Tue May  2 15:39:28 UTC 2017
kill -USR1 22563
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22563 killed at Tue May  2 15:39:28 UTC 2017
ssl.sh: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C00E -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22633 >/dev/null 2>/dev/null
selfserv_9590 with PID 22633 found at Tue May  2 15:39:28 UTC 2017
selfserv_9590 with PID 22633 started at Tue May  2 15:39:28 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 10 -C :C00E -N -n ExtendedSSLUser-ecmixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 10 server certificates tested.
strsclnt completed at Tue May  2 15:39:28 UTC 2017
ssl.sh: #2453: Stress TLS ECDH-RSA AES 128 CBC with SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22633 at Tue May  2 15:39:28 UTC 2017
kill -USR1 22633
selfserv: 0 cache hits; 10 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22633 killed at Tue May  2 15:39:28 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) ----
selfserv_9590 starting at Tue May  2 15:39:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22703 >/dev/null 2>/dev/null
selfserv_9590 with PID 22703 found at Tue May  2 15:39:28 UTC 2017
selfserv_9590 with PID 22703 started at Tue May  2 15:39:28 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:28 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:39:28 UTC 2017
ssl.sh: #2454: Stress TLS ECDHE-RSA AES 128 CBC with SHA(client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22703 at Tue May  2 15:39:28 UTC 2017
kill -USR1 22703
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22703 killed at Tue May  2 15:39:28 UTC 2017
ssl.sh: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :C013 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22774 >/dev/null 2>/dev/null
selfserv_9590 with PID 22774 found at Tue May  2 15:39:29 UTC 2017
selfserv_9590 with PID 22774 started at Tue May  2 15:39:29 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :C013 -n ExtendedSSLUser-ec -u \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes
strsclnt completed at Tue May  2 15:39:29 UTC 2017
ssl.sh: #2455: Stress TLS ECDHE-RSA AES 128 CBC with SHA(session ticket, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22774 at Tue May  2 15:39:29 UTC 2017
kill -USR1 22774
selfserv: 99 cache hits; 1 cache misses, 0 cache not reusable
          99 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22774 killed at Tue May  2 15:39:29 UTC 2017
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  ############################ (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_3DES_EDE_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:0038_-u Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (session ticket) (non-FIPS only)
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA (no reuse) (non-FIPS only)
ssl.sh: skipping  -V_ssl3:tls1.2_-c_1000_-C_:006A    Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (non-FIPS only)
ssl.sh: skipping  reuse test, once the session cache with DHE_DSS is working (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_DSS_WITH_AES_256_CBC_SHA256 (no reuse (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_CBC_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_128_GCM_SHA256 (no reuse) (non-FIPS only)
ssl.sh: skipping  Stress TLS DHE_RSA_WITH_AES_256_GCM_SHA384 (no reuse) (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: skipping  versions here... (non-FIPS only)
ssl.sh: skipping   (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0032 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22883 >/dev/null 2>/dev/null
selfserv_9590 with PID 22883 found at Tue May  2 15:39:29 UTC 2017
selfserv_9590 with PID 22883 started at Tue May  2 15:39:29 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 100 -C :0032 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:29 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 100 server certificates tested.
strsclnt completed at Tue May  2 15:39:33 UTC 2017
ssl.sh: #2456: Stress TLS DHE_DSS_WITH_AES_128_CBC_SHA (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22883 at Tue May  2 15:39:33 UTC 2017
kill -USR1 22883
selfserv: 0 cache hits; 100 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22883 killed at Tue May  2 15:39:33 UTC 2017
ssl.sh: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) ----
selfserv_9590 starting at Tue May  2 15:39:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :0067 -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22953 >/dev/null 2>/dev/null
selfserv_9590 with PID 22953 found at Tue May  2 15:39:33 UTC 2017
selfserv_9590 with PID 22953 started at Tue May  2 15:39:33 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :0067 -n ExtendedSSLUser-dsamixed \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:33 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt completed at Tue May  2 15:39:33 UTC 2017
ssl.sh: #2457: Stress TLS DHE_RSA_WITH_AES_128_CBC_SHA256 (client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 22953 at Tue May  2 15:39:34 UTC 2017
kill -USR1 22953
selfserv: 999 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22953 killed at Tue May  2 15:39:34 UTC 2017
ssl.sh: skipping  session ticket test, once session tickets with DHE_DSS are working (non-FIPS only)
ssl.sh: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:39:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A2 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:39:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23036 >/dev/null 2>/dev/null
selfserv_9590 with PID 23036 found at Tue May  2 15:39:34 UTC 2017
selfserv_9590 with PID 23036 started at Tue May  2 15:39:34 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A2 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:39:34 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:40:08 UTC 2017
ssl.sh: #2458: Stress TLS DHE_DSS_WITH_AES_128_GCM_SHA256 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 23036 at Tue May  2 15:40:08 UTC 2017
kill -USR1 23036
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 23036 killed at Tue May  2 15:40:08 UTC 2017
ssl.sh: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) ----
selfserv_9590 starting at Tue May  2 15:40:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../ext_server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -c :00A3 -u -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:40:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../ext_client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23107 >/dev/null 2>/dev/null
selfserv_9590 with PID 23107 found at Tue May  2 15:40:08 UTC 2017
selfserv_9590 with PID 23107 started at Tue May  2 15:40:08 UTC 2017
strsclnt -q -p 9590 -d ../ext_client  -w nss -V ssl3:tls1.2 -c 1000 -C :00A3 -N -n ExtendedSSLUser-dsa \
         -V ssl3:tls1.2  localhost.localdomain
strsclnt started at Tue May  2 15:40:08 UTC 2017
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 8 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: -- SSL: Server Certificate Validated.
strsclnt: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes
strsclnt: NoReuse - 1000 server certificates tested.
strsclnt completed at Tue May  2 15:40:42 UTC 2017
ssl.sh: #2459: Stress TLS DHE_DSS_WITH_AES_256_GCM_SHA384 (no reuse, client auth) produced a returncode of 0, expected is 0.  - PASSED
trying to kill selfserv_9590 with PID 23107 at Tue May  2 15:40:42 UTC 2017
kill -USR1 23107
selfserv: 0 cache hits; 1000 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 23107 killed at Tue May  2 15:40:42 UTC 2017
ssl.sh: SSL - FIPS mode off for client ===============================
ssl.sh: Turning FIPS off for the  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -fips false -force
FIPS mode disabled.
ssl.sh: #2460:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/client -list
ssl.sh: #2461:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2462:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
ssl.sh: Turning FIPS off for the extended  client
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -fips false -force
FIPS mode disabled.
ssl.sh: #2463:  (modutil -fips false) produced a returncode of 0, expected is 0 - PASSED
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/ext_client -list
ssl.sh: #2464:  (modutil -list) produced a returncode of 0, expected is 0 - PASSED
ssl.sh: #2465:  (grep "FIPS PKCS #11") produced a returncode of 1, expected is 1 - PASSED
TIMESTAMP ssl END: Tue May  2 15:40:43 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Tue May  2 15:40:43 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Tue May  2 15:40:43 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Tue May  2 15:40:43 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.17356 -t Test2 -f ../tests.pw
merge.sh: #2466: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2467: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2468: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2469: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2470: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2471: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:19:20 2017
            Not After : Mon May 02 15:19:20 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:51:50:5c:4c:1d:d4:b7:e5:48:2f:ad:54:17:c9:f8:
                    af:72:3b:00:c3:39:05:d1:c2:eb:78:5e:ef:33:84:f2:
                    cb:7b:fd:e9:f9:86:06:b7:c8:a7:c0:f8:fa:10:fd:6d:
                    5c:b8:7a:c3:f3:07:38:61:ce:47:63:be:2a:16:01:fc:
                    02:fc:f9:b6:2c:13:80:7d:f4:6a:e3:fc:94:80:f7:43:
                    67:bf:de:85:fc:0d:d5:11:d0:9c:c9:c7:84:b1:35:c8:
                    aa:8d:84:f2:7a:f2:49:e4:f4:11:81:39:e3:20:4d:9a:
                    fe:21:32:14:ff:91:79:4d:55:dc:86:cd:b7:37:00:e0:
                    b9:20:91:47:cc:5f:cd:2d:31:8b:67:af:39:56:87:fa:
                    53:d8:3c:fc:27:7a:16:48:d3:5e:07:6a:59:98:aa:45:
                    d6:8c:96:f6:d2:79:6f:a9:3a:c3:98:7a:fd:02:21:db:
                    c8:19:21:e2:19:f4:f7:ef:79:92:ab:31:56:52:57:42:
                    ce:ab:ab:a7:73:fa:f2:56:60:25:e1:19:a5:e3:a6:d8:
                    ee:85:6a:b4:18:f9:cc:ba:83:bc:1a:57:36:7f:90:0e:
                    2a:11:cc:b9:2c:9b:85:d6:8d:55:75:d2:ad:9a:4b:37:
                    3d:42:f4:b9:fc:c5:a1:19:64:fb:89:6a:b3:4f:33:ed
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:aa:2e:0d:34:ab:14:a1:c0:c1:50:77:91:4f:66:58:
        b4:14:c2:f2:67:1d:11:73:04:ba:28:17:43:44:2a:eb:
        dc:fc:be:cf:97:ad:98:a1:14:85:a7:d1:b2:ab:17:ac:
        3b:3d:d5:1c:a5:f9:39:56:e9:54:50:e2:99:6c:6c:c4:
        7c:17:61:07:11:8e:b4:ef:ad:f5:43:7b:6a:2e:fe:39:
        10:7d:70:95:8f:f5:77:c6:1c:bb:ca:69:a5:fa:41:6e:
        b7:dc:c3:f9:e0:e9:9b:01:ea:62:54:3d:6f:0b:73:80:
        01:51:22:0c:cc:4a:97:db:f2:ae:29:ba:8e:89:21:5e:
        fc:c4:ca:d8:e5:38:7d:64:19:05:cc:38:f1:8c:03:48:
        88:93:e3:a1:14:67:3c:c2:48:7b:8b:1e:a9:f3:c2:8e:
        a5:55:54:05:0b:ca:d3:52:a3:52:90:8d:81:30:da:39:
        ca:c2:bc:66:41:07:77:9c:d6:c1:55:2a:e0:46:95:67:
        3e:be:89:0f:2e:cc:1e:df:38:44:39:90:de:c3:d7:50:
        d4:a0:fd:78:8a:b4:6e:24:d5:f8:84:f8:d3:7f:8a:43:
        f7:fe:7c:1d:be:43:87:7b:ff:f6:00:d8:97:cc:eb:80:
        53:d2:a3:86:d0:2e:82:5c:ce:72:ab:83:0a:50:da:24
    Fingerprint (SHA-256):
        0A:70:5F:04:DC:08:18:CA:18:23:C3:B5:FA:C1:34:B1:19:44:F7:97:8B:46:E0:6D:15:6E:FF:77:6A:B1:90:0A
    Fingerprint (SHA1):
        8D:AF:D0:EA:45:94:71:44:C3:F2:0C:70:9F:7E:A7:54:D6:F4:97:27
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2472: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:19:21 2017
            Not After : Mon May 02 15:19:21 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:13:14:92:16:43:1a:61:ea:f1:47:ee:8e:a4:73:1f:
                    d3:63:44:45:49:e5:4d:75:cf:d2:f2:26:5c:d9:2a:84:
                    d8:f0:ae:e9:19:7b:2f:a1:a7:e5:ed:3c:97:75:54:8c:
                    50:93:4c:6e:76:ec:7a:b0:f6:db:a0:b1:72:8a:e0:07:
                    c4:18:4d:a3:33:4d:3a:e1:82:29:81:5f:32:01:1d:76:
                    89:61:d2:cc:49:83:b1:58:05:fe:f3:77:b6:18:b0:e0:
                    24:d9:23:2e:e7:e6:28:6c:20:66:a5:d9:04:37:b9:70:
                    42:53:2c:57:5b:e4:cf:a4:25:e8:72:b8:57:d6:8e:0c:
                    d9:74:ca:60:f0:c6:82:e0:15:cf:f8:31:f8:62:98:bb:
                    4f:00:85:66:2a:ff:e5:c6:79:1f:73:bb:df:30:8f:db:
                    8f:cd:81:21:23:4c:49:62:6d:01:30:ac:61:62:9f:01:
                    53:3a:d6:e1:c5:5e:c2:6f:5b:64:0a:d1:a9:18:83:93:
                    e1:51:9c:ab:f0:00:02:b0:12:a9:a7:a7:a1:6b:40:7c:
                    09:6b:97:58:f8:60:71:52:62:f3:cc:f4:e4:f9:70:6e:
                    c8:6e:d2:e2:55:63:25:17:c0:0d:de:bd:7b:45:dd:24:
                    25:e5:4b:2e:e4:55:7f:94:a9:b7:7a:2c:b0:ee:31:55
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:1b:20:1e:24:c1:91:b7:12:a9:30:7f:4c:05:69:a3:
        b4:74:55:c8:f1:2b:30:82:3e:29:2b:04:e6:c1:9c:5e:
        2c:b5:5f:ef:43:2d:c4:9c:83:8c:c7:dd:3e:c6:11:bf:
        ab:64:e6:fc:91:89:e5:98:07:2e:82:e8:3f:bb:ec:31:
        50:8d:b4:67:ee:21:7d:ff:37:72:25:69:76:a5:32:f3:
        98:9e:96:d2:2b:04:c8:0e:ae:22:1c:38:0c:ee:79:0b:
        79:a3:af:52:1b:e3:21:54:f6:36:13:aa:3f:0c:b3:56:
        33:90:4a:3b:61:a5:42:1f:59:6f:5a:ec:39:7c:e6:70:
        d1:5b:e1:b9:db:95:45:63:eb:f7:b1:58:54:60:f9:be:
        7f:04:a2:0b:76:f6:9a:3b:fd:89:a6:7d:09:6c:79:4a:
        0e:b6:bf:aa:8f:6a:b6:75:72:ce:56:19:1f:70:73:67:
        b3:26:89:58:9d:8a:00:b1:8c:f3:2f:a4:bc:55:6c:28:
        a1:7b:5c:e0:b2:28:53:e7:44:96:25:c6:fe:2e:9d:57:
        42:df:1f:d4:f2:a4:e7:13:4b:a2:1f:b9:19:a5:95:3b:
        b6:b8:95:27:a0:ee:f5:3e:c2:5e:3c:35:e5:cc:2c:a0:
        6f:0d:62:a4:1d:97:03:2e:2d:3e:ab:86:e4:66:89:c9
    Fingerprint (SHA-256):
        E8:01:68:5D:5F:43:06:A7:4B:DA:26:96:24:FF:D6:60:63:60:76:E6:58:96:FD:FE:41:0B:49:2D:AD:4C:11:A0
    Fingerprint (SHA1):
        D0:97:7D:5B:2C:F1:97:A6:0C:C6:C4:FB:3F:C3:5C:9A:76:1A:9B:52
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #2473: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #2474: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice-ec                                                     u,u,u
Dave                                                         u,u,u
localhost.localdomain-dsamixed                               ,,   
serverCA-dsa                                                 C,C,C
chain-2-clientCA-ec                                          ,,   
Alice #1                                                     ,,   
Dave-dsa                                                     ,,   
localhost.localdomain-ecmixed                                ,,   
localhost-sni.localdomain-dsamixed                           ,,   
Alice #99                                                    ,,   
Alice-dsamixed                                               u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
localhost.localdomain                                        u,u,u
localhost-sni.localdomain-ecmixed                            ,,   
clientCA                                                     T,C,C
Alice #3                                                     ,,   
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-ecmixed                                                u,u,u
Dave-ecmixed                                                 ,,   
localhost.localdomain-dsa                                    ,,   
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-ec                                 ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-ec                                           ,,   
serverCA-ec                                                  C,C,C
chain-1-clientCA-ec                                          ,,   
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
Alice #2                                                     ,,   
Alice #4                                                     ,,   
Alice                                                        u,u,u
Dave-ec                                                      ,,   
localhost-sni.localdomain-dsa                                ,,   
ExtendedSSLUser-dsa                                          ,,   
ExtendedSSLUser-ecmixed                                      ,,   
chain-2-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
Alice #100                                                   ,,   
Alice-dsa                                                    u,u,u
ExtendedSSLUser-dsamixed                                     ,,   
chain-2-clientCA-dsa                                         ,,   
bob@bogus.com                                                ,,   
Dave-dsamixed                                                ,,   
localhost.localdomain-ec                                     ,,   
clientCA-ec                                                  T,C,C
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v3.17356 -t Test2 -f ../tests.pw
merge.sh: #2475: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests.v1.17356 -t Test1 -f ../tests.pw
merge.sh: #2476: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #2477: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #2478: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #2479: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Tue May 02 15:19:36 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:18:37 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Tue May 02 15:19:32 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #2480: Verifying TestCA CRL  - PASSED
TEST_MODE=STANDARD
NSS_DEFAULT_DB_TYPE=dbm
TIMESTAMP merge END: Tue May  2 15:40:43 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Tue May  2 15:40:43 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Tue May  2 15:40:44 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Tue May  2 15:40:44 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #2481: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154045 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2482: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #2483: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2484: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #2485: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2486: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2487: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2488: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2489: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #2490: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2491: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2492: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2493: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2494: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #2495: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2496: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2497: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2498: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #2499: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #2500: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2501: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2502: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2503: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #2504: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2505: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2506: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2507: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #2508: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2509: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2510: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2511: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #2512: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2513: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2514: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2515: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #2516: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2517: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2518: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2519: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #2520: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2521: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2522: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2523: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #2524: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2525: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2526: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2527: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #2528: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2529: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2530: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2531: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #2532: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2533: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2534: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2535: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #2536: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2537: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2538: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2539: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #2540: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2541: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #2542: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2543: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502154055Z
nextupdate=20180502154055Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:40:55 2017
    Next Update: Wed May 02 15:40:55 2018
    CRL Extensions:
chains.sh: #2544: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502154056Z
addcert 2 20170502154056Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:40:56 2017
    Next Update: Wed May 02 15:40:55 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:40:56 2017
    CRL Extensions:
chains.sh: #2545: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502154056Z
nextupdate=20180502154056Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:40:56 2017
    Next Update: Wed May 02 15:40:56 2018
    CRL Extensions:
chains.sh: #2546: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502154057Z
addcert 2 20170502154057Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:40:57 2017
    Next Update: Wed May 02 15:40:56 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:40:57 2017
    CRL Extensions:
chains.sh: #2547: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502154058Z
addcert 4 20170502154058Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:40:58 2017
    Next Update: Wed May 02 15:40:56 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:40:57 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Tue May 02 15:40:58 2017
    CRL Extensions:
chains.sh: #2548: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502154058Z
nextupdate=20180502154058Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:40:58 2017
    Next Update: Wed May 02 15:40:58 2018
    CRL Extensions:
chains.sh: #2549: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502154059Z
addcert 2 20170502154059Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:40:59 2017
    Next Update: Wed May 02 15:40:58 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:40:59 2017
    CRL Extensions:
chains.sh: #2550: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502154100Z
addcert 3 20170502154100Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:41:00 2017
    Next Update: Wed May 02 15:40:58 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:40:59 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:41:00 2017
    CRL Extensions:
chains.sh: #2551: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502154101Z
nextupdate=20180502154101Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:41:01 2017
    Next Update: Wed May 02 15:41:01 2018
    CRL Extensions:
chains.sh: #2552: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502154102Z
addcert 2 20170502154102Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:41:02 2017
    Next Update: Wed May 02 15:41:01 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:41:02 2017
    CRL Extensions:
chains.sh: #2553: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502154103Z
addcert 3 20170502154103Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:41:03 2017
    Next Update: Wed May 02 15:41:01 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:41:02 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:41:03 2017
    CRL Extensions:
chains.sh: #2554: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #2555: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #2556: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2557: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2558: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2559: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2560: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #2561: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #2562: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #2563: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #2564: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #2565: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #2566: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #2567: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #2568: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #2569: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #2570: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #2571: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #2572: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #2573: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #2574: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #2575: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #2576: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #2577: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #2578: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Tue May  2 15:41:04 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 15:41:04 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 24801 >/dev/null 2>/dev/null
httpserv with PID 24801 found at Tue May  2 15:41:04 UTC 2017
httpserv with PID 24801 started at Tue May  2 15:41:04 UTC 2017
tstclnt -h localhost.localdomain -p 9600 -q -t 20
chains.sh: #2579: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154045 (0x1dee433d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:40:44 2017
            Not After : Mon May 02 15:40:44 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:27:83:b0:8f:10:6a:2b:8d:f3:54:de:bb:d8:2d:63:
                    13:c6:24:4c:08:90:53:58:51:a4:38:8a:f2:f3:92:1c:
                    ef:27:b6:5e:7b:b0:cf:dc:9c:b8:c6:5a:ef:60:e2:23:
                    a2:78:91:43:17:dd:bf:be:cf:e7:ec:07:95:ff:b0:80:
                    69:dd:19:c2:4c:e9:8b:85:c4:1c:fe:ab:df:e1:94:dc:
                    51:c3:ba:86:1b:01:c4:64:5a:d6:94:57:64:ff:3e:b8:
                    65:9a:1c:db:e5:36:0e:19:55:15:b1:df:58:51:0d:9e:
                    d8:f3:09:e5:29:90:09:2b:01:7c:e2:ee:94:07:fb:fc:
                    3d:7b:ed:7c:18:fd:f4:0e:7a:d0:2f:44:15:11:6a:45:
                    cf:d3:d1:46:71:f9:ed:07:4a:2f:d3:69:bf:8e:95:e9:
                    01:3c:8f:0f:cb:bc:06:64:03:48:2f:79:d6:06:f8:d7:
                    9a:21:d7:bf:44:f1:e5:4e:2f:4f:20:57:cb:55:08:d1:
                    65:95:2a:d6:f0:a5:8f:75:c0:06:40:91:9f:b6:0f:61:
                    f6:42:a0:76:8b:77:4a:5f:c6:b2:5c:24:13:94:93:5a:
                    32:9e:9d:ee:15:c1:db:ed:7c:e9:be:d7:e8:c8:f5:9b:
                    12:56:74:b5:97:a6:2a:5d:03:85:a5:74:f4:28:4c:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:19:b4:6b:da:d6:5f:1f:e9:dd:20:22:3d:78:ac:8d:
        df:6a:4d:43:b4:57:33:64:46:1d:c7:e9:36:b1:49:fe:
        17:e6:1f:48:8c:f1:49:e2:9a:5e:b9:f2:06:4d:e4:92:
        b4:59:3f:94:c4:98:e6:2b:fe:05:1a:cc:b5:a2:c2:7f:
        d9:70:1c:e3:cd:36:a0:2d:2d:f4:b5:40:d5:6f:ce:24:
        e9:56:db:a7:c7:06:65:23:74:89:54:66:f4:6e:2a:b9:
        f3:79:a6:b9:b8:c9:2b:0f:61:33:16:40:e5:52:09:19:
        68:55:0e:4a:75:8f:99:d3:05:76:17:e8:40:54:ae:83:
        0b:a4:26:e7:09:6e:d8:20:11:51:70:77:1f:a9:99:0d:
        3b:3c:ad:05:82:74:d6:85:4f:4b:17:2a:5d:aa:78:c4:
        fd:a3:a7:54:36:7e:e7:c2:f8:94:90:7a:a6:7d:38:90:
        94:23:5e:ff:67:35:04:ed:c4:d7:0f:7e:26:c1:af:f2:
        d4:64:06:f8:9f:e4:15:b9:d7:8b:c3:83:5e:53:0b:d1:
        15:5b:b9:6e:b2:eb:84:63:dc:be:75:54:c2:13:06:a4:
        4a:1c:c0:1c:ea:f5:11:b6:de:4e:61:a5:94:3b:10:8a:
        1a:8a:b8:5a:9e:29:67:82:62:2c:ac:9b:3c:98:15:df
    Fingerprint (SHA-256):
        D4:BB:50:89:77:14:54:CE:63:90:A0:20:91:35:E8:59:7E:59:BD:38:50:1A:75:FB:D5:FD:46:E0:AE:6E:00:83
    Fingerprint (SHA1):
        61:79:06:98:00:21:CA:CB:20:87:30:43:E4:BB:2F:3E:A6:6F:92:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2580: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2581: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2582: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 24801 at Tue May  2 15:41:04 UTC 2017
kill -USR1 24801
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 24801 killed at Tue May  2 15:41:04 UTC 2017
httpserv starting at Tue May  2 15:41:04 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 15:41:04 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 24970 >/dev/null 2>/dev/null
httpserv with PID 24970 found at Tue May  2 15:41:04 UTC 2017
httpserv with PID 24970 started at Tue May  2 15:41:04 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2583: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2584: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2585: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9600 -q -t 20
chains.sh: #2586: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154045 (0x1dee433d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:40:44 2017
            Not After : Mon May 02 15:40:44 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:27:83:b0:8f:10:6a:2b:8d:f3:54:de:bb:d8:2d:63:
                    13:c6:24:4c:08:90:53:58:51:a4:38:8a:f2:f3:92:1c:
                    ef:27:b6:5e:7b:b0:cf:dc:9c:b8:c6:5a:ef:60:e2:23:
                    a2:78:91:43:17:dd:bf:be:cf:e7:ec:07:95:ff:b0:80:
                    69:dd:19:c2:4c:e9:8b:85:c4:1c:fe:ab:df:e1:94:dc:
                    51:c3:ba:86:1b:01:c4:64:5a:d6:94:57:64:ff:3e:b8:
                    65:9a:1c:db:e5:36:0e:19:55:15:b1:df:58:51:0d:9e:
                    d8:f3:09:e5:29:90:09:2b:01:7c:e2:ee:94:07:fb:fc:
                    3d:7b:ed:7c:18:fd:f4:0e:7a:d0:2f:44:15:11:6a:45:
                    cf:d3:d1:46:71:f9:ed:07:4a:2f:d3:69:bf:8e:95:e9:
                    01:3c:8f:0f:cb:bc:06:64:03:48:2f:79:d6:06:f8:d7:
                    9a:21:d7:bf:44:f1:e5:4e:2f:4f:20:57:cb:55:08:d1:
                    65:95:2a:d6:f0:a5:8f:75:c0:06:40:91:9f:b6:0f:61:
                    f6:42:a0:76:8b:77:4a:5f:c6:b2:5c:24:13:94:93:5a:
                    32:9e:9d:ee:15:c1:db:ed:7c:e9:be:d7:e8:c8:f5:9b:
                    12:56:74:b5:97:a6:2a:5d:03:85:a5:74:f4:28:4c:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        84:19:b4:6b:da:d6:5f:1f:e9:dd:20:22:3d:78:ac:8d:
        df:6a:4d:43:b4:57:33:64:46:1d:c7:e9:36:b1:49:fe:
        17:e6:1f:48:8c:f1:49:e2:9a:5e:b9:f2:06:4d:e4:92:
        b4:59:3f:94:c4:98:e6:2b:fe:05:1a:cc:b5:a2:c2:7f:
        d9:70:1c:e3:cd:36:a0:2d:2d:f4:b5:40:d5:6f:ce:24:
        e9:56:db:a7:c7:06:65:23:74:89:54:66:f4:6e:2a:b9:
        f3:79:a6:b9:b8:c9:2b:0f:61:33:16:40:e5:52:09:19:
        68:55:0e:4a:75:8f:99:d3:05:76:17:e8:40:54:ae:83:
        0b:a4:26:e7:09:6e:d8:20:11:51:70:77:1f:a9:99:0d:
        3b:3c:ad:05:82:74:d6:85:4f:4b:17:2a:5d:aa:78:c4:
        fd:a3:a7:54:36:7e:e7:c2:f8:94:90:7a:a6:7d:38:90:
        94:23:5e:ff:67:35:04:ed:c4:d7:0f:7e:26:c1:af:f2:
        d4:64:06:f8:9f:e4:15:b9:d7:8b:c3:83:5e:53:0b:d1:
        15:5b:b9:6e:b2:eb:84:63:dc:be:75:54:c2:13:06:a4:
        4a:1c:c0:1c:ea:f5:11:b6:de:4e:61:a5:94:3b:10:8a:
        1a:8a:b8:5a:9e:29:67:82:62:2c:ac:9b:3c:98:15:df
    Fingerprint (SHA-256):
        D4:BB:50:89:77:14:54:CE:63:90:A0:20:91:35:E8:59:7E:59:BD:38:50:1A:75:FB:D5:FD:46:E0:AE:6E:00:83
    Fingerprint (SHA1):
        61:79:06:98:00:21:CA:CB:20:87:30:43:E4:BB:2F:3E:A6:6F:92:0A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2587: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2588: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #2589: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 24970 at Tue May  2 15:41:04 UTC 2017
kill -USR1 24970
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 24970 killed at Tue May  2 15:41:04 UTC 2017
httpserv starting at Tue May  2 15:41:05 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 15:41:05 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 25217 >/dev/null 2>/dev/null
httpserv with PID 25217 found at Tue May  2 15:41:05 UTC 2017
httpserv with PID 25217 started at Tue May  2 15:41:05 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #2590: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #2591: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154046 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2592: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #2593: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #2594: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154047 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2595: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #2596: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #2597: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2598: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154048 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2599: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2600: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154049 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2601: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2602: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #2603: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2604: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2605: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502154050   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2606: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2607: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2608: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #2609: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #2610: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154047 (0x1dee433f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:41:05 2017
            Not After : Mon May 02 15:41:05 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:95:96:0d:66:34:ed:3d:4f:ee:fc:c8:6e:5f:93:e5:
                    5b:29:61:c6:4c:ad:a2:e2:c7:71:dd:d5:d2:0b:71:8d:
                    02:33:5f:7b:70:b3:5a:67:37:ce:45:fc:e9:6a:27:33:
                    71:8c:e5:85:62:70:48:1b:66:89:cc:11:16:3c:29:41:
                    41:13:4e:e4:00:ad:54:6f:5e:54:59:ec:f7:0a:7f:f2:
                    1f:8e:39:6e:52:39:fe:46:57:f5:0a:ff:cf:1d:b3:8a:
                    93:29:c5:4b:ad:96:e1:a1:9e:01:44:ee:ff:19:72:36:
                    7a:1b:4a:f1:21:cc:27:06:a1:31:fd:3f:d0:25:14:37:
                    3a:e5:41:e5:f5:53:ab:ed:65:2c:26:37:d2:d4:7b:59:
                    15:c9:be:e2:e0:5e:99:6d:59:4d:73:ca:53:99:27:ea:
                    a3:ce:23:d9:56:8a:a9:d3:c9:59:fd:eb:8c:34:86:5e:
                    4c:e6:3a:1c:2f:61:c3:25:57:01:e0:16:89:a3:0e:76:
                    d6:d5:63:54:cf:bb:8d:19:b1:85:16:b5:17:f9:a4:98:
                    bd:b1:02:69:11:fb:b9:3d:c9:79:66:a2:48:ea:bc:7b:
                    70:27:95:fa:3c:bc:4a:42:9f:7a:fb:73:9c:c8:f5:5e:
                    38:18:f0:76:37:d5:c4:42:be:62:ce:24:27:32:a4:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:32:14:9b:f5:bb:11:88:cd:5d:6c:59:64:1e:55:88:
        17:0f:f0:85:a7:8e:a8:e5:a3:82:ea:cb:49:54:97:b5:
        e6:b0:28:3d:4f:86:19:bc:0b:64:95:28:4f:05:03:58:
        3e:c4:e4:3b:e0:c0:02:20:03:9f:74:40:3d:cb:e5:fb:
        f2:49:39:e7:de:57:27:a4:4c:cd:fe:bc:a5:a5:de:9e:
        64:b2:90:5c:81:33:7a:44:11:15:04:95:5d:8a:8f:a1:
        dd:16:7c:b6:89:f1:c9:0b:a8:cf:0d:f2:59:16:a7:97:
        ba:34:93:da:72:49:63:52:df:0d:18:bc:9b:ff:dd:10:
        9c:24:bf:f9:be:0c:d6:cc:57:ff:0a:4c:17:19:b7:01:
        5c:de:a6:4f:dc:2c:c1:16:e5:d3:45:49:4b:6b:30:9f:
        18:32:0d:f5:ba:b3:6c:be:c2:ea:82:2a:20:03:dc:0a:
        11:49:75:bb:b9:3b:15:e0:25:9b:79:22:63:1c:e2:21:
        05:9d:f0:84:8e:ac:61:80:9e:5f:c7:88:73:0a:e3:5d:
        dc:be:21:93:4e:16:97:2c:b1:6e:ea:fe:77:4d:71:47:
        54:70:9a:39:4b:b1:d3:6c:a0:48:f5:b6:06:6a:07:a4:
        37:a2:3f:f4:ec:58:1b:84:53:5c:b6:e1:7d:fe:c1:4e
    Fingerprint (SHA-256):
        D1:B6:48:31:F3:17:13:07:2C:05:92:FC:08:8C:E3:10:CA:D4:18:60:95:81:D1:1E:84:13:AE:77:31:2F:8F:2F
    Fingerprint (SHA1):
        F1:66:4F:6F:C8:CE:3E:5A:4D:49:D5:2C:4A:AB:2F:39:89:BF:BF:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2611: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154046 (0x1dee433e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:41:05 2017
            Not After : Mon May 02 15:41:05 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:03:fb:e6:18:5a:49:45:7b:b4:6c:81:90:67:b5:fa:
                    52:b8:8b:7f:b8:6e:82:06:3f:12:da:66:eb:32:00:15:
                    bf:f5:f8:58:b7:35:44:e9:d5:0c:95:ca:eb:85:c9:b2:
                    8a:6e:52:59:31:61:a7:df:e4:71:60:d9:e6:28:c5:12:
                    7e:0a:a5:91:5f:d5:aa:6c:55:b2:d5:76:5b:5b:2b:55:
                    6f:f0:d9:26:e2:66:df:0d:85:d2:95:40:b2:a0:41:f4:
                    12:41:b5:40:b5:b4:95:80:d0:01:5c:e5:6d:c1:b6:c6:
                    99:bc:53:30:01:74:8b:52:16:30:a8:da:91:a4:de:2b:
                    01:23:b3:67:aa:22:41:7f:5e:d1:85:fe:f0:37:41:32:
                    cf:69:f6:cf:72:35:4d:9e:e9:5d:7c:62:49:f4:8d:62:
                    97:62:cb:3f:0f:b1:8c:ed:c5:48:13:e6:10:37:ef:2a:
                    60:4d:2f:64:ad:fc:46:5e:eb:17:3c:c2:5a:9d:de:d0:
                    63:8f:08:14:65:63:5c:27:aa:8f:3f:61:e7:ba:bd:52:
                    9a:51:7e:7b:66:3d:3c:3e:d9:e6:0f:08:ce:ea:f4:5d:
                    fb:88:a1:bb:01:67:6e:a6:59:bc:28:d9:ff:23:e4:7a:
                    e2:e7:f8:50:d9:da:14:e9:bb:3a:2c:0c:bf:40:b1:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e6:a8:06:d5:4f:23:7c:e1:62:e5:8b:2b:db:51:df:da:
        82:fd:fb:93:20:de:40:0d:13:f4:2f:5d:93:0c:98:c9:
        87:bb:25:3a:45:ad:26:7c:f1:f1:77:5e:53:ac:c4:8e:
        dd:7e:66:68:33:ff:40:fc:fd:01:36:4c:5c:78:73:60:
        d2:62:f5:9f:c4:47:03:f3:af:31:1a:b4:47:dc:5f:51:
        ee:68:37:3e:40:b1:86:ef:7e:e1:f5:11:a6:9b:93:76:
        99:22:14:c6:9d:de:92:7b:75:e9:af:7b:36:35:08:f1:
        ed:28:5a:79:e6:28:a4:90:ec:68:83:c7:27:99:1e:3a:
        c9:24:9e:43:bd:f6:75:1e:dd:f9:70:45:5d:4b:fc:5b:
        ce:32:2d:9d:20:b3:63:06:da:27:ec:52:ec:87:d0:dd:
        4f:dd:d1:eb:fd:63:f8:f1:ca:5c:41:53:c2:7b:8a:16:
        2f:91:b3:1a:ef:87:96:87:af:d9:ef:4b:e8:60:fa:a1:
        35:fa:f8:1e:fc:c1:9f:34:e6:42:7f:3b:91:3c:b8:73:
        22:5b:9e:a1:d8:8b:11:49:34:7b:8d:fb:68:a3:06:d9:
        06:45:c7:f1:43:88:9e:09:28:11:64:6c:0c:3d:88:3c:
        52:a6:89:b2:e8:8d:2b:d6:59:c8:26:9e:c2:0f:c1:a8
    Fingerprint (SHA-256):
        1E:B5:43:26:57:71:8D:77:EF:51:14:F3:E1:BD:8A:66:AB:53:3B:64:7A:20:B8:62:54:82:08:D6:6A:C9:7A:9F
    Fingerprint (SHA1):
        B0:D3:AF:0C:F1:59:EB:A9:CA:EE:F2:48:4F:F2:B4:1D:00:DF:6E:6B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2612: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2613: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #2614: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #2615: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154046 (0x1dee433e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:41:05 2017
            Not After : Mon May 02 15:41:05 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:03:fb:e6:18:5a:49:45:7b:b4:6c:81:90:67:b5:fa:
                    52:b8:8b:7f:b8:6e:82:06:3f:12:da:66:eb:32:00:15:
                    bf:f5:f8:58:b7:35:44:e9:d5:0c:95:ca:eb:85:c9:b2:
                    8a:6e:52:59:31:61:a7:df:e4:71:60:d9:e6:28:c5:12:
                    7e:0a:a5:91:5f:d5:aa:6c:55:b2:d5:76:5b:5b:2b:55:
                    6f:f0:d9:26:e2:66:df:0d:85:d2:95:40:b2:a0:41:f4:
                    12:41:b5:40:b5:b4:95:80:d0:01:5c:e5:6d:c1:b6:c6:
                    99:bc:53:30:01:74:8b:52:16:30:a8:da:91:a4:de:2b:
                    01:23:b3:67:aa:22:41:7f:5e:d1:85:fe:f0:37:41:32:
                    cf:69:f6:cf:72:35:4d:9e:e9:5d:7c:62:49:f4:8d:62:
                    97:62:cb:3f:0f:b1:8c:ed:c5:48:13:e6:10:37:ef:2a:
                    60:4d:2f:64:ad:fc:46:5e:eb:17:3c:c2:5a:9d:de:d0:
                    63:8f:08:14:65:63:5c:27:aa:8f:3f:61:e7:ba:bd:52:
                    9a:51:7e:7b:66:3d:3c:3e:d9:e6:0f:08:ce:ea:f4:5d:
                    fb:88:a1:bb:01:67:6e:a6:59:bc:28:d9:ff:23:e4:7a:
                    e2:e7:f8:50:d9:da:14:e9:bb:3a:2c:0c:bf:40:b1:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e6:a8:06:d5:4f:23:7c:e1:62:e5:8b:2b:db:51:df:da:
        82:fd:fb:93:20:de:40:0d:13:f4:2f:5d:93:0c:98:c9:
        87:bb:25:3a:45:ad:26:7c:f1:f1:77:5e:53:ac:c4:8e:
        dd:7e:66:68:33:ff:40:fc:fd:01:36:4c:5c:78:73:60:
        d2:62:f5:9f:c4:47:03:f3:af:31:1a:b4:47:dc:5f:51:
        ee:68:37:3e:40:b1:86:ef:7e:e1:f5:11:a6:9b:93:76:
        99:22:14:c6:9d:de:92:7b:75:e9:af:7b:36:35:08:f1:
        ed:28:5a:79:e6:28:a4:90:ec:68:83:c7:27:99:1e:3a:
        c9:24:9e:43:bd:f6:75:1e:dd:f9:70:45:5d:4b:fc:5b:
        ce:32:2d:9d:20:b3:63:06:da:27:ec:52:ec:87:d0:dd:
        4f:dd:d1:eb:fd:63:f8:f1:ca:5c:41:53:c2:7b:8a:16:
        2f:91:b3:1a:ef:87:96:87:af:d9:ef:4b:e8:60:fa:a1:
        35:fa:f8:1e:fc:c1:9f:34:e6:42:7f:3b:91:3c:b8:73:
        22:5b:9e:a1:d8:8b:11:49:34:7b:8d:fb:68:a3:06:d9:
        06:45:c7:f1:43:88:9e:09:28:11:64:6c:0c:3d:88:3c:
        52:a6:89:b2:e8:8d:2b:d6:59:c8:26:9e:c2:0f:c1:a8
    Fingerprint (SHA-256):
        1E:B5:43:26:57:71:8D:77:EF:51:14:F3:E1:BD:8A:66:AB:53:3B:64:7A:20:B8:62:54:82:08:D6:6A:C9:7A:9F
    Fingerprint (SHA1):
        B0:D3:AF:0C:F1:59:EB:A9:CA:EE:F2:48:4F:F2:B4:1D:00:DF:6E:6B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2616: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154047 (0x1dee433f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:41:05 2017
            Not After : Mon May 02 15:41:05 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:95:96:0d:66:34:ed:3d:4f:ee:fc:c8:6e:5f:93:e5:
                    5b:29:61:c6:4c:ad:a2:e2:c7:71:dd:d5:d2:0b:71:8d:
                    02:33:5f:7b:70:b3:5a:67:37:ce:45:fc:e9:6a:27:33:
                    71:8c:e5:85:62:70:48:1b:66:89:cc:11:16:3c:29:41:
                    41:13:4e:e4:00:ad:54:6f:5e:54:59:ec:f7:0a:7f:f2:
                    1f:8e:39:6e:52:39:fe:46:57:f5:0a:ff:cf:1d:b3:8a:
                    93:29:c5:4b:ad:96:e1:a1:9e:01:44:ee:ff:19:72:36:
                    7a:1b:4a:f1:21:cc:27:06:a1:31:fd:3f:d0:25:14:37:
                    3a:e5:41:e5:f5:53:ab:ed:65:2c:26:37:d2:d4:7b:59:
                    15:c9:be:e2:e0:5e:99:6d:59:4d:73:ca:53:99:27:ea:
                    a3:ce:23:d9:56:8a:a9:d3:c9:59:fd:eb:8c:34:86:5e:
                    4c:e6:3a:1c:2f:61:c3:25:57:01:e0:16:89:a3:0e:76:
                    d6:d5:63:54:cf:bb:8d:19:b1:85:16:b5:17:f9:a4:98:
                    bd:b1:02:69:11:fb:b9:3d:c9:79:66:a2:48:ea:bc:7b:
                    70:27:95:fa:3c:bc:4a:42:9f:7a:fb:73:9c:c8:f5:5e:
                    38:18:f0:76:37:d5:c4:42:be:62:ce:24:27:32:a4:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:32:14:9b:f5:bb:11:88:cd:5d:6c:59:64:1e:55:88:
        17:0f:f0:85:a7:8e:a8:e5:a3:82:ea:cb:49:54:97:b5:
        e6:b0:28:3d:4f:86:19:bc:0b:64:95:28:4f:05:03:58:
        3e:c4:e4:3b:e0:c0:02:20:03:9f:74:40:3d:cb:e5:fb:
        f2:49:39:e7:de:57:27:a4:4c:cd:fe:bc:a5:a5:de:9e:
        64:b2:90:5c:81:33:7a:44:11:15:04:95:5d:8a:8f:a1:
        dd:16:7c:b6:89:f1:c9:0b:a8:cf:0d:f2:59:16:a7:97:
        ba:34:93:da:72:49:63:52:df:0d:18:bc:9b:ff:dd:10:
        9c:24:bf:f9:be:0c:d6:cc:57:ff:0a:4c:17:19:b7:01:
        5c:de:a6:4f:dc:2c:c1:16:e5:d3:45:49:4b:6b:30:9f:
        18:32:0d:f5:ba:b3:6c:be:c2:ea:82:2a:20:03:dc:0a:
        11:49:75:bb:b9:3b:15:e0:25:9b:79:22:63:1c:e2:21:
        05:9d:f0:84:8e:ac:61:80:9e:5f:c7:88:73:0a:e3:5d:
        dc:be:21:93:4e:16:97:2c:b1:6e:ea:fe:77:4d:71:47:
        54:70:9a:39:4b:b1:d3:6c:a0:48:f5:b6:06:6a:07:a4:
        37:a2:3f:f4:ec:58:1b:84:53:5c:b6:e1:7d:fe:c1:4e
    Fingerprint (SHA-256):
        D1:B6:48:31:F3:17:13:07:2C:05:92:FC:08:8C:E3:10:CA:D4:18:60:95:81:D1:1E:84:13:AE:77:31:2F:8F:2F
    Fingerprint (SHA1):
        F1:66:4F:6F:C8:CE:3E:5A:4D:49:D5:2C:4A:AB:2F:39:89:BF:BF:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2617: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #2618: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #2619: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2620: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2621: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #2622: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154047 (0x1dee433f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:41:05 2017
            Not After : Mon May 02 15:41:05 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:95:96:0d:66:34:ed:3d:4f:ee:fc:c8:6e:5f:93:e5:
                    5b:29:61:c6:4c:ad:a2:e2:c7:71:dd:d5:d2:0b:71:8d:
                    02:33:5f:7b:70:b3:5a:67:37:ce:45:fc:e9:6a:27:33:
                    71:8c:e5:85:62:70:48:1b:66:89:cc:11:16:3c:29:41:
                    41:13:4e:e4:00:ad:54:6f:5e:54:59:ec:f7:0a:7f:f2:
                    1f:8e:39:6e:52:39:fe:46:57:f5:0a:ff:cf:1d:b3:8a:
                    93:29:c5:4b:ad:96:e1:a1:9e:01:44:ee:ff:19:72:36:
                    7a:1b:4a:f1:21:cc:27:06:a1:31:fd:3f:d0:25:14:37:
                    3a:e5:41:e5:f5:53:ab:ed:65:2c:26:37:d2:d4:7b:59:
                    15:c9:be:e2:e0:5e:99:6d:59:4d:73:ca:53:99:27:ea:
                    a3:ce:23:d9:56:8a:a9:d3:c9:59:fd:eb:8c:34:86:5e:
                    4c:e6:3a:1c:2f:61:c3:25:57:01:e0:16:89:a3:0e:76:
                    d6:d5:63:54:cf:bb:8d:19:b1:85:16:b5:17:f9:a4:98:
                    bd:b1:02:69:11:fb:b9:3d:c9:79:66:a2:48:ea:bc:7b:
                    70:27:95:fa:3c:bc:4a:42:9f:7a:fb:73:9c:c8:f5:5e:
                    38:18:f0:76:37:d5:c4:42:be:62:ce:24:27:32:a4:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:32:14:9b:f5:bb:11:88:cd:5d:6c:59:64:1e:55:88:
        17:0f:f0:85:a7:8e:a8:e5:a3:82:ea:cb:49:54:97:b5:
        e6:b0:28:3d:4f:86:19:bc:0b:64:95:28:4f:05:03:58:
        3e:c4:e4:3b:e0:c0:02:20:03:9f:74:40:3d:cb:e5:fb:
        f2:49:39:e7:de:57:27:a4:4c:cd:fe:bc:a5:a5:de:9e:
        64:b2:90:5c:81:33:7a:44:11:15:04:95:5d:8a:8f:a1:
        dd:16:7c:b6:89:f1:c9:0b:a8:cf:0d:f2:59:16:a7:97:
        ba:34:93:da:72:49:63:52:df:0d:18:bc:9b:ff:dd:10:
        9c:24:bf:f9:be:0c:d6:cc:57:ff:0a:4c:17:19:b7:01:
        5c:de:a6:4f:dc:2c:c1:16:e5:d3:45:49:4b:6b:30:9f:
        18:32:0d:f5:ba:b3:6c:be:c2:ea:82:2a:20:03:dc:0a:
        11:49:75:bb:b9:3b:15:e0:25:9b:79:22:63:1c:e2:21:
        05:9d:f0:84:8e:ac:61:80:9e:5f:c7:88:73:0a:e3:5d:
        dc:be:21:93:4e:16:97:2c:b1:6e:ea:fe:77:4d:71:47:
        54:70:9a:39:4b:b1:d3:6c:a0:48:f5:b6:06:6a:07:a4:
        37:a2:3f:f4:ec:58:1b:84:53:5c:b6:e1:7d:fe:c1:4e
    Fingerprint (SHA-256):
        D1:B6:48:31:F3:17:13:07:2C:05:92:FC:08:8C:E3:10:CA:D4:18:60:95:81:D1:1E:84:13:AE:77:31:2F:8F:2F
    Fingerprint (SHA1):
        F1:66:4F:6F:C8:CE:3E:5A:4D:49:D5:2C:4A:AB:2F:39:89:BF:BF:23
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2623: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154047 (0x1dee433f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:41:05 2017
            Not After : Mon May 02 15:41:05 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:95:96:0d:66:34:ed:3d:4f:ee:fc:c8:6e:5f:93:e5:
                    5b:29:61:c6:4c:ad:a2:e2:c7:71:dd:d5:d2:0b:71:8d:
                    02:33:5f:7b:70:b3:5a:67:37:ce:45:fc:e9:6a:27:33:
                    71:8c:e5:85:62:70:48:1b:66:89:cc:11:16:3c:29:41:
                    41:13:4e:e4:00:ad:54:6f:5e:54:59:ec:f7:0a:7f:f2:
                    1f:8e:39:6e:52:39:fe:46:57:f5:0a:ff:cf:1d:b3:8a:
                    93:29:c5:4b:ad:96:e1:a1:9e:01:44:ee:ff:19:72:36:
                    7a:1b:4a:f1:21:cc:27:06:a1:31:fd:3f:d0:25:14:37:
                    3a:e5:41:e5:f5:53:ab:ed:65:2c:26:37:d2:d4:7b:59:
                    15:c9:be:e2:e0:5e:99:6d:59:4d:73:ca:53:99:27:ea:
                    a3:ce:23:d9:56:8a:a9:d3:c9:59:fd:eb:8c:34:86:5e:
                    4c:e6:3a:1c:2f:61:c3:25:57:01:e0:16:89:a3:0e:76:
                    d6:d5:63:54:cf:bb:8d:19:b1:85:16:b5:17:f9:a4:98:
                    bd:b1:02:69:11:fb:b9:3d:c9:79:66:a2:48:ea:bc:7b:
                    70:27:95:fa:3c:bc:4a:42:9f:7a:fb:73:9c:c8:f5:5e:
                    38:18:f0:76:37:d5:c4:42:be:62:ce:24:27:32:a4:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:32:14:9b:f5:bb:11:88:cd:5d:6c:59:64:1e:55:88:
        17:0f:f0:85:a7:8e:a8:e5:a3:82:ea:cb:49:54:97:b5:
        e6:b0:28:3d:4f:86:19:bc:0b:64:95:28:4f:05:03:58:
        3e:c4:e4:3b:e0:c0:02:20:03:9f:74:40:3d:cb:e5:fb:
        f2:49:39:e7:de:57:27:a4:4c:cd:fe:bc:a5:a5:de:9e:
        64:b2:90:5c:81:33:7a:44:11:15:04:95:5d:8a:8f:a1:
        dd:16:7c:b6:89:f1:c9:0b:a8:cf:0d:f2:59:16:a7:97:
        ba:34:93:da:72:49:63:52:df:0d:18:bc:9b:ff:dd:10:
        9c:24:bf:f9:be:0c:d6:cc:57:ff:0a:4c:17:19:b7:01:
        5c:de:a6:4f:dc:2c:c1:16:e5:d3:45:49:4b:6b:30:9f:
        18:32:0d:f5:ba:b3:6c:be:c2:ea:82:2a:20:03:dc:0a:
        11:49:75:bb:b9:3b:15:e0:25:9b:79:22:63:1c:e2:21:
        05:9d:f0:84:8e:ac:61:80:9e:5f:c7:88:73:0a:e3:5d:
        dc:be:21:93:4e:16:97:2c:b1:6e:ea:fe:77:4d:71:47:
        54:70:9a:39:4b:b1:d3:6c:a0:48:f5:b6:06:6a:07:a4:
        37:a2:3f:f4:ec:58:1b:84:53:5c:b6:e1:7d:fe:c1:4e
    Fingerprint (SHA-256):
        D1:B6:48:31:F3:17:13:07:2C:05:92:FC:08:8C:E3:10:CA:D4:18:60:95:81:D1:1E:84:13:AE:77:31:2F:8F:2F
    Fingerprint (SHA1):
        F1:66:4F:6F:C8:CE:3E:5A:4D:49:D5:2C:4A:AB:2F:39:89:BF:BF:23
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2624: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #2625: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #2626: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #2627: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2628: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #2629: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154046 (0x1dee433e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:41:05 2017
            Not After : Mon May 02 15:41:05 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:03:fb:e6:18:5a:49:45:7b:b4:6c:81:90:67:b5:fa:
                    52:b8:8b:7f:b8:6e:82:06:3f:12:da:66:eb:32:00:15:
                    bf:f5:f8:58:b7:35:44:e9:d5:0c:95:ca:eb:85:c9:b2:
                    8a:6e:52:59:31:61:a7:df:e4:71:60:d9:e6:28:c5:12:
                    7e:0a:a5:91:5f:d5:aa:6c:55:b2:d5:76:5b:5b:2b:55:
                    6f:f0:d9:26:e2:66:df:0d:85:d2:95:40:b2:a0:41:f4:
                    12:41:b5:40:b5:b4:95:80:d0:01:5c:e5:6d:c1:b6:c6:
                    99:bc:53:30:01:74:8b:52:16:30:a8:da:91:a4:de:2b:
                    01:23:b3:67:aa:22:41:7f:5e:d1:85:fe:f0:37:41:32:
                    cf:69:f6:cf:72:35:4d:9e:e9:5d:7c:62:49:f4:8d:62:
                    97:62:cb:3f:0f:b1:8c:ed:c5:48:13:e6:10:37:ef:2a:
                    60:4d:2f:64:ad:fc:46:5e:eb:17:3c:c2:5a:9d:de:d0:
                    63:8f:08:14:65:63:5c:27:aa:8f:3f:61:e7:ba:bd:52:
                    9a:51:7e:7b:66:3d:3c:3e:d9:e6:0f:08:ce:ea:f4:5d:
                    fb:88:a1:bb:01:67:6e:a6:59:bc:28:d9:ff:23:e4:7a:
                    e2:e7:f8:50:d9:da:14:e9:bb:3a:2c:0c:bf:40:b1:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e6:a8:06:d5:4f:23:7c:e1:62:e5:8b:2b:db:51:df:da:
        82:fd:fb:93:20:de:40:0d:13:f4:2f:5d:93:0c:98:c9:
        87:bb:25:3a:45:ad:26:7c:f1:f1:77:5e:53:ac:c4:8e:
        dd:7e:66:68:33:ff:40:fc:fd:01:36:4c:5c:78:73:60:
        d2:62:f5:9f:c4:47:03:f3:af:31:1a:b4:47:dc:5f:51:
        ee:68:37:3e:40:b1:86:ef:7e:e1:f5:11:a6:9b:93:76:
        99:22:14:c6:9d:de:92:7b:75:e9:af:7b:36:35:08:f1:
        ed:28:5a:79:e6:28:a4:90:ec:68:83:c7:27:99:1e:3a:
        c9:24:9e:43:bd:f6:75:1e:dd:f9:70:45:5d:4b:fc:5b:
        ce:32:2d:9d:20:b3:63:06:da:27:ec:52:ec:87:d0:dd:
        4f:dd:d1:eb:fd:63:f8:f1:ca:5c:41:53:c2:7b:8a:16:
        2f:91:b3:1a:ef:87:96:87:af:d9:ef:4b:e8:60:fa:a1:
        35:fa:f8:1e:fc:c1:9f:34:e6:42:7f:3b:91:3c:b8:73:
        22:5b:9e:a1:d8:8b:11:49:34:7b:8d:fb:68:a3:06:d9:
        06:45:c7:f1:43:88:9e:09:28:11:64:6c:0c:3d:88:3c:
        52:a6:89:b2:e8:8d:2b:d6:59:c8:26:9e:c2:0f:c1:a8
    Fingerprint (SHA-256):
        1E:B5:43:26:57:71:8D:77:EF:51:14:F3:E1:BD:8A:66:AB:53:3B:64:7A:20:B8:62:54:82:08:D6:6A:C9:7A:9F
    Fingerprint (SHA1):
        B0:D3:AF:0C:F1:59:EB:A9:CA:EE:F2:48:4F:F2:B4:1D:00:DF:6E:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2630: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154046 (0x1dee433e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:41:05 2017
            Not After : Mon May 02 15:41:05 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ed:03:fb:e6:18:5a:49:45:7b:b4:6c:81:90:67:b5:fa:
                    52:b8:8b:7f:b8:6e:82:06:3f:12:da:66:eb:32:00:15:
                    bf:f5:f8:58:b7:35:44:e9:d5:0c:95:ca:eb:85:c9:b2:
                    8a:6e:52:59:31:61:a7:df:e4:71:60:d9:e6:28:c5:12:
                    7e:0a:a5:91:5f:d5:aa:6c:55:b2:d5:76:5b:5b:2b:55:
                    6f:f0:d9:26:e2:66:df:0d:85:d2:95:40:b2:a0:41:f4:
                    12:41:b5:40:b5:b4:95:80:d0:01:5c:e5:6d:c1:b6:c6:
                    99:bc:53:30:01:74:8b:52:16:30:a8:da:91:a4:de:2b:
                    01:23:b3:67:aa:22:41:7f:5e:d1:85:fe:f0:37:41:32:
                    cf:69:f6:cf:72:35:4d:9e:e9:5d:7c:62:49:f4:8d:62:
                    97:62:cb:3f:0f:b1:8c:ed:c5:48:13:e6:10:37:ef:2a:
                    60:4d:2f:64:ad:fc:46:5e:eb:17:3c:c2:5a:9d:de:d0:
                    63:8f:08:14:65:63:5c:27:aa:8f:3f:61:e7:ba:bd:52:
                    9a:51:7e:7b:66:3d:3c:3e:d9:e6:0f:08:ce:ea:f4:5d:
                    fb:88:a1:bb:01:67:6e:a6:59:bc:28:d9:ff:23:e4:7a:
                    e2:e7:f8:50:d9:da:14:e9:bb:3a:2c:0c:bf:40:b1:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        e6:a8:06:d5:4f:23:7c:e1:62:e5:8b:2b:db:51:df:da:
        82:fd:fb:93:20:de:40:0d:13:f4:2f:5d:93:0c:98:c9:
        87:bb:25:3a:45:ad:26:7c:f1:f1:77:5e:53:ac:c4:8e:
        dd:7e:66:68:33:ff:40:fc:fd:01:36:4c:5c:78:73:60:
        d2:62:f5:9f:c4:47:03:f3:af:31:1a:b4:47:dc:5f:51:
        ee:68:37:3e:40:b1:86:ef:7e:e1:f5:11:a6:9b:93:76:
        99:22:14:c6:9d:de:92:7b:75:e9:af:7b:36:35:08:f1:
        ed:28:5a:79:e6:28:a4:90:ec:68:83:c7:27:99:1e:3a:
        c9:24:9e:43:bd:f6:75:1e:dd:f9:70:45:5d:4b:fc:5b:
        ce:32:2d:9d:20:b3:63:06:da:27:ec:52:ec:87:d0:dd:
        4f:dd:d1:eb:fd:63:f8:f1:ca:5c:41:53:c2:7b:8a:16:
        2f:91:b3:1a:ef:87:96:87:af:d9:ef:4b:e8:60:fa:a1:
        35:fa:f8:1e:fc:c1:9f:34:e6:42:7f:3b:91:3c:b8:73:
        22:5b:9e:a1:d8:8b:11:49:34:7b:8d:fb:68:a3:06:d9:
        06:45:c7:f1:43:88:9e:09:28:11:64:6c:0c:3d:88:3c:
        52:a6:89:b2:e8:8d:2b:d6:59:c8:26:9e:c2:0f:c1:a8
    Fingerprint (SHA-256):
        1E:B5:43:26:57:71:8D:77:EF:51:14:F3:E1:BD:8A:66:AB:53:3B:64:7A:20:B8:62:54:82:08:D6:6A:C9:7A:9F
    Fingerprint (SHA1):
        B0:D3:AF:0C:F1:59:EB:A9:CA:EE:F2:48:4F:F2:B4:1D:00:DF:6E:6B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #2631: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #2632: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154051 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2633: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #2634: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #2635: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154052 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2636: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #2637: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #2638: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154053 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2639: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #2640: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #2641: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154054 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2642: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #2643: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #2644: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154055 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2645: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #2646: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #2647: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154056 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2648: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #2649: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #2650: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154057 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2651: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #2652: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #2653: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154058 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2654: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #2655: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #2656: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154059 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2657: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #2658: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #2659: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2660: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502154060 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2661: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2662: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502154061 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2663: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2664: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502154062 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2665: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2666: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #2667: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #2668: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2669: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502154063 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2670: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2671: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502154064 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2672: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2673: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502154065 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2674: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2675: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #2676: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #2677: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2678: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502154066 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2679: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2680: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502154067 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2681: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2682: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502154068 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2683: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2684: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #2685: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #2686: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2687: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502154069 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2688: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2689: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502154070 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2690: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2691: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502154071 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2692: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2693: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #2694: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2695: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2696: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502154072   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2697: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2698: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2699: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2700: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154073   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2701: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2702: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154051 (0x1dee4343)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:41:09 2017
            Not After : Mon May 02 15:41:09 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:8b:ad:d9:c4:c9:3d:75:d8:32:71:42:7e:0a:da:e8:
                    12:a5:4f:e6:03:b3:fa:b8:39:08:1e:6b:6f:5e:2d:4e:
                    db:3f:cf:9f:cf:cc:9c:64:31:50:6b:f1:15:fc:c0:9a:
                    6b:f5:4b:37:57:06:32:cb:9f:0a:46:b5:6c:72:e8:cd:
                    c6:3f:df:5a:36:e8:55:c8:d9:5a:c8:07:74:50:14:1e:
                    33:7f:d5:88:a3:46:44:a9:a5:0c:bb:1c:c9:5d:52:1e:
                    96:c2:04:2d:4e:67:98:35:c5:4e:4c:22:d9:6c:71:24:
                    6f:24:70:b7:b3:38:e2:48:9b:95:49:e2:da:bc:4b:9a:
                    4a:b1:13:f8:99:61:01:ea:2c:88:86:5b:6b:ae:73:eb:
                    5c:32:9e:24:3d:02:85:60:7b:69:27:3b:5b:a7:a7:2a:
                    17:40:50:bf:f1:ae:a1:4f:3b:02:93:bb:a4:f6:b2:16:
                    fd:2d:c1:84:33:fa:c9:f1:04:22:18:a0:85:6b:4b:c9:
                    3a:7f:34:3e:e4:37:83:64:66:f8:e3:a0:43:8b:26:6b:
                    48:b9:3e:d4:40:09:41:f5:13:85:c4:6f:e2:92:9a:f6:
                    d5:86:8e:e3:45:2e:d9:d9:ce:5d:9a:fe:47:25:74:53:
                    f2:f6:9c:7e:54:72:ee:88:18:8d:26:0d:82:0d:3c:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c4:7d:77:f3:21:0b:1c:d5:31:31:64:24:48:12:e0:cf:
        66:2b:02:86:f5:c1:4c:90:04:b6:e5:f9:02:59:c9:40:
        68:3d:8c:f1:5b:45:02:bf:a5:53:9d:a6:d8:e2:d5:f2:
        45:50:9f:00:e0:5a:48:56:44:f6:3b:02:e6:10:d0:47:
        53:18:87:f4:2f:db:84:fc:af:6f:99:39:88:f7:03:d4:
        67:a9:78:c4:bc:4e:c7:46:00:7a:90:c7:e9:18:42:2e:
        7b:05:f5:f1:7a:f9:4a:e4:b0:bb:30:25:9b:c6:4d:62:
        9e:5a:d3:a1:47:4e:26:f2:0f:63:7d:58:9b:0a:cc:4d:
        ff:20:79:9d:70:43:ce:e8:91:60:d9:c1:55:16:eb:c3:
        fc:b2:0d:f4:5b:bb:fc:e2:19:bd:f7:08:81:eb:62:1b:
        70:cd:fc:2f:88:a0:80:e1:cc:47:f7:ad:11:9d:dd:eb:
        82:d6:04:d2:a9:13:93:23:6a:7a:22:54:e7:16:39:62:
        cc:31:2f:b7:c7:1e:74:d8:4d:6a:a2:0c:e1:7e:ce:e8:
        91:bf:20:d6:2c:0b:45:34:19:7d:d6:8d:b4:c8:ae:b5:
        63:ad:d2:8b:2a:b1:ba:ae:ec:1c:dd:bd:95:eb:03:44:
        97:c1:63:0f:52:35:c1:e7:21:73:c3:03:b6:9b:f3:ae
    Fingerprint (SHA-256):
        AA:65:B3:22:17:4F:41:B4:7A:B5:DC:E3:F6:DC:ED:15:79:70:13:99:8B:28:EF:8D:F7:5B:FE:92:FB:97:C8:F0
    Fingerprint (SHA1):
        F1:53:01:BD:9B:D4:F0:0B:7B:A3:B8:B6:F4:92:5F:F4:07:4A:58:26
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2703: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154052 (0x1dee4344)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:41:09 2017
            Not After : Mon May 02 15:41:09 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:cd:03:c4:c5:05:92:7b:16:ce:8e:80:de:d5:19:c4:
                    85:23:2f:42:a0:23:86:53:d0:84:0f:33:d9:75:7f:cb:
                    f0:02:af:23:c5:18:08:fe:88:93:94:82:41:9b:60:51:
                    82:10:aa:e7:26:84:15:56:9d:d6:6e:5b:76:1f:5e:75:
                    d7:a3:25:0a:af:a8:bb:18:b7:e2:80:75:0d:91:2e:13:
                    cd:8b:e0:5e:89:ca:e4:05:98:6f:fd:a8:35:a9:75:01:
                    0d:e2:09:59:78:26:35:85:37:a3:97:bb:c3:d5:fd:0c:
                    3a:45:a7:3d:77:86:a1:ec:06:8e:40:a7:b0:bf:bf:28:
                    a3:19:12:8b:39:e9:bc:e7:29:3e:b2:ee:46:b9:e5:01:
                    99:55:56:75:6a:8f:90:39:57:9e:49:63:45:55:1d:2c:
                    8e:82:9e:2d:f1:97:8e:fb:72:15:84:e8:87:c2:dd:a6:
                    6f:c6:8d:30:f7:a9:8d:1d:5f:4a:fc:c2:e4:e7:39:57:
                    73:99:52:80:e8:97:ec:03:69:0d:c0:49:b2:9b:c9:5e:
                    05:12:bd:a4:76:1f:c2:36:2f:c8:39:98:2d:1f:58:10:
                    b3:cc:08:2c:29:e2:e8:cf:23:de:70:49:8d:0c:ba:8f:
                    ae:a2:ef:36:4d:79:40:ac:21:5f:ce:d5:80:c0:82:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        00:67:59:26:7c:3f:09:39:55:27:5b:6a:48:67:ff:25:
        6c:03:cd:36:52:ad:17:3d:90:c2:72:82:11:36:eb:b5:
        f2:77:4e:8e:2a:41:44:ff:f5:df:77:5d:cd:7e:41:0d:
        85:6c:10:91:23:10:28:08:df:87:e6:07:32:ef:33:b2:
        ef:93:40:f9:60:6f:ed:1e:0d:d9:d7:ff:99:41:e4:90:
        cf:78:71:5a:d1:4d:20:b0:f5:27:be:78:0a:32:67:5d:
        18:82:da:ec:db:eb:37:14:9c:e6:5a:a0:b4:94:a5:7e:
        63:df:e2:36:25:99:0b:39:43:f3:64:94:3e:23:a8:e8:
        d2:66:b6:40:18:f2:06:57:37:ed:8a:7b:51:6b:4d:96:
        e1:44:d9:5b:9d:91:0b:98:7f:1d:1c:65:ee:f4:7b:ff:
        73:f8:28:70:e5:c5:a8:19:9b:a8:c5:52:12:84:25:9e:
        c2:63:1c:33:88:16:4e:98:c7:3e:1a:1c:d2:62:d0:49:
        7e:69:34:91:57:40:c1:a6:12:b2:5c:f3:a9:52:40:e1:
        2f:d3:69:01:d2:54:22:16:55:01:c0:14:16:11:b6:4f:
        ee:5f:01:52:77:93:ba:b0:b6:13:a0:5d:43:81:a2:71:
        a3:db:e2:e5:d4:12:85:17:dc:17:18:6f:70:92:0b:8d
    Fingerprint (SHA-256):
        19:88:BC:F9:3D:AB:65:A6:FE:5E:17:57:D7:5D:9B:B0:DF:06:70:09:07:19:59:07:54:B0:CF:2F:4D:EE:25:E7
    Fingerprint (SHA1):
        1C:83:97:3B:AD:69:C8:2C:40:17:FB:92:3F:61:C7:14:E2:F9:AA:20
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2704: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154053 (0x1dee4345)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:41:11 2017
            Not After : Mon May 02 15:41:11 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:37:1f:d1:92:97:5c:4e:1a:55:aa:6b:f5:ee:59:19:
                    da:22:8a:c7:71:b9:4b:87:91:ef:e2:77:a1:b4:f4:fc:
                    13:cd:03:83:c2:88:73:25:be:f8:48:05:23:a6:53:11:
                    7c:14:95:03:e7:95:9c:ce:10:aa:1d:46:59:41:98:e6:
                    6f:e6:23:16:e6:ed:d1:fb:07:af:f9:81:60:93:bf:16:
                    6c:e2:ef:47:43:27:52:2e:a5:e3:27:ff:7d:47:17:c8:
                    f2:e0:12:91:f6:96:45:1a:79:97:a3:8c:ed:3a:11:ce:
                    7c:18:a9:9f:c2:58:81:39:c1:b4:31:20:c6:56:25:ff:
                    6f:8c:39:22:09:ad:d1:f3:c9:c7:7b:7a:05:db:8e:40:
                    aa:5b:2d:67:ab:aa:52:50:e3:92:e7:62:cf:cf:e5:b0:
                    21:82:f7:c9:67:df:b2:68:e0:b0:12:de:be:2e:3c:f9:
                    17:2c:b8:08:a1:19:46:ac:f7:c0:4d:3e:b5:1e:3d:fe:
                    88:86:fd:9d:66:6f:c8:f4:ac:b3:4a:6a:ba:21:12:aa:
                    81:d8:3b:cb:85:a2:37:87:e0:62:e3:94:46:c3:ce:f0:
                    d3:a7:e0:2a:1c:a8:f6:c5:75:ea:e3:aa:1c:df:ed:f8:
                    79:d0:e7:90:3f:50:6f:43:1e:8f:a4:20:82:89:72:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ba:ba:bd:8d:96:df:15:96:bb:87:39:b2:c5:f1:61:c8:
        01:89:b0:8b:45:56:3b:c5:ad:28:bb:88:0d:97:41:84:
        e2:18:1a:72:a0:5e:ab:42:e6:b9:28:5a:22:87:31:6b:
        78:a8:55:62:91:a5:bd:6d:63:fa:f2:ae:3f:7a:16:ed:
        8f:3f:7a:98:49:8b:7e:52:6a:78:b9:f6:df:dc:22:d9:
        a4:6e:15:9c:79:b6:47:af:cf:21:c1:9e:d4:90:5c:7b:
        0c:7b:4c:f8:8f:dd:2c:dc:a8:0d:68:57:75:6b:42:94:
        6b:be:47:70:db:25:4c:9f:a6:ac:6f:e7:a0:fe:79:0b:
        da:42:05:38:ce:4d:91:ad:a1:ac:ed:73:7a:b5:b2:bb:
        b9:60:00:e5:26:09:29:86:4a:6c:a4:61:e8:c6:d4:54:
        50:20:5a:b0:72:dd:6e:72:59:e5:39:8f:c1:3e:6d:d4:
        e7:cf:d8:45:35:d1:0f:e4:f0:5a:61:97:c0:c3:a3:f7:
        c4:16:a0:9e:2d:23:46:1e:de:04:0d:c4:d5:1d:35:84:
        35:7d:87:ed:ab:41:98:8b:49:01:09:20:55:2a:ff:a0:
        60:2e:c6:b1:4e:82:39:41:15:5d:3d:a9:ca:00:28:e8:
        28:7a:95:5b:5b:bb:7d:67:96:bc:53:00:c9:ab:13:1d
    Fingerprint (SHA-256):
        90:87:C5:02:67:CB:7A:7D:40:78:40:63:28:7A:10:18:6D:BC:4D:A6:BD:07:85:29:CD:7D:6D:A6:D0:E9:22:02
    Fingerprint (SHA1):
        D1:5E:5B:9E:BD:68:9A:BA:01:82:67:74:3C:47:0E:BE:1D:19:DE:0F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #2705: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154054 (0x1dee4346)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:41:11 2017
            Not After : Mon May 02 15:41:11 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:a1:c3:42:1a:0c:46:b2:cf:b1:34:cf:8b:cb:1d:27:
                    f1:b5:d6:67:06:c1:ec:27:af:01:17:92:d8:f6:00:fd:
                    03:31:a4:1a:d4:54:23:03:69:65:de:77:b0:0b:f7:d2:
                    07:e2:43:1e:a5:b6:65:05:3a:da:bf:46:06:ed:c4:83:
                    f0:b0:b3:46:15:5a:ed:ca:05:6c:e9:b9:8a:c3:79:ca:
                    a8:b2:fa:e2:13:0b:85:fa:c8:dd:86:b2:28:51:52:71:
                    74:fd:9d:cd:08:6c:c0:01:95:63:e4:86:f9:c3:35:90:
                    2b:0f:15:aa:c0:e8:35:11:5e:11:6c:db:25:08:29:e7:
                    a6:a8:ad:b9:2b:05:d3:0f:f8:9d:d8:c1:df:7e:5e:26:
                    fd:b5:a4:01:1f:45:b0:70:fc:3b:5b:20:09:56:2a:e5:
                    3b:a9:81:36:eb:72:d2:9f:bf:97:31:07:85:26:f0:eb:
                    cc:7b:c0:f4:8e:95:ef:3f:6d:fb:a5:8a:04:17:5d:1a:
                    31:c3:1f:9a:9f:57:9f:bd:7f:88:1d:3d:8f:49:ed:b1:
                    ce:9c:80:31:5d:0a:83:41:d5:5e:b7:d3:71:26:89:dc:
                    d9:62:6c:92:6d:dd:3f:85:bf:27:4f:03:be:25:73:e1:
                    93:83:28:37:cf:9e:67:ad:33:cf:74:b1:f1:ae:6e:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:e4:ff:3d:9d:4b:21:5e:cb:46:71:f7:38:73:bd:7f:
        13:68:7b:09:8a:a4:a2:75:1d:48:eb:e4:1c:54:c4:a8:
        6e:5e:d5:15:0b:9c:f4:d6:e0:f8:00:c1:e5:6f:0f:74:
        8c:cc:d1:6f:5c:f9:51:32:5b:e8:ba:1c:a5:26:a6:f2:
        86:99:3d:07:79:7e:29:3c:68:02:2d:65:d9:a2:39:13:
        c9:a4:1f:16:bd:cc:76:3a:0c:2a:fd:99:f7:d7:ad:79:
        ee:d4:a8:9d:b4:0b:64:f4:ba:7b:eb:d6:f8:88:2d:89:
        86:a3:9a:76:c6:30:fc:c8:e0:f0:ff:08:48:d2:fa:b8:
        07:7f:74:74:61:91:11:1c:f8:2f:84:cc:0f:9a:c8:f7:
        f2:34:3d:ca:ee:bb:5d:5b:2e:46:ba:9f:d2:9b:9d:e5:
        7a:b2:e7:4b:6a:57:74:3f:38:8d:10:7c:fd:1b:0d:31:
        93:f9:7c:80:89:e6:e7:2d:7b:1d:88:ad:61:47:f2:1a:
        57:63:8c:cd:4a:11:ba:9c:1c:29:5f:29:d0:f7:3d:0a:
        4b:15:1b:8e:e0:4a:1c:dc:96:20:0a:89:19:5a:84:31:
        33:95:a8:6e:9d:65:fa:09:9a:eb:31:26:68:0c:02:6f:
        1e:28:56:7a:4d:3e:3e:a9:4e:81:a0:92:63:61:e2:74
    Fingerprint (SHA-256):
        BB:CC:49:5F:53:78:CC:07:DE:FA:F4:D1:F8:EC:B1:1C:EE:50:48:87:FE:91:93:FB:45:18:03:78:4E:73:FE:FE
    Fingerprint (SHA1):
        2E:60:04:46:50:EB:77:0C:5A:3D:28:03:BE:EE:64:A0:85:66:6D:6A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2706: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154055 (0x1dee4347)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:41:12 2017
            Not After : Mon May 02 15:41:12 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:9b:54:11:01:fb:e9:6e:69:50:af:63:6a:5c:9e:26:
                    91:cf:d6:91:68:3a:29:4d:2b:b2:ed:8a:e8:62:b7:b9:
                    cc:41:08:97:41:25:51:b4:cc:b6:56:7e:84:88:50:b0:
                    6c:ea:29:70:a4:c1:4f:5e:25:13:78:b9:42:eb:0b:ed:
                    a7:93:18:8e:a9:d0:77:a5:0f:1a:8c:b6:f3:cd:e0:b2:
                    50:40:55:46:ec:7d:e9:52:0f:57:77:ab:69:01:2e:51:
                    4f:b8:08:9f:96:ac:db:7f:0d:a2:45:ca:99:38:24:37:
                    e9:f9:64:2f:57:74:3e:5a:e1:8c:60:05:83:78:22:86:
                    93:09:13:d9:3c:70:39:fe:f8:88:4f:b1:32:3b:b5:95:
                    7b:26:23:42:84:ac:3e:65:49:43:75:1e:dd:e3:06:5b:
                    ed:20:cb:06:cd:77:b9:46:e6:61:89:f7:cc:6f:ca:00:
                    f1:f9:7c:c5:2c:3a:e1:f4:3f:b5:cf:41:0a:10:c9:bc:
                    41:ee:59:c2:61:42:2f:f7:49:c5:61:2e:b1:8c:1f:96:
                    b8:ec:6a:66:81:6e:8c:07:33:cf:1f:28:d7:d6:a2:81:
                    ae:bc:77:b5:9e:6e:0d:e7:d3:96:f4:2e:fc:5b:f3:1e:
                    5e:cc:13:4d:87:c6:df:21:1a:43:df:54:36:d3:b2:91
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:32:55:37:d4:62:76:91:77:4f:96:b0:51:fb:d2:92:
        55:39:cf:9f:70:f8:77:68:fc:ae:83:0d:9e:6a:99:3d:
        fb:52:8f:13:2e:9c:65:3f:18:f8:8b:da:0e:05:71:2e:
        4b:3c:7a:f2:96:b3:0b:cd:f6:78:fc:a4:87:68:07:af:
        21:f6:d9:b7:cf:65:c1:7c:bd:bf:43:b7:7b:a0:84:dd:
        2c:ed:61:5c:05:42:72:42:b3:eb:d7:fb:30:22:11:6f:
        24:66:0a:bf:d5:bc:57:f6:0a:4c:6e:1f:fd:81:ef:8c:
        24:54:bf:85:32:68:2a:b3:ba:4c:7e:aa:d8:91:0f:65:
        94:e6:52:b7:f5:9a:f5:24:64:f8:49:3d:4b:a7:f3:a3:
        ab:d5:a9:6d:90:16:66:f6:fd:26:47:2c:9f:71:ee:99:
        21:d5:28:b6:fd:9f:57:0a:cc:08:1f:5a:1f:85:35:fe:
        6f:75:79:64:92:d5:d7:36:73:1f:66:93:2d:a2:09:d5:
        2b:7d:7f:e8:82:76:27:7b:2f:24:f0:fc:f5:61:50:8e:
        56:db:50:6a:75:6a:db:1f:82:e2:55:d0:a6:a3:c8:77:
        1d:5f:2f:f9:e3:7d:c5:40:73:94:ab:e7:d3:c2:02:5e:
        3b:61:32:13:61:2e:79:9b:ec:f7:b8:ef:f2:81:1b:a3
    Fingerprint (SHA-256):
        6E:AC:1F:CD:4F:00:8E:9C:77:F5:22:27:F8:59:33:E7:D4:8D:E7:9E:A0:66:B9:13:36:17:81:75:49:DD:BF:D8
    Fingerprint (SHA1):
        22:ED:04:A1:64:1A:63:56:EC:B4:24:F7:A2:EB:85:1D:BA:60:CC:D7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2707: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154056 (0x1dee4348)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:41:12 2017
            Not After : Mon May 02 15:41:12 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:fc:e6:cb:74:40:f6:c6:7b:82:ee:07:2c:41:9b:ac:
                    34:ef:b4:f1:13:23:ab:73:51:b4:3e:af:c5:1e:0a:c4:
                    72:b0:1e:ee:55:9e:24:0e:4a:2f:8e:7e:0e:87:f1:1c:
                    6c:6f:f4:13:95:c1:b7:34:bc:23:cb:b1:ca:09:c5:81:
                    fc:6b:a0:c1:db:fd:55:a7:83:36:d0:78:1f:85:27:c5:
                    ff:bc:77:91:90:7e:eb:a4:87:fa:af:a1:e3:8c:b9:3c:
                    f1:b1:70:f1:92:4b:2c:0c:63:d1:9d:d1:83:43:f4:c8:
                    dd:9f:12:d4:0a:d1:68:6d:3a:ef:47:e0:c8:3f:ce:51:
                    b6:60:22:b4:80:21:42:62:1f:a6:72:09:af:32:cd:41:
                    d7:39:f3:fc:c1:d7:56:a2:e4:c1:c2:9b:4e:05:4a:6b:
                    fc:b9:b2:c4:a5:3e:a1:29:80:54:cd:60:02:ef:a1:25:
                    35:72:39:68:41:a4:23:3a:6b:59:cf:58:ad:21:55:87:
                    fc:2b:af:97:30:49:e8:0e:d0:c1:35:59:c2:d2:92:df:
                    76:38:0e:ff:de:69:c3:12:49:22:40:38:29:26:71:20:
                    ff:a5:a4:1f:f9:91:a0:6e:ea:a7:bc:71:aa:62:c1:e3:
                    59:f7:f5:6a:ac:d5:dc:5c:0a:5f:76:8f:91:e3:bc:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8c:4a:be:ea:cf:56:89:c5:66:ae:27:b3:ea:2e:6d:3d:
        f5:9f:e4:85:96:c2:9a:34:6f:74:73:f1:a4:ad:e0:ff:
        91:61:7d:f3:d1:8e:ea:a4:68:f8:97:8a:c8:bc:40:7d:
        70:10:c2:90:f1:29:1a:db:84:e1:ad:dd:d9:41:56:c0:
        ad:c5:d1:c1:d5:4e:35:56:b0:e9:94:45:1f:43:41:c1:
        42:0e:9e:7a:31:26:5f:68:ee:69:fc:9a:80:e1:88:f0:
        b1:4d:8f:05:19:59:a3:29:ae:76:73:34:d4:26:e4:3e:
        cb:75:11:30:da:4c:89:4a:65:90:3b:39:fe:5e:82:1f:
        2d:25:62:9e:df:fe:da:29:67:20:28:59:fd:5f:22:1f:
        0f:72:1d:cc:e1:47:63:9c:e3:99:ad:8a:ca:98:c8:f9:
        ab:c1:62:52:7a:29:29:1d:4f:25:9f:fc:d9:4b:a1:5f:
        7b:b7:83:06:8b:06:ec:60:9e:38:79:1b:71:06:65:eb:
        41:52:47:02:13:60:7a:dc:c9:41:9b:d4:28:c7:fb:10:
        52:cc:49:44:a1:ff:54:a9:51:d9:27:e0:c3:20:36:38:
        be:79:da:90:46:89:72:ad:62:7e:1c:d7:5e:fe:13:4c:
        a7:d9:f8:2d:4a:8c:f7:8a:03:a1:78:45:a3:cd:d8:88
    Fingerprint (SHA-256):
        BA:E1:5E:18:20:1B:61:5A:58:95:24:32:BB:2E:D3:7A:F3:A1:E3:8D:C8:48:16:17:66:3D:FE:60:14:F5:66:36
    Fingerprint (SHA1):
        B6:9D:BF:13:62:7B:3E:FC:84:82:94:90:39:3F:3C:4A:F4:0C:81:F9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #2708: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154057 (0x1dee4349)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:41:14 2017
            Not After : Mon May 02 15:41:14 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:54:e7:20:bb:92:4b:4e:af:03:27:fd:6e:cf:0d:9c:
                    52:7f:21:e7:a6:1b:6d:17:6f:8a:a0:e4:47:55:13:ad:
                    ff:b8:f8:d9:d7:d6:70:f9:55:ee:e3:2f:61:eb:79:ea:
                    5c:a3:1b:94:c3:05:e4:b5:b6:0e:c0:81:82:ea:a4:89:
                    e7:88:05:96:c5:8c:08:7d:b3:83:0c:0e:5b:6b:43:60:
                    ef:fc:c5:99:8f:a2:32:f7:af:e6:93:6e:89:4c:98:3b:
                    c9:50:80:af:6d:c3:d4:bb:31:d1:84:67:64:12:10:bd:
                    7c:c9:b6:f7:01:63:97:b4:1b:23:91:26:6e:8f:98:9c:
                    56:41:d2:4a:53:e8:69:64:5a:1e:2c:7f:2c:45:a2:69:
                    a0:f4:5a:df:68:8d:3b:20:2c:e6:39:8c:2c:fe:1c:3a:
                    10:50:09:87:3f:de:1b:40:cb:0e:d6:af:07:9f:ff:8b:
                    9c:71:10:5d:2d:e1:a6:85:80:5a:28:e4:94:db:27:c4:
                    07:a1:eb:bf:d5:55:e2:20:c9:c3:db:7d:2d:66:ac:ac:
                    55:73:f5:42:c9:64:17:4e:a9:95:93:a8:26:fe:c0:f5:
                    03:aa:04:44:90:f1:f1:a1:11:eb:39:09:2b:e4:90:0a:
                    b5:b1:a1:95:a7:19:39:41:79:c6:55:71:73:0c:31:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:6c:ae:d5:a3:6c:97:55:e0:52:dd:4b:59:15:41:2d:
        ba:94:96:fd:96:d9:17:35:ec:a5:9e:a2:ce:cc:b7:b9:
        35:9b:ad:68:71:8b:20:7b:dc:5a:f9:36:a1:48:47:b2:
        2b:45:b3:62:3d:83:31:b6:37:90:0b:b3:d2:a6:ed:e8:
        ea:7d:96:b2:75:49:2c:2e:51:e4:29:f3:a8:42:12:fd:
        18:f4:18:2b:4c:17:98:94:5f:f6:43:fb:5b:d1:ac:4b:
        20:5d:07:8f:d5:41:91:ff:64:34:88:d2:4e:ac:91:2e:
        f2:39:72:75:a1:3d:9a:b2:f2:6f:9c:dc:56:7a:1d:9d:
        2b:d6:64:a5:85:02:3b:70:86:2b:41:3c:f8:eb:39:a4:
        d8:bd:fa:62:82:61:4e:61:6a:3c:87:22:04:b9:3a:1c:
        db:31:93:72:e4:a8:b2:08:ce:ee:aa:66:48:7b:7d:27:
        06:98:c8:b5:c3:81:51:2e:7c:7c:a6:e7:0e:d4:ee:6f:
        e3:3b:3b:7a:bc:06:9a:b7:03:5a:ac:36:55:f6:50:fd:
        e0:51:40:ee:89:76:3e:29:de:27:a1:84:22:c0:6a:f7:
        f4:7f:f8:4b:74:bf:07:e4:67:94:c9:0e:d0:c3:ca:86:
        6c:e3:d7:77:4e:43:74:fd:57:48:a6:bc:70:ca:5f:98
    Fingerprint (SHA-256):
        56:87:98:C3:F4:68:67:9A:4D:45:70:3F:B7:33:DC:35:69:4B:87:5C:85:43:E1:07:D2:3A:A8:18:73:31:BE:37
    Fingerprint (SHA1):
        85:2C:F8:A8:AD:51:3F:E2:59:E0:86:D4:CC:79:46:D4:FC:5C:1B:D7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2709: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154058 (0x1dee434a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:41:14 2017
            Not After : Mon May 02 15:41:14 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:e8:dc:d6:69:f9:65:6c:6d:22:e4:c4:e9:b7:9f:aa:
                    69:e2:7f:3b:28:e2:5f:11:0d:4e:1e:08:1b:1d:5c:69:
                    54:06:87:8d:c1:e3:e4:bb:38:af:22:b1:a5:c5:5a:5e:
                    f5:08:6f:3f:2c:bb:0c:f3:e7:48:dc:51:0a:5b:55:da:
                    02:43:43:9f:d6:51:b0:fd:26:f2:fd:13:91:ce:68:66:
                    53:db:fe:22:7e:40:df:b8:46:6f:0c:ed:c3:39:da:75:
                    7a:54:27:12:e2:97:4d:d2:30:2e:b7:98:44:85:67:f9:
                    8c:0a:c5:bd:db:f1:94:61:61:05:35:bb:fc:96:92:cb:
                    19:59:bc:5e:f2:cf:e1:b9:99:31:98:dd:17:9b:c6:5b:
                    a4:c9:d7:16:ab:09:a3:5e:37:ac:d3:ce:a6:87:3c:e6:
                    d9:4a:b0:21:03:6c:75:14:28:62:a0:93:20:0c:c7:ad:
                    e2:9b:3e:e6:53:17:16:8d:71:74:77:68:f2:8c:cf:a4:
                    cd:1f:a7:36:88:c8:45:84:a9:3c:94:92:02:36:b4:ca:
                    ef:f1:a7:d1:5b:14:24:e9:8a:d7:61:4a:25:a6:23:9e:
                    9a:95:91:00:99:23:71:2b:e9:44:0a:9e:bf:50:03:e2:
                    7f:32:ce:3f:e5:aa:6c:18:ad:5a:d9:90:29:f5:5e:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        07:5f:be:e5:db:88:51:26:03:02:74:ed:d4:b8:49:12:
        3c:58:bc:cd:8e:1f:ba:50:82:75:85:e1:e2:a9:b8:c7:
        21:31:82:f0:f2:a7:06:21:72:a6:7c:76:d7:5d:ca:c6:
        87:f4:16:34:13:1b:c9:0d:9e:89:fb:e2:9a:fd:3e:c1:
        0c:c8:05:12:ac:e4:f3:24:08:e2:c9:52:50:f1:f3:b9:
        e6:1b:32:e3:3d:ac:ca:d3:c2:c0:88:51:4f:7d:f6:d2:
        58:56:ba:6f:8a:d7:e2:a1:8d:32:55:59:fe:24:45:62:
        69:1f:75:2e:cf:2b:30:c8:5b:96:a3:91:29:36:d0:29:
        47:d3:55:f9:11:a6:4f:02:b8:07:29:9c:b4:64:48:c7:
        eb:7f:62:a0:eb:40:34:3b:a4:7f:4c:68:50:96:7e:70:
        1c:9a:23:96:8a:32:a8:ad:02:1b:20:40:9a:a7:2b:6f:
        31:59:e0:24:1f:9f:ba:7f:50:50:82:fc:d8:bb:cb:95:
        fc:c3:02:81:80:11:57:0c:2e:3b:e0:91:55:44:39:8e:
        56:db:83:57:3d:b6:ea:4d:ce:4d:ea:70:56:43:7d:7c:
        bd:c1:e9:a4:2f:60:d2:6a:97:fe:73:ac:ab:aa:5f:15:
        c5:67:67:59:df:a3:cf:30:46:81:8e:0f:f8:c3:85:4e
    Fingerprint (SHA-256):
        7F:20:44:23:63:2F:F3:19:A9:5B:9A:18:A8:CD:EC:23:0C:BD:81:68:A5:0B:6D:29:15:41:AD:E2:5D:17:FD:7C
    Fingerprint (SHA1):
        29:0E:4B:94:A5:36:CE:DC:97:4F:E0:FC:7C:3E:98:CD:59:35:D8:13
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2710: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154059 (0x1dee434b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:41:15 2017
            Not After : Mon May 02 15:41:15 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a6:fb:21:7a:65:cd:cb:2d:1b:60:2f:ff:5a:f8:b8:6a:
                    02:34:5c:07:a9:d0:c3:c4:e4:13:29:39:66:60:b9:af:
                    6d:fb:5b:f0:d2:a4:d8:b2:5f:e0:b8:79:2a:e9:f9:0a:
                    5e:ed:a4:24:21:30:92:52:54:b2:4f:cd:8f:fc:8b:f6:
                    f8:67:d5:91:8c:84:9b:de:73:8d:9b:b5:f4:f7:32:59:
                    0f:07:04:85:25:2b:e0:e2:ab:8a:ff:8c:db:b4:60:b0:
                    48:2b:81:b4:f9:b3:87:12:89:b5:2d:42:c0:15:c5:6e:
                    15:ab:85:c1:4e:10:f4:c0:9c:e5:ee:9d:c4:ab:0c:f9:
                    ec:e4:f7:95:c4:32:33:6a:a8:c2:5c:39:8c:38:71:2d:
                    db:b8:6d:1b:50:af:37:47:12:63:58:a3:67:18:59:c1:
                    dd:ae:69:64:89:bc:50:79:c1:ab:4a:4f:b5:da:80:2b:
                    78:27:ff:aa:18:1b:b8:29:c4:c8:46:11:01:62:bd:45:
                    c2:35:a3:b7:c7:35:cc:0c:68:d9:ea:b3:01:e1:08:14:
                    34:ce:2a:d3:b1:b1:3d:e4:01:f4:86:3f:8b:33:7c:1b:
                    ef:9e:d1:78:53:1d:f8:61:40:5a:5c:de:30:4f:92:c6:
                    37:82:b5:2e:2e:17:22:08:36:ed:74:93:44:9d:7d:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:56:01:d4:a6:b4:15:dd:28:18:42:69:87:6c:a5:12:
        85:28:2c:d1:03:f8:33:03:41:bc:d0:5d:73:25:97:22:
        48:a2:df:99:97:44:95:ad:56:1c:cf:31:29:84:6f:db:
        65:13:e6:1a:40:85:d1:ec:85:8e:3a:b7:89:f5:52:2a:
        b7:a7:08:61:08:14:a0:1b:29:e7:96:1c:08:96:c1:7b:
        5e:aa:47:a1:9e:b3:27:07:00:d9:69:ab:a6:73:33:9e:
        06:7b:a2:46:ea:4f:1d:1a:6b:1e:3d:ad:43:0a:62:3e:
        0b:37:d8:60:e5:a4:3c:43:83:3f:7a:86:b7:6e:bd:48:
        19:37:6d:d4:60:ea:5e:9c:33:06:23:b6:47:57:ed:23:
        0a:6a:46:e1:1e:70:ac:57:0c:be:38:bd:7c:4b:69:c5:
        ef:70:0c:6b:06:29:5d:ac:46:4d:9d:be:35:31:84:ec:
        d8:2d:fa:8e:a7:88:82:74:7f:65:fc:10:00:25:db:25:
        9d:fa:80:5e:e0:25:d5:4e:d2:85:ee:9d:15:39:1e:f2:
        8b:29:69:53:86:ce:a9:f1:d7:96:2a:cf:09:26:fe:4d:
        af:59:75:cb:be:71:3e:c6:76:20:76:1f:a1:8e:89:20:
        5d:dd:49:95:b8:41:90:ad:e5:b9:3d:2e:e2:42:cf:8d
    Fingerprint (SHA-256):
        F0:19:03:6A:0B:67:43:6B:46:C5:E6:35:5D:67:5E:CC:04:3B:5F:41:22:C1:4F:7D:E2:87:FA:51:8B:7E:FA:49
    Fingerprint (SHA1):
        00:7B:4E:B3:F0:A2:13:0E:3E:F2:E9:84:15:48:AA:99:F9:F0:A8:BD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #2711: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2712: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154074 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2713: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2714: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2715: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2716: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154075   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2717: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2718: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2719: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2720: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154076   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2721: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2722: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #2723: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2724: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154077   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2725: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2726: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2727: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154074 (0x1dee435a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:22 2017
            Not After : Mon May 02 15:41:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:f9:d0:14:31:bb:88:ec:71:94:f8:4c:15:d9:d2:a3:
                    d6:9d:58:fa:bb:8e:97:be:71:71:cc:4e:1b:b2:2c:6a:
                    0b:5c:11:b1:38:b2:0f:bd:01:a1:e2:ba:b5:61:1d:b3:
                    e3:31:1d:d4:c3:59:ca:94:a5:32:04:6d:60:cb:0b:24:
                    24:ee:77:94:53:18:02:71:77:4b:04:60:87:ad:3e:a1:
                    b6:c9:65:f1:0c:34:75:90:87:3e:d2:f2:58:1b:50:98:
                    75:67:a0:0c:17:4c:31:82:fe:2e:4d:3a:e0:3c:85:d5:
                    a2:eb:0a:d4:99:4b:87:07:43:fe:af:8c:f5:92:e0:aa:
                    89:fb:2c:a8:56:33:d9:f4:0e:cd:a3:e5:fb:e6:b4:75:
                    e5:8b:97:36:22:62:7a:76:ee:6b:93:49:6c:75:a0:eb:
                    f0:db:13:0d:72:87:0a:46:9c:85:32:a5:40:a1:3d:72:
                    a4:54:3d:66:69:47:cf:39:25:5f:a0:4f:0a:2a:a8:b6:
                    b3:a9:a0:61:ed:1e:56:7d:6c:f9:d3:e4:c7:48:e5:4b:
                    37:72:71:10:85:f2:14:a5:68:5a:56:82:30:69:0c:0a:
                    23:5e:f7:ef:93:3c:f1:9d:2c:26:75:50:f0:80:5b:27:
                    e7:6e:54:9e:8d:95:df:8b:ad:c8:de:a9:5b:2c:74:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:e1:1d:76:26:69:61:7d:4a:05:a3:d7:b4:8a:4e:10:
        43:80:3b:04:a1:9c:ef:43:98:24:28:d0:5c:2a:2d:de:
        69:e8:b0:3c:18:5d:bb:14:01:2f:cb:4c:5f:d4:4c:f5:
        86:44:ca:66:63:ea:aa:ad:e0:61:f6:e7:85:0b:2a:b3:
        d2:56:06:0e:1e:d6:e0:5f:e2:6e:2c:4a:0b:fc:67:26:
        3b:de:b9:7a:b3:d1:9f:dc:77:09:ae:3f:70:7a:68:7f:
        d6:c2:38:ab:55:2d:20:a5:c7:b9:e0:11:56:79:3b:4f:
        95:90:3b:6d:dd:39:12:b4:39:7b:c8:d8:bd:6e:6b:dd:
        51:cc:c3:af:f2:7d:56:70:53:3f:3b:bb:11:97:91:a2:
        14:9f:ad:7d:78:34:67:1f:be:66:95:dd:00:ff:f4:fb:
        a1:cc:0f:91:12:f9:01:c8:cd:a1:00:2a:dd:c8:e9:f0:
        02:a8:3a:82:7c:cb:b5:fb:8d:1e:4a:f2:e0:97:d3:ba:
        6f:f1:69:59:f9:ec:93:61:58:7f:73:3a:41:78:2a:6e:
        f2:6d:6a:ef:34:91:ec:b0:09:71:6d:89:9e:9e:af:29:
        71:23:a4:79:4c:7b:7c:4e:b8:75:42:bf:43:b6:f8:98:
        69:1b:e4:c7:9f:c8:a2:c0:fa:3d:e4:2e:16:7b:d4:80
    Fingerprint (SHA-256):
        6E:E1:F1:6D:06:1B:D8:B2:30:5F:18:C7:FA:71:7E:6B:0F:7C:24:EC:E7:17:AF:FF:50:36:30:B4:B2:8B:DB:59
    Fingerprint (SHA1):
        DB:50:56:CB:D2:E4:77:E6:DF:F4:C9:3F:22:6B:4E:B9:31:DE:A4:F9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2728: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2729: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154075 (0x1dee435b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:23 2017
            Not After : Mon May 02 15:41:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:cf:36:d9:c3:47:1f:e5:9a:d0:34:ec:a6:9b:63:8d:
                    37:f9:4d:52:35:eb:14:df:5e:ce:84:74:b0:b2:17:dd:
                    32:91:35:05:ab:6c:1f:28:14:d3:43:48:89:6f:7b:4f:
                    46:1c:ba:1b:9c:a9:24:95:f9:88:cf:c4:b7:09:ba:a3:
                    07:c9:c0:7d:05:ac:d1:97:90:79:16:46:aa:74:fb:99:
                    91:3b:e1:68:b2:ca:59:09:74:b7:87:c5:54:53:ab:dd:
                    45:0f:b8:2b:37:d1:9d:f3:31:ab:dc:9b:cb:7c:f7:03:
                    b9:82:92:de:e2:e6:8b:24:bf:71:5d:25:2f:50:da:6a:
                    11:54:9a:fa:7b:90:e0:10:9d:3b:d8:b6:ab:0a:77:00:
                    21:f0:ab:c1:9e:ff:db:03:64:88:83:40:16:12:1a:7d:
                    a4:eb:42:f3:d3:66:24:e4:a1:38:62:21:af:13:f9:a7:
                    41:6e:29:2d:52:e7:c2:45:bc:99:82:c4:ff:dc:c9:b9:
                    b6:0e:ea:58:f0:c8:a5:e5:e7:44:dd:b5:c4:f2:fc:27:
                    65:5b:df:4a:98:1c:39:10:46:24:03:49:87:23:1e:2a:
                    a8:ea:17:e8:27:09:c8:73:4e:d4:4a:dc:54:fe:e3:4f:
                    b5:f1:63:26:7c:05:17:94:07:e2:34:69:ad:25:eb:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:6c:a2:f5:8a:f8:a6:48:b0:9e:14:5b:a4:a8:4c:73:
        08:43:18:58:6a:7e:5e:27:47:8b:b5:ba:93:36:80:57:
        32:8f:1f:f0:cd:c5:ac:e8:65:f4:8f:e7:98:3c:89:64:
        e3:ed:81:96:0e:b6:61:3e:15:ec:78:e1:d1:fc:8e:94:
        d6:ba:71:df:27:d2:ac:c4:9e:d2:98:b2:83:67:5b:be:
        38:37:81:1a:da:1f:ce:24:cc:e7:54:f9:b2:83:9e:15:
        73:ac:db:57:77:2d:f6:17:b1:03:73:2c:28:c4:b8:4e:
        e5:18:bd:fd:68:28:71:11:b0:8b:c9:88:62:4a:89:6d:
        2f:d7:3e:8d:ea:62:8b:b1:d4:8a:3d:af:49:8f:a0:7c:
        43:30:4a:f2:c3:a7:30:1f:c4:e4:01:6e:97:49:90:fc:
        52:27:ff:bb:ef:b3:9e:07:a3:71:fa:f4:96:48:d7:d8:
        d0:a2:c1:d5:f9:ef:91:0d:e8:67:b9:10:f9:5c:b2:76:
        2c:36:3d:96:69:b4:86:83:9c:a0:f0:c9:e6:31:ad:6c:
        30:c5:e5:2a:a2:0a:e2:89:6a:b8:0e:61:23:45:69:b2:
        33:ca:09:a2:78:18:13:74:83:80:ca:f2:d6:c5:88:e4:
        24:57:07:0f:6d:4e:7d:8a:e9:42:9b:3e:6d:5a:1c:16
    Fingerprint (SHA-256):
        F5:0D:D1:DD:64:19:48:30:F0:FC:BA:DD:F9:3E:42:12:F9:FF:D2:89:69:83:F1:23:3D:37:81:81:D8:56:71:19
    Fingerprint (SHA1):
        FE:EF:10:72:B6:F1:69:20:CE:EF:6A:82:88:6D:64:8E:15:2D:1A:F8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2730: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2731: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154076 (0x1dee435c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:41:24 2017
            Not After : Mon May 02 15:41:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:43:fb:3b:8c:89:eb:2d:c1:c0:37:73:a1:e9:fd:a4:
                    58:08:fc:a0:a4:bb:9d:ed:4b:79:02:c7:00:c6:26:10:
                    35:44:16:c3:28:be:e2:08:6a:1c:c6:c4:4b:8b:a3:e4:
                    6a:ba:af:5b:38:c7:e4:cd:c6:10:b5:a7:c2:d2:ea:0b:
                    cb:63:3c:43:42:08:11:f7:ad:85:d0:44:d3:92:98:42:
                    33:e6:8f:d4:89:f2:3b:3a:8c:68:90:2a:9d:6d:a7:0b:
                    28:5e:b0:a0:7a:13:d4:d3:4e:fc:2a:d1:50:38:4b:42:
                    6a:88:84:d8:d2:8d:c3:18:db:6b:18:27:1d:0e:a7:0a:
                    5a:53:5a:49:54:7d:15:ee:c6:2c:c5:59:94:18:a9:e3:
                    53:64:dc:f2:5d:67:51:e0:00:31:54:49:6a:6c:7d:9d:
                    4e:b9:90:ba:53:76:26:1b:22:c6:4c:c0:bc:f8:44:75:
                    84:c1:9d:4f:a6:52:ae:37:38:36:f7:e9:0d:d5:9e:80:
                    70:62:d6:db:b9:91:90:8f:59:15:12:07:fe:c8:66:57:
                    4a:28:a2:ac:46:1a:04:7d:c1:20:35:93:2c:4b:8b:8b:
                    6f:3e:2d:5c:5c:14:41:ef:ad:41:cb:a7:67:15:e8:18:
                    9d:cb:44:5d:13:24:bb:53:0e:ca:3e:73:f5:1c:16:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:de:51:8c:e9:9f:d9:9e:a1:41:d5:18:1d:7b:a8:25:
        9a:78:8b:97:c3:36:57:26:66:1f:1b:41:cb:bd:b6:c7:
        89:d9:7a:a8:f1:f7:6d:b5:d8:46:29:d5:d1:a1:d1:41:
        92:d0:18:69:72:83:5c:b0:6b:45:c8:41:92:fd:80:57:
        14:dd:5a:f9:17:af:9f:17:f6:0f:c4:ee:0b:e6:d8:23:
        40:05:94:59:dc:d6:de:20:66:4e:d0:fb:9e:45:91:0a:
        38:e9:34:04:7c:b5:01:5a:79:36:43:44:5d:4e:bc:6d:
        4e:32:5f:b0:01:18:4e:19:74:2c:a4:24:ce:1c:03:bb:
        30:db:75:32:23:dc:c5:7d:dc:bd:27:b3:0e:7c:79:47:
        da:01:e8:fb:cd:9d:d9:f6:1b:41:71:26:d9:e2:af:0a:
        8d:d5:d9:78:66:c5:bd:2c:32:7d:e1:4b:bf:4b:5d:f6:
        9b:ea:32:11:32:e8:25:fc:c0:6e:ec:88:42:4b:4b:1d:
        af:f5:95:a6:65:26:27:32:20:d8:a1:88:bd:b2:13:a3:
        94:f1:ae:97:57:09:42:b6:6c:73:8b:d3:52:bd:62:eb:
        4f:5f:36:a6:2c:68:52:ca:b6:ea:5b:49:11:4e:d0:a5:
        b0:dd:13:28:5a:9d:52:cc:0e:7f:a9:83:5b:79:0a:7d
    Fingerprint (SHA-256):
        D0:4C:B0:B3:FA:60:E9:4B:61:FC:3F:CD:E6:CB:2D:2B:1E:39:97:5C:B7:7D:2A:D5:38:B8:6C:6B:90:AC:05:DF
    Fingerprint (SHA1):
        6E:00:69:36:C6:0B:81:EE:95:A0:06:75:C9:68:5E:83:D9:0D:E5:6D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2732: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2733: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2734: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2735: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2736: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154074 (0x1dee435a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:22 2017
            Not After : Mon May 02 15:41:22 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:f9:d0:14:31:bb:88:ec:71:94:f8:4c:15:d9:d2:a3:
                    d6:9d:58:fa:bb:8e:97:be:71:71:cc:4e:1b:b2:2c:6a:
                    0b:5c:11:b1:38:b2:0f:bd:01:a1:e2:ba:b5:61:1d:b3:
                    e3:31:1d:d4:c3:59:ca:94:a5:32:04:6d:60:cb:0b:24:
                    24:ee:77:94:53:18:02:71:77:4b:04:60:87:ad:3e:a1:
                    b6:c9:65:f1:0c:34:75:90:87:3e:d2:f2:58:1b:50:98:
                    75:67:a0:0c:17:4c:31:82:fe:2e:4d:3a:e0:3c:85:d5:
                    a2:eb:0a:d4:99:4b:87:07:43:fe:af:8c:f5:92:e0:aa:
                    89:fb:2c:a8:56:33:d9:f4:0e:cd:a3:e5:fb:e6:b4:75:
                    e5:8b:97:36:22:62:7a:76:ee:6b:93:49:6c:75:a0:eb:
                    f0:db:13:0d:72:87:0a:46:9c:85:32:a5:40:a1:3d:72:
                    a4:54:3d:66:69:47:cf:39:25:5f:a0:4f:0a:2a:a8:b6:
                    b3:a9:a0:61:ed:1e:56:7d:6c:f9:d3:e4:c7:48:e5:4b:
                    37:72:71:10:85:f2:14:a5:68:5a:56:82:30:69:0c:0a:
                    23:5e:f7:ef:93:3c:f1:9d:2c:26:75:50:f0:80:5b:27:
                    e7:6e:54:9e:8d:95:df:8b:ad:c8:de:a9:5b:2c:74:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:e1:1d:76:26:69:61:7d:4a:05:a3:d7:b4:8a:4e:10:
        43:80:3b:04:a1:9c:ef:43:98:24:28:d0:5c:2a:2d:de:
        69:e8:b0:3c:18:5d:bb:14:01:2f:cb:4c:5f:d4:4c:f5:
        86:44:ca:66:63:ea:aa:ad:e0:61:f6:e7:85:0b:2a:b3:
        d2:56:06:0e:1e:d6:e0:5f:e2:6e:2c:4a:0b:fc:67:26:
        3b:de:b9:7a:b3:d1:9f:dc:77:09:ae:3f:70:7a:68:7f:
        d6:c2:38:ab:55:2d:20:a5:c7:b9:e0:11:56:79:3b:4f:
        95:90:3b:6d:dd:39:12:b4:39:7b:c8:d8:bd:6e:6b:dd:
        51:cc:c3:af:f2:7d:56:70:53:3f:3b:bb:11:97:91:a2:
        14:9f:ad:7d:78:34:67:1f:be:66:95:dd:00:ff:f4:fb:
        a1:cc:0f:91:12:f9:01:c8:cd:a1:00:2a:dd:c8:e9:f0:
        02:a8:3a:82:7c:cb:b5:fb:8d:1e:4a:f2:e0:97:d3:ba:
        6f:f1:69:59:f9:ec:93:61:58:7f:73:3a:41:78:2a:6e:
        f2:6d:6a:ef:34:91:ec:b0:09:71:6d:89:9e:9e:af:29:
        71:23:a4:79:4c:7b:7c:4e:b8:75:42:bf:43:b6:f8:98:
        69:1b:e4:c7:9f:c8:a2:c0:fa:3d:e4:2e:16:7b:d4:80
    Fingerprint (SHA-256):
        6E:E1:F1:6D:06:1B:D8:B2:30:5F:18:C7:FA:71:7E:6B:0F:7C:24:EC:E7:17:AF:FF:50:36:30:B4:B2:8B:DB:59
    Fingerprint (SHA1):
        DB:50:56:CB:D2:E4:77:E6:DF:F4:C9:3F:22:6B:4E:B9:31:DE:A4:F9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2737: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2738: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154075 (0x1dee435b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:23 2017
            Not After : Mon May 02 15:41:23 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:cf:36:d9:c3:47:1f:e5:9a:d0:34:ec:a6:9b:63:8d:
                    37:f9:4d:52:35:eb:14:df:5e:ce:84:74:b0:b2:17:dd:
                    32:91:35:05:ab:6c:1f:28:14:d3:43:48:89:6f:7b:4f:
                    46:1c:ba:1b:9c:a9:24:95:f9:88:cf:c4:b7:09:ba:a3:
                    07:c9:c0:7d:05:ac:d1:97:90:79:16:46:aa:74:fb:99:
                    91:3b:e1:68:b2:ca:59:09:74:b7:87:c5:54:53:ab:dd:
                    45:0f:b8:2b:37:d1:9d:f3:31:ab:dc:9b:cb:7c:f7:03:
                    b9:82:92:de:e2:e6:8b:24:bf:71:5d:25:2f:50:da:6a:
                    11:54:9a:fa:7b:90:e0:10:9d:3b:d8:b6:ab:0a:77:00:
                    21:f0:ab:c1:9e:ff:db:03:64:88:83:40:16:12:1a:7d:
                    a4:eb:42:f3:d3:66:24:e4:a1:38:62:21:af:13:f9:a7:
                    41:6e:29:2d:52:e7:c2:45:bc:99:82:c4:ff:dc:c9:b9:
                    b6:0e:ea:58:f0:c8:a5:e5:e7:44:dd:b5:c4:f2:fc:27:
                    65:5b:df:4a:98:1c:39:10:46:24:03:49:87:23:1e:2a:
                    a8:ea:17:e8:27:09:c8:73:4e:d4:4a:dc:54:fe:e3:4f:
                    b5:f1:63:26:7c:05:17:94:07:e2:34:69:ad:25:eb:e1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:6c:a2:f5:8a:f8:a6:48:b0:9e:14:5b:a4:a8:4c:73:
        08:43:18:58:6a:7e:5e:27:47:8b:b5:ba:93:36:80:57:
        32:8f:1f:f0:cd:c5:ac:e8:65:f4:8f:e7:98:3c:89:64:
        e3:ed:81:96:0e:b6:61:3e:15:ec:78:e1:d1:fc:8e:94:
        d6:ba:71:df:27:d2:ac:c4:9e:d2:98:b2:83:67:5b:be:
        38:37:81:1a:da:1f:ce:24:cc:e7:54:f9:b2:83:9e:15:
        73:ac:db:57:77:2d:f6:17:b1:03:73:2c:28:c4:b8:4e:
        e5:18:bd:fd:68:28:71:11:b0:8b:c9:88:62:4a:89:6d:
        2f:d7:3e:8d:ea:62:8b:b1:d4:8a:3d:af:49:8f:a0:7c:
        43:30:4a:f2:c3:a7:30:1f:c4:e4:01:6e:97:49:90:fc:
        52:27:ff:bb:ef:b3:9e:07:a3:71:fa:f4:96:48:d7:d8:
        d0:a2:c1:d5:f9:ef:91:0d:e8:67:b9:10:f9:5c:b2:76:
        2c:36:3d:96:69:b4:86:83:9c:a0:f0:c9:e6:31:ad:6c:
        30:c5:e5:2a:a2:0a:e2:89:6a:b8:0e:61:23:45:69:b2:
        33:ca:09:a2:78:18:13:74:83:80:ca:f2:d6:c5:88:e4:
        24:57:07:0f:6d:4e:7d:8a:e9:42:9b:3e:6d:5a:1c:16
    Fingerprint (SHA-256):
        F5:0D:D1:DD:64:19:48:30:F0:FC:BA:DD:F9:3E:42:12:F9:FF:D2:89:69:83:F1:23:3D:37:81:81:D8:56:71:19
    Fingerprint (SHA1):
        FE:EF:10:72:B6:F1:69:20:CE:EF:6A:82:88:6D:64:8E:15:2D:1A:F8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2739: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2740: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154076 (0x1dee435c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:41:24 2017
            Not After : Mon May 02 15:41:24 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:43:fb:3b:8c:89:eb:2d:c1:c0:37:73:a1:e9:fd:a4:
                    58:08:fc:a0:a4:bb:9d:ed:4b:79:02:c7:00:c6:26:10:
                    35:44:16:c3:28:be:e2:08:6a:1c:c6:c4:4b:8b:a3:e4:
                    6a:ba:af:5b:38:c7:e4:cd:c6:10:b5:a7:c2:d2:ea:0b:
                    cb:63:3c:43:42:08:11:f7:ad:85:d0:44:d3:92:98:42:
                    33:e6:8f:d4:89:f2:3b:3a:8c:68:90:2a:9d:6d:a7:0b:
                    28:5e:b0:a0:7a:13:d4:d3:4e:fc:2a:d1:50:38:4b:42:
                    6a:88:84:d8:d2:8d:c3:18:db:6b:18:27:1d:0e:a7:0a:
                    5a:53:5a:49:54:7d:15:ee:c6:2c:c5:59:94:18:a9:e3:
                    53:64:dc:f2:5d:67:51:e0:00:31:54:49:6a:6c:7d:9d:
                    4e:b9:90:ba:53:76:26:1b:22:c6:4c:c0:bc:f8:44:75:
                    84:c1:9d:4f:a6:52:ae:37:38:36:f7:e9:0d:d5:9e:80:
                    70:62:d6:db:b9:91:90:8f:59:15:12:07:fe:c8:66:57:
                    4a:28:a2:ac:46:1a:04:7d:c1:20:35:93:2c:4b:8b:8b:
                    6f:3e:2d:5c:5c:14:41:ef:ad:41:cb:a7:67:15:e8:18:
                    9d:cb:44:5d:13:24:bb:53:0e:ca:3e:73:f5:1c:16:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:de:51:8c:e9:9f:d9:9e:a1:41:d5:18:1d:7b:a8:25:
        9a:78:8b:97:c3:36:57:26:66:1f:1b:41:cb:bd:b6:c7:
        89:d9:7a:a8:f1:f7:6d:b5:d8:46:29:d5:d1:a1:d1:41:
        92:d0:18:69:72:83:5c:b0:6b:45:c8:41:92:fd:80:57:
        14:dd:5a:f9:17:af:9f:17:f6:0f:c4:ee:0b:e6:d8:23:
        40:05:94:59:dc:d6:de:20:66:4e:d0:fb:9e:45:91:0a:
        38:e9:34:04:7c:b5:01:5a:79:36:43:44:5d:4e:bc:6d:
        4e:32:5f:b0:01:18:4e:19:74:2c:a4:24:ce:1c:03:bb:
        30:db:75:32:23:dc:c5:7d:dc:bd:27:b3:0e:7c:79:47:
        da:01:e8:fb:cd:9d:d9:f6:1b:41:71:26:d9:e2:af:0a:
        8d:d5:d9:78:66:c5:bd:2c:32:7d:e1:4b:bf:4b:5d:f6:
        9b:ea:32:11:32:e8:25:fc:c0:6e:ec:88:42:4b:4b:1d:
        af:f5:95:a6:65:26:27:32:20:d8:a1:88:bd:b2:13:a3:
        94:f1:ae:97:57:09:42:b6:6c:73:8b:d3:52:bd:62:eb:
        4f:5f:36:a6:2c:68:52:ca:b6:ea:5b:49:11:4e:d0:a5:
        b0:dd:13:28:5a:9d:52:cc:0e:7f:a9:83:5b:79:0a:7d
    Fingerprint (SHA-256):
        D0:4C:B0:B3:FA:60:E9:4B:61:FC:3F:CD:E6:CB:2D:2B:1E:39:97:5C:B7:7D:2A:D5:38:B8:6C:6B:90:AC:05:DF
    Fingerprint (SHA1):
        6E:00:69:36:C6:0B:81:EE:95:A0:06:75:C9:68:5E:83:D9:0D:E5:6D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #2741: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2742: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2743: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154078 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2744: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2745: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2746: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2747: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154079   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2748: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2749: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2750: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2751: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154080   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2752: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2753: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2754: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2755: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502154081   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2756: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2757: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2758: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2759: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502154082   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2760: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2761: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2762: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154078 (0x1dee435e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:26 2017
            Not After : Mon May 02 15:41:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:2d:1b:6f:58:0b:5f:f5:43:a1:88:fa:df:a1:98:3a:
                    67:55:77:e6:7e:27:50:a0:4e:31:f1:2a:cf:b0:8d:d7:
                    b5:dc:b5:32:0c:79:fa:a9:ff:b0:65:71:ff:b6:a0:20:
                    c7:31:83:9e:59:a7:3d:68:e3:8d:7a:41:57:ea:54:6d:
                    ee:36:5f:dc:8d:ee:82:8f:4c:6e:9c:97:a0:c0:01:48:
                    04:62:77:ee:f4:a5:cf:d1:51:73:5d:cf:31:f2:f6:bd:
                    4c:70:a6:02:93:93:fc:23:8b:9c:d8:10:2b:bd:bc:a4:
                    d9:b3:3b:21:b0:c4:c3:5c:6e:a3:a0:d7:f3:d7:72:d7:
                    fb:da:40:3b:40:ee:9c:1b:c0:5a:60:b5:54:d3:e4:65:
                    42:7e:a4:30:bb:2a:57:5c:4c:87:23:19:4b:35:d2:95:
                    9e:9b:a6:09:ea:25:66:ee:96:d5:37:28:11:a0:df:c1:
                    78:ab:fb:7c:1b:6d:8b:9a:0b:ea:87:40:e2:09:72:a1:
                    ad:5c:6b:23:6e:f9:8c:08:a3:bd:d6:ca:ac:df:16:9d:
                    e0:d9:d3:5f:38:b0:65:0d:98:a9:dc:86:9e:8d:4f:f1:
                    68:55:93:91:94:a2:da:e4:b3:80:04:b0:f2:02:2f:1b:
                    5f:cd:1a:e7:1c:be:00:8a:44:01:c6:37:16:3b:0f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:1f:44:52:88:e3:b1:90:08:75:7b:23:47:3b:a1:ea:
        aa:1c:4f:b3:98:14:f2:9c:75:a1:a0:8e:6b:0d:d8:7f:
        d1:9a:5d:f3:a9:0c:31:5c:a9:df:e4:bc:55:36:c1:fd:
        da:35:19:32:60:64:1a:f4:97:45:6c:04:18:68:e9:69:
        c3:eb:da:42:10:66:29:56:d7:bd:7c:c6:d6:05:4e:df:
        26:f0:de:5e:02:8c:4a:f0:50:ec:ba:bb:f0:06:89:d6:
        1f:50:e1:a3:25:7d:4b:ff:04:c5:16:cd:49:c1:0f:42:
        d6:3f:05:89:31:1a:a9:52:a5:7f:ff:c8:df:3b:3b:d3:
        e8:a1:ea:49:07:cf:88:be:1a:a9:2f:e3:6d:63:16:54:
        31:95:e2:19:ee:fd:07:72:dc:11:58:2b:11:f5:08:7e:
        1e:5c:84:dc:6a:5d:0d:e8:ad:16:59:17:0c:01:fa:87:
        6a:64:64:b7:5b:df:dd:d9:1f:41:89:9b:a1:ed:28:b4:
        4e:07:10:a9:c2:d6:ed:7d:26:71:aa:21:1c:9a:22:5d:
        08:0a:1d:2c:61:40:c0:84:75:4b:be:bc:52:97:a3:f5:
        26:48:40:bc:fa:d4:d1:a8:96:6c:9a:42:7b:35:88:31:
        bb:cf:7b:6a:76:9b:d1:c8:b5:5c:57:2f:fe:cf:e2:17
    Fingerprint (SHA-256):
        31:73:E0:DF:A6:D5:93:E3:AE:62:DC:29:B4:5C:E3:47:EB:C5:77:BE:BA:41:44:A7:A7:9B:23:90:65:AA:F5:83
    Fingerprint (SHA1):
        09:B2:7A:D4:09:56:AE:7A:51:C9:C7:AC:2A:0F:D6:41:90:DD:E5:C8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2763: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2764: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154079 (0x1dee435f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:27 2017
            Not After : Mon May 02 15:41:27 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:73:92:42:a7:7a:34:c7:6c:f6:0e:a0:bd:ac:c0:a2:
                    01:4b:4b:9d:96:2b:dd:e8:e2:ab:43:04:6b:b7:b6:49:
                    b1:e0:ed:04:7b:75:2d:36:c8:a4:61:84:a5:f2:f9:d4:
                    c7:8a:84:d7:4e:81:58:a7:49:d5:5d:9d:81:ba:4c:10:
                    ec:e5:be:c6:86:a1:4e:35:c5:2d:c5:c3:37:ba:0b:36:
                    da:ab:d5:d1:53:e5:02:79:8f:3b:e4:9a:6e:92:d1:3c:
                    d2:b5:66:1f:45:fc:09:85:94:be:96:25:fa:f3:71:1f:
                    a1:83:bc:60:1b:f5:51:a1:32:84:12:d7:3d:ce:51:61:
                    75:6f:c9:7a:99:77:d4:dc:94:e7:5b:e4:5f:02:41:d7:
                    4f:82:cb:99:cf:a4:6c:67:89:d7:6b:48:8f:73:a7:da:
                    12:ce:40:58:9a:6f:85:60:23:2f:8d:51:be:13:1e:37:
                    bc:eb:98:e5:4e:0e:72:02:e0:44:fb:59:b5:77:c5:b3:
                    8b:2c:5e:79:40:91:aa:54:89:f8:cc:18:95:c4:cc:d3:
                    b0:8b:63:01:d4:ff:2a:95:fd:69:54:48:a2:2d:ec:75:
                    cb:ec:e7:da:65:70:f9:72:9a:64:b6:cb:3c:4b:cc:00:
                    ed:24:8f:48:52:82:ed:c9:c8:df:8f:ec:44:f7:24:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:e0:91:d0:49:ac:1f:c7:de:cd:f6:32:91:bc:c0:d0:
        c2:4e:05:6f:7f:a6:1e:ce:19:46:1e:b4:7c:a2:cb:9e:
        40:d4:35:c3:fb:9f:f7:42:7b:6a:87:a5:62:9b:66:b7:
        4e:c9:27:12:54:d0:2b:4a:e0:a4:b8:49:47:be:e2:06:
        10:fe:64:ee:06:6a:bb:af:8f:cf:85:45:d6:67:6f:a8:
        39:78:79:cf:66:2c:7b:12:35:a3:d6:3c:fc:e9:0d:d6:
        9f:8d:0d:4e:1a:6d:28:17:7e:5a:4e:a3:03:65:9f:38:
        62:a0:db:27:c9:44:64:01:3f:6f:69:ad:23:01:c7:65:
        8a:94:a1:7e:b5:57:fc:70:4a:00:ac:4d:c3:42:a0:47:
        00:92:e7:0c:2c:c9:0b:8c:08:f1:db:ca:ae:2d:ca:58:
        c4:c9:41:4d:02:82:ae:d0:75:3a:56:45:a8:a0:bd:c2:
        62:d4:92:46:f2:43:16:e5:53:19:88:90:f8:3e:e9:33:
        e1:04:85:5d:f4:11:cd:15:f0:d9:59:7d:94:8b:53:e7:
        b3:07:78:02:a6:53:00:b9:6b:03:06:fb:a2:c5:8d:ab:
        1e:6c:50:9a:9b:03:35:6c:d2:e6:cb:e9:f9:5b:27:14:
        7b:40:b4:15:e2:ac:01:b3:57:13:b0:63:11:1e:0b:38
    Fingerprint (SHA-256):
        70:FC:7E:3E:CC:4D:4A:42:66:61:A2:53:EA:CA:F1:7C:ED:D8:36:4F:59:0C:DB:03:5F:16:1B:81:20:8E:1D:35
    Fingerprint (SHA1):
        0A:72:9A:A6:1D:E8:BD:AB:C6:E5:58:D5:64:A4:4D:1C:2E:22:9D:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2765: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2766: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154080 (0x1dee4360)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:41:28 2017
            Not After : Mon May 02 15:41:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:a8:11:22:9c:69:7b:e0:d5:98:90:22:9e:86:6c:a3:
                    53:22:a7:ab:d5:73:90:7c:3a:bf:6c:ed:d7:06:77:12:
                    da:52:3d:ea:ad:8f:38:ba:c8:65:48:92:3f:d8:4c:52:
                    ca:ce:7a:f5:a6:0d:8a:91:5f:b9:1f:de:d5:42:f5:42:
                    14:a3:17:7d:33:08:ab:30:70:dc:b0:12:2a:1c:c2:d5:
                    e0:cd:fc:0e:e5:c0:05:f4:5d:83:f6:19:7d:26:10:2d:
                    a7:58:72:61:a1:69:40:30:b8:00:28:fa:08:6a:25:77:
                    af:17:91:63:78:f1:e6:0c:bf:d7:65:cd:a5:11:6a:cf:
                    9b:e3:9b:71:c1:41:74:1e:51:e0:11:21:fb:b3:4b:1f:
                    66:b4:f5:25:70:cf:ca:fc:bb:0b:2e:63:34:d4:cd:6d:
                    52:78:b4:2c:47:48:79:e2:98:95:5d:05:10:2e:92:b0:
                    7a:b4:0e:5e:0d:39:07:a8:88:0d:a4:12:bf:a6:30:39:
                    04:a0:87:22:1d:76:a0:05:bf:f7:9f:b9:d0:d1:b9:41:
                    c1:a0:f5:87:96:b3:64:73:e5:26:69:a9:f2:e3:07:8a:
                    ba:11:04:17:0e:3b:ba:e4:7f:11:24:86:2d:c6:77:78:
                    f2:a3:62:a8:4c:c6:76:8c:de:0c:8e:38:a7:fc:f8:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:09:f8:b7:b7:5f:2b:75:d8:97:35:62:2b:c5:9e:71:
        13:49:5a:39:e2:01:ed:20:94:86:fd:89:03:65:1a:63:
        7a:17:a4:e3:72:15:e5:d5:6c:aa:67:55:95:3b:6e:e3:
        8f:a7:df:c5:2b:9e:79:5b:29:35:96:9c:4f:9e:f5:04:
        53:6a:18:2f:d8:3d:68:2e:60:28:88:6d:4d:e0:76:65:
        bc:3c:7e:ae:1a:cd:3a:24:f5:dd:6a:c7:12:c6:11:0a:
        1c:f7:b2:fb:dd:de:6f:bf:aa:5f:a9:c8:20:08:ad:b3:
        1a:60:19:0f:cf:ea:d5:7b:f4:44:f6:aa:7f:8d:98:bf:
        e1:85:25:19:f2:dc:ec:14:de:79:98:20:42:f9:85:9b:
        34:54:6d:f0:08:5e:80:48:62:48:c3:87:69:e7:0d:b6:
        a9:c9:40:ef:e2:b3:d0:96:bb:ee:c6:b4:18:68:75:a5:
        24:51:36:24:bc:11:13:40:c3:40:fc:86:02:ec:1c:d4:
        b6:54:8e:46:8f:b3:de:be:1f:11:35:f8:44:e8:7e:23:
        b2:47:71:c0:75:32:13:65:84:e8:d1:ea:75:c2:10:01:
        6a:b7:ab:01:d9:d3:eb:93:ff:ba:98:44:82:98:af:d5:
        44:6d:3a:d3:4b:1c:32:f8:a8:fd:ce:df:d3:8d:64:ca
    Fingerprint (SHA-256):
        51:AB:96:1D:42:14:76:90:66:03:BC:5C:31:9D:CD:B5:3A:C6:7F:E0:13:1F:B8:53:09:E2:EF:E5:81:47:17:C6
    Fingerprint (SHA1):
        8F:79:E7:F7:40:94:DB:A3:C5:A2:19:03:59:3A:8D:10:8C:8B:D8:23
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2767: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2768: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2769: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #2770: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2771: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154078 (0x1dee435e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:26 2017
            Not After : Mon May 02 15:41:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:2d:1b:6f:58:0b:5f:f5:43:a1:88:fa:df:a1:98:3a:
                    67:55:77:e6:7e:27:50:a0:4e:31:f1:2a:cf:b0:8d:d7:
                    b5:dc:b5:32:0c:79:fa:a9:ff:b0:65:71:ff:b6:a0:20:
                    c7:31:83:9e:59:a7:3d:68:e3:8d:7a:41:57:ea:54:6d:
                    ee:36:5f:dc:8d:ee:82:8f:4c:6e:9c:97:a0:c0:01:48:
                    04:62:77:ee:f4:a5:cf:d1:51:73:5d:cf:31:f2:f6:bd:
                    4c:70:a6:02:93:93:fc:23:8b:9c:d8:10:2b:bd:bc:a4:
                    d9:b3:3b:21:b0:c4:c3:5c:6e:a3:a0:d7:f3:d7:72:d7:
                    fb:da:40:3b:40:ee:9c:1b:c0:5a:60:b5:54:d3:e4:65:
                    42:7e:a4:30:bb:2a:57:5c:4c:87:23:19:4b:35:d2:95:
                    9e:9b:a6:09:ea:25:66:ee:96:d5:37:28:11:a0:df:c1:
                    78:ab:fb:7c:1b:6d:8b:9a:0b:ea:87:40:e2:09:72:a1:
                    ad:5c:6b:23:6e:f9:8c:08:a3:bd:d6:ca:ac:df:16:9d:
                    e0:d9:d3:5f:38:b0:65:0d:98:a9:dc:86:9e:8d:4f:f1:
                    68:55:93:91:94:a2:da:e4:b3:80:04:b0:f2:02:2f:1b:
                    5f:cd:1a:e7:1c:be:00:8a:44:01:c6:37:16:3b:0f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:1f:44:52:88:e3:b1:90:08:75:7b:23:47:3b:a1:ea:
        aa:1c:4f:b3:98:14:f2:9c:75:a1:a0:8e:6b:0d:d8:7f:
        d1:9a:5d:f3:a9:0c:31:5c:a9:df:e4:bc:55:36:c1:fd:
        da:35:19:32:60:64:1a:f4:97:45:6c:04:18:68:e9:69:
        c3:eb:da:42:10:66:29:56:d7:bd:7c:c6:d6:05:4e:df:
        26:f0:de:5e:02:8c:4a:f0:50:ec:ba:bb:f0:06:89:d6:
        1f:50:e1:a3:25:7d:4b:ff:04:c5:16:cd:49:c1:0f:42:
        d6:3f:05:89:31:1a:a9:52:a5:7f:ff:c8:df:3b:3b:d3:
        e8:a1:ea:49:07:cf:88:be:1a:a9:2f:e3:6d:63:16:54:
        31:95:e2:19:ee:fd:07:72:dc:11:58:2b:11:f5:08:7e:
        1e:5c:84:dc:6a:5d:0d:e8:ad:16:59:17:0c:01:fa:87:
        6a:64:64:b7:5b:df:dd:d9:1f:41:89:9b:a1:ed:28:b4:
        4e:07:10:a9:c2:d6:ed:7d:26:71:aa:21:1c:9a:22:5d:
        08:0a:1d:2c:61:40:c0:84:75:4b:be:bc:52:97:a3:f5:
        26:48:40:bc:fa:d4:d1:a8:96:6c:9a:42:7b:35:88:31:
        bb:cf:7b:6a:76:9b:d1:c8:b5:5c:57:2f:fe:cf:e2:17
    Fingerprint (SHA-256):
        31:73:E0:DF:A6:D5:93:E3:AE:62:DC:29:B4:5C:E3:47:EB:C5:77:BE:BA:41:44:A7:A7:9B:23:90:65:AA:F5:83
    Fingerprint (SHA1):
        09:B2:7A:D4:09:56:AE:7A:51:C9:C7:AC:2A:0F:D6:41:90:DD:E5:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2772: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2773: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154079 (0x1dee435f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:27 2017
            Not After : Mon May 02 15:41:27 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:73:92:42:a7:7a:34:c7:6c:f6:0e:a0:bd:ac:c0:a2:
                    01:4b:4b:9d:96:2b:dd:e8:e2:ab:43:04:6b:b7:b6:49:
                    b1:e0:ed:04:7b:75:2d:36:c8:a4:61:84:a5:f2:f9:d4:
                    c7:8a:84:d7:4e:81:58:a7:49:d5:5d:9d:81:ba:4c:10:
                    ec:e5:be:c6:86:a1:4e:35:c5:2d:c5:c3:37:ba:0b:36:
                    da:ab:d5:d1:53:e5:02:79:8f:3b:e4:9a:6e:92:d1:3c:
                    d2:b5:66:1f:45:fc:09:85:94:be:96:25:fa:f3:71:1f:
                    a1:83:bc:60:1b:f5:51:a1:32:84:12:d7:3d:ce:51:61:
                    75:6f:c9:7a:99:77:d4:dc:94:e7:5b:e4:5f:02:41:d7:
                    4f:82:cb:99:cf:a4:6c:67:89:d7:6b:48:8f:73:a7:da:
                    12:ce:40:58:9a:6f:85:60:23:2f:8d:51:be:13:1e:37:
                    bc:eb:98:e5:4e:0e:72:02:e0:44:fb:59:b5:77:c5:b3:
                    8b:2c:5e:79:40:91:aa:54:89:f8:cc:18:95:c4:cc:d3:
                    b0:8b:63:01:d4:ff:2a:95:fd:69:54:48:a2:2d:ec:75:
                    cb:ec:e7:da:65:70:f9:72:9a:64:b6:cb:3c:4b:cc:00:
                    ed:24:8f:48:52:82:ed:c9:c8:df:8f:ec:44:f7:24:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:e0:91:d0:49:ac:1f:c7:de:cd:f6:32:91:bc:c0:d0:
        c2:4e:05:6f:7f:a6:1e:ce:19:46:1e:b4:7c:a2:cb:9e:
        40:d4:35:c3:fb:9f:f7:42:7b:6a:87:a5:62:9b:66:b7:
        4e:c9:27:12:54:d0:2b:4a:e0:a4:b8:49:47:be:e2:06:
        10:fe:64:ee:06:6a:bb:af:8f:cf:85:45:d6:67:6f:a8:
        39:78:79:cf:66:2c:7b:12:35:a3:d6:3c:fc:e9:0d:d6:
        9f:8d:0d:4e:1a:6d:28:17:7e:5a:4e:a3:03:65:9f:38:
        62:a0:db:27:c9:44:64:01:3f:6f:69:ad:23:01:c7:65:
        8a:94:a1:7e:b5:57:fc:70:4a:00:ac:4d:c3:42:a0:47:
        00:92:e7:0c:2c:c9:0b:8c:08:f1:db:ca:ae:2d:ca:58:
        c4:c9:41:4d:02:82:ae:d0:75:3a:56:45:a8:a0:bd:c2:
        62:d4:92:46:f2:43:16:e5:53:19:88:90:f8:3e:e9:33:
        e1:04:85:5d:f4:11:cd:15:f0:d9:59:7d:94:8b:53:e7:
        b3:07:78:02:a6:53:00:b9:6b:03:06:fb:a2:c5:8d:ab:
        1e:6c:50:9a:9b:03:35:6c:d2:e6:cb:e9:f9:5b:27:14:
        7b:40:b4:15:e2:ac:01:b3:57:13:b0:63:11:1e:0b:38
    Fingerprint (SHA-256):
        70:FC:7E:3E:CC:4D:4A:42:66:61:A2:53:EA:CA:F1:7C:ED:D8:36:4F:59:0C:DB:03:5F:16:1B:81:20:8E:1D:35
    Fingerprint (SHA1):
        0A:72:9A:A6:1D:E8:BD:AB:C6:E5:58:D5:64:A4:4D:1C:2E:22:9D:EF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2774: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2775: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154080 (0x1dee4360)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:41:28 2017
            Not After : Mon May 02 15:41:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:a8:11:22:9c:69:7b:e0:d5:98:90:22:9e:86:6c:a3:
                    53:22:a7:ab:d5:73:90:7c:3a:bf:6c:ed:d7:06:77:12:
                    da:52:3d:ea:ad:8f:38:ba:c8:65:48:92:3f:d8:4c:52:
                    ca:ce:7a:f5:a6:0d:8a:91:5f:b9:1f:de:d5:42:f5:42:
                    14:a3:17:7d:33:08:ab:30:70:dc:b0:12:2a:1c:c2:d5:
                    e0:cd:fc:0e:e5:c0:05:f4:5d:83:f6:19:7d:26:10:2d:
                    a7:58:72:61:a1:69:40:30:b8:00:28:fa:08:6a:25:77:
                    af:17:91:63:78:f1:e6:0c:bf:d7:65:cd:a5:11:6a:cf:
                    9b:e3:9b:71:c1:41:74:1e:51:e0:11:21:fb:b3:4b:1f:
                    66:b4:f5:25:70:cf:ca:fc:bb:0b:2e:63:34:d4:cd:6d:
                    52:78:b4:2c:47:48:79:e2:98:95:5d:05:10:2e:92:b0:
                    7a:b4:0e:5e:0d:39:07:a8:88:0d:a4:12:bf:a6:30:39:
                    04:a0:87:22:1d:76:a0:05:bf:f7:9f:b9:d0:d1:b9:41:
                    c1:a0:f5:87:96:b3:64:73:e5:26:69:a9:f2:e3:07:8a:
                    ba:11:04:17:0e:3b:ba:e4:7f:11:24:86:2d:c6:77:78:
                    f2:a3:62:a8:4c:c6:76:8c:de:0c:8e:38:a7:fc:f8:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:09:f8:b7:b7:5f:2b:75:d8:97:35:62:2b:c5:9e:71:
        13:49:5a:39:e2:01:ed:20:94:86:fd:89:03:65:1a:63:
        7a:17:a4:e3:72:15:e5:d5:6c:aa:67:55:95:3b:6e:e3:
        8f:a7:df:c5:2b:9e:79:5b:29:35:96:9c:4f:9e:f5:04:
        53:6a:18:2f:d8:3d:68:2e:60:28:88:6d:4d:e0:76:65:
        bc:3c:7e:ae:1a:cd:3a:24:f5:dd:6a:c7:12:c6:11:0a:
        1c:f7:b2:fb:dd:de:6f:bf:aa:5f:a9:c8:20:08:ad:b3:
        1a:60:19:0f:cf:ea:d5:7b:f4:44:f6:aa:7f:8d:98:bf:
        e1:85:25:19:f2:dc:ec:14:de:79:98:20:42:f9:85:9b:
        34:54:6d:f0:08:5e:80:48:62:48:c3:87:69:e7:0d:b6:
        a9:c9:40:ef:e2:b3:d0:96:bb:ee:c6:b4:18:68:75:a5:
        24:51:36:24:bc:11:13:40:c3:40:fc:86:02:ec:1c:d4:
        b6:54:8e:46:8f:b3:de:be:1f:11:35:f8:44:e8:7e:23:
        b2:47:71:c0:75:32:13:65:84:e8:d1:ea:75:c2:10:01:
        6a:b7:ab:01:d9:d3:eb:93:ff:ba:98:44:82:98:af:d5:
        44:6d:3a:d3:4b:1c:32:f8:a8:fd:ce:df:d3:8d:64:ca
    Fingerprint (SHA-256):
        51:AB:96:1D:42:14:76:90:66:03:BC:5C:31:9D:CD:B5:3A:C6:7F:E0:13:1F:B8:53:09:E2:EF:E5:81:47:17:C6
    Fingerprint (SHA1):
        8F:79:E7:F7:40:94:DB:A3:C5:A2:19:03:59:3A:8D:10:8C:8B:D8:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2776: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2777: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154078 (0x1dee435e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:26 2017
            Not After : Mon May 02 15:41:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:2d:1b:6f:58:0b:5f:f5:43:a1:88:fa:df:a1:98:3a:
                    67:55:77:e6:7e:27:50:a0:4e:31:f1:2a:cf:b0:8d:d7:
                    b5:dc:b5:32:0c:79:fa:a9:ff:b0:65:71:ff:b6:a0:20:
                    c7:31:83:9e:59:a7:3d:68:e3:8d:7a:41:57:ea:54:6d:
                    ee:36:5f:dc:8d:ee:82:8f:4c:6e:9c:97:a0:c0:01:48:
                    04:62:77:ee:f4:a5:cf:d1:51:73:5d:cf:31:f2:f6:bd:
                    4c:70:a6:02:93:93:fc:23:8b:9c:d8:10:2b:bd:bc:a4:
                    d9:b3:3b:21:b0:c4:c3:5c:6e:a3:a0:d7:f3:d7:72:d7:
                    fb:da:40:3b:40:ee:9c:1b:c0:5a:60:b5:54:d3:e4:65:
                    42:7e:a4:30:bb:2a:57:5c:4c:87:23:19:4b:35:d2:95:
                    9e:9b:a6:09:ea:25:66:ee:96:d5:37:28:11:a0:df:c1:
                    78:ab:fb:7c:1b:6d:8b:9a:0b:ea:87:40:e2:09:72:a1:
                    ad:5c:6b:23:6e:f9:8c:08:a3:bd:d6:ca:ac:df:16:9d:
                    e0:d9:d3:5f:38:b0:65:0d:98:a9:dc:86:9e:8d:4f:f1:
                    68:55:93:91:94:a2:da:e4:b3:80:04:b0:f2:02:2f:1b:
                    5f:cd:1a:e7:1c:be:00:8a:44:01:c6:37:16:3b:0f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:1f:44:52:88:e3:b1:90:08:75:7b:23:47:3b:a1:ea:
        aa:1c:4f:b3:98:14:f2:9c:75:a1:a0:8e:6b:0d:d8:7f:
        d1:9a:5d:f3:a9:0c:31:5c:a9:df:e4:bc:55:36:c1:fd:
        da:35:19:32:60:64:1a:f4:97:45:6c:04:18:68:e9:69:
        c3:eb:da:42:10:66:29:56:d7:bd:7c:c6:d6:05:4e:df:
        26:f0:de:5e:02:8c:4a:f0:50:ec:ba:bb:f0:06:89:d6:
        1f:50:e1:a3:25:7d:4b:ff:04:c5:16:cd:49:c1:0f:42:
        d6:3f:05:89:31:1a:a9:52:a5:7f:ff:c8:df:3b:3b:d3:
        e8:a1:ea:49:07:cf:88:be:1a:a9:2f:e3:6d:63:16:54:
        31:95:e2:19:ee:fd:07:72:dc:11:58:2b:11:f5:08:7e:
        1e:5c:84:dc:6a:5d:0d:e8:ad:16:59:17:0c:01:fa:87:
        6a:64:64:b7:5b:df:dd:d9:1f:41:89:9b:a1:ed:28:b4:
        4e:07:10:a9:c2:d6:ed:7d:26:71:aa:21:1c:9a:22:5d:
        08:0a:1d:2c:61:40:c0:84:75:4b:be:bc:52:97:a3:f5:
        26:48:40:bc:fa:d4:d1:a8:96:6c:9a:42:7b:35:88:31:
        bb:cf:7b:6a:76:9b:d1:c8:b5:5c:57:2f:fe:cf:e2:17
    Fingerprint (SHA-256):
        31:73:E0:DF:A6:D5:93:E3:AE:62:DC:29:B4:5C:E3:47:EB:C5:77:BE:BA:41:44:A7:A7:9B:23:90:65:AA:F5:83
    Fingerprint (SHA1):
        09:B2:7A:D4:09:56:AE:7A:51:C9:C7:AC:2A:0F:D6:41:90:DD:E5:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2778: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154078 (0x1dee435e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:26 2017
            Not After : Mon May 02 15:41:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:2d:1b:6f:58:0b:5f:f5:43:a1:88:fa:df:a1:98:3a:
                    67:55:77:e6:7e:27:50:a0:4e:31:f1:2a:cf:b0:8d:d7:
                    b5:dc:b5:32:0c:79:fa:a9:ff:b0:65:71:ff:b6:a0:20:
                    c7:31:83:9e:59:a7:3d:68:e3:8d:7a:41:57:ea:54:6d:
                    ee:36:5f:dc:8d:ee:82:8f:4c:6e:9c:97:a0:c0:01:48:
                    04:62:77:ee:f4:a5:cf:d1:51:73:5d:cf:31:f2:f6:bd:
                    4c:70:a6:02:93:93:fc:23:8b:9c:d8:10:2b:bd:bc:a4:
                    d9:b3:3b:21:b0:c4:c3:5c:6e:a3:a0:d7:f3:d7:72:d7:
                    fb:da:40:3b:40:ee:9c:1b:c0:5a:60:b5:54:d3:e4:65:
                    42:7e:a4:30:bb:2a:57:5c:4c:87:23:19:4b:35:d2:95:
                    9e:9b:a6:09:ea:25:66:ee:96:d5:37:28:11:a0:df:c1:
                    78:ab:fb:7c:1b:6d:8b:9a:0b:ea:87:40:e2:09:72:a1:
                    ad:5c:6b:23:6e:f9:8c:08:a3:bd:d6:ca:ac:df:16:9d:
                    e0:d9:d3:5f:38:b0:65:0d:98:a9:dc:86:9e:8d:4f:f1:
                    68:55:93:91:94:a2:da:e4:b3:80:04:b0:f2:02:2f:1b:
                    5f:cd:1a:e7:1c:be:00:8a:44:01:c6:37:16:3b:0f:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:1f:44:52:88:e3:b1:90:08:75:7b:23:47:3b:a1:ea:
        aa:1c:4f:b3:98:14:f2:9c:75:a1:a0:8e:6b:0d:d8:7f:
        d1:9a:5d:f3:a9:0c:31:5c:a9:df:e4:bc:55:36:c1:fd:
        da:35:19:32:60:64:1a:f4:97:45:6c:04:18:68:e9:69:
        c3:eb:da:42:10:66:29:56:d7:bd:7c:c6:d6:05:4e:df:
        26:f0:de:5e:02:8c:4a:f0:50:ec:ba:bb:f0:06:89:d6:
        1f:50:e1:a3:25:7d:4b:ff:04:c5:16:cd:49:c1:0f:42:
        d6:3f:05:89:31:1a:a9:52:a5:7f:ff:c8:df:3b:3b:d3:
        e8:a1:ea:49:07:cf:88:be:1a:a9:2f:e3:6d:63:16:54:
        31:95:e2:19:ee:fd:07:72:dc:11:58:2b:11:f5:08:7e:
        1e:5c:84:dc:6a:5d:0d:e8:ad:16:59:17:0c:01:fa:87:
        6a:64:64:b7:5b:df:dd:d9:1f:41:89:9b:a1:ed:28:b4:
        4e:07:10:a9:c2:d6:ed:7d:26:71:aa:21:1c:9a:22:5d:
        08:0a:1d:2c:61:40:c0:84:75:4b:be:bc:52:97:a3:f5:
        26:48:40:bc:fa:d4:d1:a8:96:6c:9a:42:7b:35:88:31:
        bb:cf:7b:6a:76:9b:d1:c8:b5:5c:57:2f:fe:cf:e2:17
    Fingerprint (SHA-256):
        31:73:E0:DF:A6:D5:93:E3:AE:62:DC:29:B4:5C:E3:47:EB:C5:77:BE:BA:41:44:A7:A7:9B:23:90:65:AA:F5:83
    Fingerprint (SHA1):
        09:B2:7A:D4:09:56:AE:7A:51:C9:C7:AC:2A:0F:D6:41:90:DD:E5:C8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2779: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154079 (0x1dee435f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:27 2017
            Not After : Mon May 02 15:41:27 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:73:92:42:a7:7a:34:c7:6c:f6:0e:a0:bd:ac:c0:a2:
                    01:4b:4b:9d:96:2b:dd:e8:e2:ab:43:04:6b:b7:b6:49:
                    b1:e0:ed:04:7b:75:2d:36:c8:a4:61:84:a5:f2:f9:d4:
                    c7:8a:84:d7:4e:81:58:a7:49:d5:5d:9d:81:ba:4c:10:
                    ec:e5:be:c6:86:a1:4e:35:c5:2d:c5:c3:37:ba:0b:36:
                    da:ab:d5:d1:53:e5:02:79:8f:3b:e4:9a:6e:92:d1:3c:
                    d2:b5:66:1f:45:fc:09:85:94:be:96:25:fa:f3:71:1f:
                    a1:83:bc:60:1b:f5:51:a1:32:84:12:d7:3d:ce:51:61:
                    75:6f:c9:7a:99:77:d4:dc:94:e7:5b:e4:5f:02:41:d7:
                    4f:82:cb:99:cf:a4:6c:67:89:d7:6b:48:8f:73:a7:da:
                    12:ce:40:58:9a:6f:85:60:23:2f:8d:51:be:13:1e:37:
                    bc:eb:98:e5:4e:0e:72:02:e0:44:fb:59:b5:77:c5:b3:
                    8b:2c:5e:79:40:91:aa:54:89:f8:cc:18:95:c4:cc:d3:
                    b0:8b:63:01:d4:ff:2a:95:fd:69:54:48:a2:2d:ec:75:
                    cb:ec:e7:da:65:70:f9:72:9a:64:b6:cb:3c:4b:cc:00:
                    ed:24:8f:48:52:82:ed:c9:c8:df:8f:ec:44:f7:24:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:e0:91:d0:49:ac:1f:c7:de:cd:f6:32:91:bc:c0:d0:
        c2:4e:05:6f:7f:a6:1e:ce:19:46:1e:b4:7c:a2:cb:9e:
        40:d4:35:c3:fb:9f:f7:42:7b:6a:87:a5:62:9b:66:b7:
        4e:c9:27:12:54:d0:2b:4a:e0:a4:b8:49:47:be:e2:06:
        10:fe:64:ee:06:6a:bb:af:8f:cf:85:45:d6:67:6f:a8:
        39:78:79:cf:66:2c:7b:12:35:a3:d6:3c:fc:e9:0d:d6:
        9f:8d:0d:4e:1a:6d:28:17:7e:5a:4e:a3:03:65:9f:38:
        62:a0:db:27:c9:44:64:01:3f:6f:69:ad:23:01:c7:65:
        8a:94:a1:7e:b5:57:fc:70:4a:00:ac:4d:c3:42:a0:47:
        00:92:e7:0c:2c:c9:0b:8c:08:f1:db:ca:ae:2d:ca:58:
        c4:c9:41:4d:02:82:ae:d0:75:3a:56:45:a8:a0:bd:c2:
        62:d4:92:46:f2:43:16:e5:53:19:88:90:f8:3e:e9:33:
        e1:04:85:5d:f4:11:cd:15:f0:d9:59:7d:94:8b:53:e7:
        b3:07:78:02:a6:53:00:b9:6b:03:06:fb:a2:c5:8d:ab:
        1e:6c:50:9a:9b:03:35:6c:d2:e6:cb:e9:f9:5b:27:14:
        7b:40:b4:15:e2:ac:01:b3:57:13:b0:63:11:1e:0b:38
    Fingerprint (SHA-256):
        70:FC:7E:3E:CC:4D:4A:42:66:61:A2:53:EA:CA:F1:7C:ED:D8:36:4F:59:0C:DB:03:5F:16:1B:81:20:8E:1D:35
    Fingerprint (SHA1):
        0A:72:9A:A6:1D:E8:BD:AB:C6:E5:58:D5:64:A4:4D:1C:2E:22:9D:EF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2780: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154079 (0x1dee435f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:41:27 2017
            Not After : Mon May 02 15:41:27 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:73:92:42:a7:7a:34:c7:6c:f6:0e:a0:bd:ac:c0:a2:
                    01:4b:4b:9d:96:2b:dd:e8:e2:ab:43:04:6b:b7:b6:49:
                    b1:e0:ed:04:7b:75:2d:36:c8:a4:61:84:a5:f2:f9:d4:
                    c7:8a:84:d7:4e:81:58:a7:49:d5:5d:9d:81:ba:4c:10:
                    ec:e5:be:c6:86:a1:4e:35:c5:2d:c5:c3:37:ba:0b:36:
                    da:ab:d5:d1:53:e5:02:79:8f:3b:e4:9a:6e:92:d1:3c:
                    d2:b5:66:1f:45:fc:09:85:94:be:96:25:fa:f3:71:1f:
                    a1:83:bc:60:1b:f5:51:a1:32:84:12:d7:3d:ce:51:61:
                    75:6f:c9:7a:99:77:d4:dc:94:e7:5b:e4:5f:02:41:d7:
                    4f:82:cb:99:cf:a4:6c:67:89:d7:6b:48:8f:73:a7:da:
                    12:ce:40:58:9a:6f:85:60:23:2f:8d:51:be:13:1e:37:
                    bc:eb:98:e5:4e:0e:72:02:e0:44:fb:59:b5:77:c5:b3:
                    8b:2c:5e:79:40:91:aa:54:89:f8:cc:18:95:c4:cc:d3:
                    b0:8b:63:01:d4:ff:2a:95:fd:69:54:48:a2:2d:ec:75:
                    cb:ec:e7:da:65:70:f9:72:9a:64:b6:cb:3c:4b:cc:00:
                    ed:24:8f:48:52:82:ed:c9:c8:df:8f:ec:44:f7:24:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:e0:91:d0:49:ac:1f:c7:de:cd:f6:32:91:bc:c0:d0:
        c2:4e:05:6f:7f:a6:1e:ce:19:46:1e:b4:7c:a2:cb:9e:
        40:d4:35:c3:fb:9f:f7:42:7b:6a:87:a5:62:9b:66:b7:
        4e:c9:27:12:54:d0:2b:4a:e0:a4:b8:49:47:be:e2:06:
        10:fe:64:ee:06:6a:bb:af:8f:cf:85:45:d6:67:6f:a8:
        39:78:79:cf:66:2c:7b:12:35:a3:d6:3c:fc:e9:0d:d6:
        9f:8d:0d:4e:1a:6d:28:17:7e:5a:4e:a3:03:65:9f:38:
        62:a0:db:27:c9:44:64:01:3f:6f:69:ad:23:01:c7:65:
        8a:94:a1:7e:b5:57:fc:70:4a:00:ac:4d:c3:42:a0:47:
        00:92:e7:0c:2c:c9:0b:8c:08:f1:db:ca:ae:2d:ca:58:
        c4:c9:41:4d:02:82:ae:d0:75:3a:56:45:a8:a0:bd:c2:
        62:d4:92:46:f2:43:16:e5:53:19:88:90:f8:3e:e9:33:
        e1:04:85:5d:f4:11:cd:15:f0:d9:59:7d:94:8b:53:e7:
        b3:07:78:02:a6:53:00:b9:6b:03:06:fb:a2:c5:8d:ab:
        1e:6c:50:9a:9b:03:35:6c:d2:e6:cb:e9:f9:5b:27:14:
        7b:40:b4:15:e2:ac:01:b3:57:13:b0:63:11:1e:0b:38
    Fingerprint (SHA-256):
        70:FC:7E:3E:CC:4D:4A:42:66:61:A2:53:EA:CA:F1:7C:ED:D8:36:4F:59:0C:DB:03:5F:16:1B:81:20:8E:1D:35
    Fingerprint (SHA1):
        0A:72:9A:A6:1D:E8:BD:AB:C6:E5:58:D5:64:A4:4D:1C:2E:22:9D:EF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2781: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154080 (0x1dee4360)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:41:28 2017
            Not After : Mon May 02 15:41:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:a8:11:22:9c:69:7b:e0:d5:98:90:22:9e:86:6c:a3:
                    53:22:a7:ab:d5:73:90:7c:3a:bf:6c:ed:d7:06:77:12:
                    da:52:3d:ea:ad:8f:38:ba:c8:65:48:92:3f:d8:4c:52:
                    ca:ce:7a:f5:a6:0d:8a:91:5f:b9:1f:de:d5:42:f5:42:
                    14:a3:17:7d:33:08:ab:30:70:dc:b0:12:2a:1c:c2:d5:
                    e0:cd:fc:0e:e5:c0:05:f4:5d:83:f6:19:7d:26:10:2d:
                    a7:58:72:61:a1:69:40:30:b8:00:28:fa:08:6a:25:77:
                    af:17:91:63:78:f1:e6:0c:bf:d7:65:cd:a5:11:6a:cf:
                    9b:e3:9b:71:c1:41:74:1e:51:e0:11:21:fb:b3:4b:1f:
                    66:b4:f5:25:70:cf:ca:fc:bb:0b:2e:63:34:d4:cd:6d:
                    52:78:b4:2c:47:48:79:e2:98:95:5d:05:10:2e:92:b0:
                    7a:b4:0e:5e:0d:39:07:a8:88:0d:a4:12:bf:a6:30:39:
                    04:a0:87:22:1d:76:a0:05:bf:f7:9f:b9:d0:d1:b9:41:
                    c1:a0:f5:87:96:b3:64:73:e5:26:69:a9:f2:e3:07:8a:
                    ba:11:04:17:0e:3b:ba:e4:7f:11:24:86:2d:c6:77:78:
                    f2:a3:62:a8:4c:c6:76:8c:de:0c:8e:38:a7:fc:f8:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:09:f8:b7:b7:5f:2b:75:d8:97:35:62:2b:c5:9e:71:
        13:49:5a:39:e2:01:ed:20:94:86:fd:89:03:65:1a:63:
        7a:17:a4:e3:72:15:e5:d5:6c:aa:67:55:95:3b:6e:e3:
        8f:a7:df:c5:2b:9e:79:5b:29:35:96:9c:4f:9e:f5:04:
        53:6a:18:2f:d8:3d:68:2e:60:28:88:6d:4d:e0:76:65:
        bc:3c:7e:ae:1a:cd:3a:24:f5:dd:6a:c7:12:c6:11:0a:
        1c:f7:b2:fb:dd:de:6f:bf:aa:5f:a9:c8:20:08:ad:b3:
        1a:60:19:0f:cf:ea:d5:7b:f4:44:f6:aa:7f:8d:98:bf:
        e1:85:25:19:f2:dc:ec:14:de:79:98:20:42:f9:85:9b:
        34:54:6d:f0:08:5e:80:48:62:48:c3:87:69:e7:0d:b6:
        a9:c9:40:ef:e2:b3:d0:96:bb:ee:c6:b4:18:68:75:a5:
        24:51:36:24:bc:11:13:40:c3:40:fc:86:02:ec:1c:d4:
        b6:54:8e:46:8f:b3:de:be:1f:11:35:f8:44:e8:7e:23:
        b2:47:71:c0:75:32:13:65:84:e8:d1:ea:75:c2:10:01:
        6a:b7:ab:01:d9:d3:eb:93:ff:ba:98:44:82:98:af:d5:
        44:6d:3a:d3:4b:1c:32:f8:a8:fd:ce:df:d3:8d:64:ca
    Fingerprint (SHA-256):
        51:AB:96:1D:42:14:76:90:66:03:BC:5C:31:9D:CD:B5:3A:C6:7F:E0:13:1F:B8:53:09:E2:EF:E5:81:47:17:C6
    Fingerprint (SHA1):
        8F:79:E7:F7:40:94:DB:A3:C5:A2:19:03:59:3A:8D:10:8C:8B:D8:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2782: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154080 (0x1dee4360)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:41:28 2017
            Not After : Mon May 02 15:41:28 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:a8:11:22:9c:69:7b:e0:d5:98:90:22:9e:86:6c:a3:
                    53:22:a7:ab:d5:73:90:7c:3a:bf:6c:ed:d7:06:77:12:
                    da:52:3d:ea:ad:8f:38:ba:c8:65:48:92:3f:d8:4c:52:
                    ca:ce:7a:f5:a6:0d:8a:91:5f:b9:1f:de:d5:42:f5:42:
                    14:a3:17:7d:33:08:ab:30:70:dc:b0:12:2a:1c:c2:d5:
                    e0:cd:fc:0e:e5:c0:05:f4:5d:83:f6:19:7d:26:10:2d:
                    a7:58:72:61:a1:69:40:30:b8:00:28:fa:08:6a:25:77:
                    af:17:91:63:78:f1:e6:0c:bf:d7:65:cd:a5:11:6a:cf:
                    9b:e3:9b:71:c1:41:74:1e:51:e0:11:21:fb:b3:4b:1f:
                    66:b4:f5:25:70:cf:ca:fc:bb:0b:2e:63:34:d4:cd:6d:
                    52:78:b4:2c:47:48:79:e2:98:95:5d:05:10:2e:92:b0:
                    7a:b4:0e:5e:0d:39:07:a8:88:0d:a4:12:bf:a6:30:39:
                    04:a0:87:22:1d:76:a0:05:bf:f7:9f:b9:d0:d1:b9:41:
                    c1:a0:f5:87:96:b3:64:73:e5:26:69:a9:f2:e3:07:8a:
                    ba:11:04:17:0e:3b:ba:e4:7f:11:24:86:2d:c6:77:78:
                    f2:a3:62:a8:4c:c6:76:8c:de:0c:8e:38:a7:fc:f8:5f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a3:09:f8:b7:b7:5f:2b:75:d8:97:35:62:2b:c5:9e:71:
        13:49:5a:39:e2:01:ed:20:94:86:fd:89:03:65:1a:63:
        7a:17:a4:e3:72:15:e5:d5:6c:aa:67:55:95:3b:6e:e3:
        8f:a7:df:c5:2b:9e:79:5b:29:35:96:9c:4f:9e:f5:04:
        53:6a:18:2f:d8:3d:68:2e:60:28:88:6d:4d:e0:76:65:
        bc:3c:7e:ae:1a:cd:3a:24:f5:dd:6a:c7:12:c6:11:0a:
        1c:f7:b2:fb:dd:de:6f:bf:aa:5f:a9:c8:20:08:ad:b3:
        1a:60:19:0f:cf:ea:d5:7b:f4:44:f6:aa:7f:8d:98:bf:
        e1:85:25:19:f2:dc:ec:14:de:79:98:20:42:f9:85:9b:
        34:54:6d:f0:08:5e:80:48:62:48:c3:87:69:e7:0d:b6:
        a9:c9:40:ef:e2:b3:d0:96:bb:ee:c6:b4:18:68:75:a5:
        24:51:36:24:bc:11:13:40:c3:40:fc:86:02:ec:1c:d4:
        b6:54:8e:46:8f:b3:de:be:1f:11:35:f8:44:e8:7e:23:
        b2:47:71:c0:75:32:13:65:84:e8:d1:ea:75:c2:10:01:
        6a:b7:ab:01:d9:d3:eb:93:ff:ba:98:44:82:98:af:d5:
        44:6d:3a:d3:4b:1c:32:f8:a8:fd:ce:df:d3:8d:64:ca
    Fingerprint (SHA-256):
        51:AB:96:1D:42:14:76:90:66:03:BC:5C:31:9D:CD:B5:3A:C6:7F:E0:13:1F:B8:53:09:E2:EF:E5:81:47:17:C6
    Fingerprint (SHA1):
        8F:79:E7:F7:40:94:DB:A3:C5:A2:19:03:59:3A:8D:10:8C:8B:D8:23
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #2783: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2784: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154083 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2785: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2786: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2787: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2788: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154084   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2789: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2790: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #2791: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2792: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154085   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2793: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2794: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #2795: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2796: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502154086   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2797: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2798: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #2799: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2800: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502154087   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2801: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2802: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #2803: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2804: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502154088   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2805: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2806: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #2807: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2808: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502154089   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2809: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2810: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2811: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #2812: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #2813: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #2814: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #2815: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154083 (0x1dee4363)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:31 2017
            Not After : Mon May 02 15:41:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:9d:45:4f:7e:dc:03:33:b7:65:88:83:4e:e4:86:0c:
                    60:97:e3:02:a5:3a:72:ae:fe:95:be:a7:a3:6f:ac:26:
                    1e:88:00:b9:f6:fa:5d:25:36:12:cc:9a:77:6b:9d:b6:
                    6c:87:e3:05:9e:11:ef:5c:40:8d:22:76:57:b0:82:87:
                    64:ef:45:8b:cc:bf:e3:4a:13:30:30:15:d0:ff:02:8f:
                    4f:b0:b4:58:e5:10:22:ad:60:3c:05:bf:cc:43:a3:1a:
                    80:49:f9:ce:68:84:b2:5b:db:d0:97:ca:2e:a2:d1:11:
                    f2:c1:9f:8a:47:be:99:94:42:5e:59:8f:51:fe:92:2e:
                    e6:3e:4e:4c:86:7c:2c:37:8e:68:ec:e7:55:f7:9e:43:
                    6e:fb:cc:6c:ed:d4:92:92:18:e2:98:0a:aa:61:94:49:
                    08:61:20:5e:68:d6:c6:02:8e:8f:f6:f6:08:45:c3:bd:
                    63:74:94:50:64:8e:70:fb:69:f5:bf:0f:b1:e1:68:3d:
                    d4:29:75:ae:05:37:b2:d5:ed:86:5a:7a:29:cf:6a:0d:
                    78:ff:09:e3:38:a1:47:da:d7:45:e1:26:19:0c:f5:8d:
                    08:7d:71:95:07:2d:2e:3e:9e:8c:25:ad:d6:98:c0:a2:
                    ba:85:e2:62:e8:19:46:db:c1:2b:cc:01:21:45:e0:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:32:2f:bd:de:1e:3e:2a:ff:a8:99:5b:71:67:54:39:
        30:9a:24:7b:49:31:02:2b:57:39:17:54:0a:25:9f:42:
        b9:72:60:64:6c:4d:94:e7:e4:b6:f6:ff:67:3b:4c:38:
        0c:20:ad:47:a7:4b:26:f6:a4:ca:f5:d2:40:13:c3:70:
        a7:be:04:57:67:28:70:be:39:95:84:fa:61:21:8d:45:
        f0:f4:09:74:7c:60:e9:7f:55:a5:9f:c9:98:4f:0c:fc:
        af:bf:0b:a0:94:e2:f7:70:60:1b:81:06:2a:e2:b1:04:
        6c:c1:0b:39:dc:e7:a8:94:8d:41:c3:c1:0c:39:1e:6a:
        75:26:f3:8c:38:a3:01:40:e7:42:4f:ec:4f:d3:fa:3f:
        11:02:94:68:4e:80:c3:59:54:87:76:eb:09:13:cc:2a:
        2b:95:03:1b:0f:13:ef:9e:5d:c8:1d:b6:4f:85:52:c2:
        39:c0:58:2f:ad:03:f1:d7:c7:e4:1b:d8:cb:9d:49:2d:
        9f:38:39:b7:6d:62:1f:b3:b6:71:72:4b:be:43:b1:f1:
        a3:fe:a8:87:9e:9c:31:59:76:88:84:8b:e1:3f:9d:bc:
        84:e9:f4:58:c6:cd:5a:08:d1:b3:a7:5e:a7:5b:d5:ce:
        1d:c4:4c:39:9a:7b:e8:84:0a:96:be:91:91:c2:ce:98
    Fingerprint (SHA-256):
        8E:7B:A8:2C:17:F5:EB:62:C6:E6:32:95:7A:CE:2E:97:A0:EB:97:89:8B:3B:49:4E:90:28:50:52:03:F7:46:66
    Fingerprint (SHA1):
        1F:59:0B:19:2F:7F:C4:01:48:E8:07:99:C5:86:16:ED:73:D2:BD:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2816: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2817: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2818: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2819: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154083 (0x1dee4363)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:31 2017
            Not After : Mon May 02 15:41:31 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:9d:45:4f:7e:dc:03:33:b7:65:88:83:4e:e4:86:0c:
                    60:97:e3:02:a5:3a:72:ae:fe:95:be:a7:a3:6f:ac:26:
                    1e:88:00:b9:f6:fa:5d:25:36:12:cc:9a:77:6b:9d:b6:
                    6c:87:e3:05:9e:11:ef:5c:40:8d:22:76:57:b0:82:87:
                    64:ef:45:8b:cc:bf:e3:4a:13:30:30:15:d0:ff:02:8f:
                    4f:b0:b4:58:e5:10:22:ad:60:3c:05:bf:cc:43:a3:1a:
                    80:49:f9:ce:68:84:b2:5b:db:d0:97:ca:2e:a2:d1:11:
                    f2:c1:9f:8a:47:be:99:94:42:5e:59:8f:51:fe:92:2e:
                    e6:3e:4e:4c:86:7c:2c:37:8e:68:ec:e7:55:f7:9e:43:
                    6e:fb:cc:6c:ed:d4:92:92:18:e2:98:0a:aa:61:94:49:
                    08:61:20:5e:68:d6:c6:02:8e:8f:f6:f6:08:45:c3:bd:
                    63:74:94:50:64:8e:70:fb:69:f5:bf:0f:b1:e1:68:3d:
                    d4:29:75:ae:05:37:b2:d5:ed:86:5a:7a:29:cf:6a:0d:
                    78:ff:09:e3:38:a1:47:da:d7:45:e1:26:19:0c:f5:8d:
                    08:7d:71:95:07:2d:2e:3e:9e:8c:25:ad:d6:98:c0:a2:
                    ba:85:e2:62:e8:19:46:db:c1:2b:cc:01:21:45:e0:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        82:32:2f:bd:de:1e:3e:2a:ff:a8:99:5b:71:67:54:39:
        30:9a:24:7b:49:31:02:2b:57:39:17:54:0a:25:9f:42:
        b9:72:60:64:6c:4d:94:e7:e4:b6:f6:ff:67:3b:4c:38:
        0c:20:ad:47:a7:4b:26:f6:a4:ca:f5:d2:40:13:c3:70:
        a7:be:04:57:67:28:70:be:39:95:84:fa:61:21:8d:45:
        f0:f4:09:74:7c:60:e9:7f:55:a5:9f:c9:98:4f:0c:fc:
        af:bf:0b:a0:94:e2:f7:70:60:1b:81:06:2a:e2:b1:04:
        6c:c1:0b:39:dc:e7:a8:94:8d:41:c3:c1:0c:39:1e:6a:
        75:26:f3:8c:38:a3:01:40:e7:42:4f:ec:4f:d3:fa:3f:
        11:02:94:68:4e:80:c3:59:54:87:76:eb:09:13:cc:2a:
        2b:95:03:1b:0f:13:ef:9e:5d:c8:1d:b6:4f:85:52:c2:
        39:c0:58:2f:ad:03:f1:d7:c7:e4:1b:d8:cb:9d:49:2d:
        9f:38:39:b7:6d:62:1f:b3:b6:71:72:4b:be:43:b1:f1:
        a3:fe:a8:87:9e:9c:31:59:76:88:84:8b:e1:3f:9d:bc:
        84:e9:f4:58:c6:cd:5a:08:d1:b3:a7:5e:a7:5b:d5:ce:
        1d:c4:4c:39:9a:7b:e8:84:0a:96:be:91:91:c2:ce:98
    Fingerprint (SHA-256):
        8E:7B:A8:2C:17:F5:EB:62:C6:E6:32:95:7A:CE:2E:97:A0:EB:97:89:8B:3B:49:4E:90:28:50:52:03:F7:46:66
    Fingerprint (SHA1):
        1F:59:0B:19:2F:7F:C4:01:48:E8:07:99:C5:86:16:ED:73:D2:BD:DC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2820: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2821: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #2822: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154090 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2823: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #2824: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #2825: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2826: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154091   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2827: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2828: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #2829: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2830: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502154092   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2831: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2832: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #2833: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2834: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502154093   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2835: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2836: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #2837: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2838: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502154094   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2839: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2840: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #2841: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2842: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502154095   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2843: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2844: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #2845: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2846: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502154096   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2847: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2848: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #2849: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2850: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502154097   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2851: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2852: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #2853: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2854: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502154098   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2855: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2856: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #2857: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2858: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502154099   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2859: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2860: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #2861: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2862: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502154100   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2863: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2864: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #2865: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2866: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502154101   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2867: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2868: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #2869: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2870: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502154102   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2871: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2872: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #2873: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2874: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502154103   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2875: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2876: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #2877: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2878: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502154104   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2879: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2880: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #2881: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2882: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502154105   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2883: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2884: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #2885: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2886: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502154106   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2887: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2888: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #2889: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2890: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502154107   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #2891: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2892: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #2893: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2894: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502154108   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2895: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2896: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #2897: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2898: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502154109   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2899: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2900: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #2901: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2902: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502154110   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2903: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2904: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #2905: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2906: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502154111   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2907: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2908: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #2909: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2910: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502154112   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2911: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2912: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #2913: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2914: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502154113   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2915: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2916: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #2917: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2918: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502154114   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2919: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2920: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #2921: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2922: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502154115   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2923: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2924: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #2925: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2926: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502154116   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2927: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2928: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #2929: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2930: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502154117   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2931: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2932: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #2933: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2934: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502154118   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2935: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2936: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #2937: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2938: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502154119   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2939: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2940: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2941: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2942: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2943: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2944: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2945: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2946: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2947: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2948: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2949: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2950: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2951: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2952: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2953: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2954: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2955: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2956: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2957: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2958: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #2959: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2960: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2961: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2962: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2963: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154090 (0x1dee436a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:41:37 2017
            Not After : Mon May 02 15:41:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:32:d9:63:77:21:b9:68:2c:6d:b0:b8:70:d0:0b:4a:
                    ec:b7:b5:14:2f:a2:9d:eb:67:e8:10:80:e4:51:74:2c:
                    64:11:e9:34:99:66:54:e1:d4:05:96:b2:b1:7c:3e:db:
                    5c:5d:3a:35:f1:8a:ef:ff:9c:66:4f:cc:6d:69:c0:3c:
                    82:9c:ac:b1:33:53:8d:f3:7a:80:65:d9:63:cf:9c:cf:
                    99:76:10:42:aa:ab:d3:53:d3:1c:97:c6:9d:b4:17:08:
                    75:70:b2:dc:bf:6f:24:02:e7:1b:b2:88:46:0e:0e:a6:
                    de:7f:f2:6c:93:cd:bf:eb:63:4f:87:73:08:46:6b:fb:
                    b6:38:df:c4:b3:3e:96:68:e7:21:ae:09:8f:4c:e8:4d:
                    86:20:be:ba:47:10:47:1e:11:a2:79:0c:29:62:08:df:
                    b0:fc:15:98:06:56:6b:c3:cf:0c:98:d5:3a:c1:b8:87:
                    f0:91:35:d7:09:8a:c7:89:c7:cb:23:b4:ea:9b:99:ac:
                    42:b4:13:05:ab:78:06:29:a3:6f:0b:15:3c:dd:8f:4b:
                    8c:a2:e7:61:5c:7d:ce:7e:a7:e4:df:96:93:1e:f9:da:
                    03:ee:5d:82:ee:39:63:ff:81:bd:12:59:27:2c:74:04:
                    5f:63:d5:32:d5:55:ca:c8:3d:a7:cf:04:a0:a2:2d:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:f9:9f:c5:02:e5:0b:b6:24:93:66:e7:ec:72:35:d5:
        78:75:41:e4:7f:72:6e:18:33:d0:4d:f4:06:0f:2d:f8:
        64:aa:c6:e5:b8:69:9b:e3:31:34:f0:5b:f6:1d:79:e3:
        09:a1:9a:a2:3d:83:db:58:ae:d5:b0:fb:24:a7:4a:91:
        21:90:c6:9e:00:56:da:de:cf:d6:d5:49:7a:52:69:c3:
        34:70:7f:6f:de:c6:42:50:30:29:1b:a2:2e:43:d6:44:
        e4:c8:50:6c:40:1c:74:f8:14:15:2f:0d:3e:9c:03:5b:
        0c:23:09:17:1f:62:b5:cd:f6:ca:d4:c6:95:a6:8b:77:
        9e:a3:3d:e6:f9:3c:a4:b2:7d:c4:84:58:eb:53:26:84:
        25:75:6c:07:a3:3c:7c:a4:e5:38:fe:fc:a8:90:04:d8:
        ec:fb:18:54:57:a4:f2:a5:3d:8f:3a:6d:b3:3c:41:d3:
        32:7d:7e:42:59:55:2c:f5:cf:eb:1e:28:fc:aa:8d:79:
        52:68:79:ad:22:c8:17:17:26:c9:62:26:dc:06:01:7f:
        49:bc:d3:c3:c3:af:a8:f7:4c:f9:14:4c:b6:db:be:bf:
        10:27:53:e8:7f:3b:ac:e7:b2:8f:cd:33:6f:87:b7:00:
        23:9d:4b:e0:e1:95:6d:ab:ab:8c:78:ad:7a:5b:42:49
    Fingerprint (SHA-256):
        F8:75:E9:22:39:72:AA:47:83:E5:0F:98:09:BF:93:F2:F6:71:D5:2E:00:0F:95:58:BC:B1:77:12:8D:9D:31:2D
    Fingerprint (SHA1):
        ED:FF:E7:FC:D0:86:07:E8:DB:D0:25:25:7C:3E:60:3B:F1:13:AA:FB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #2964: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2965: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #2966: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154120 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #2967: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #2968: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #2969: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2970: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502154121   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #2971: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2972: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #2973: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2974: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502154122   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2975: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2976: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #2977: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #2978: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502154123   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2979: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2980: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #2981: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2982: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502154124   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2983: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2984: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #2985: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2986: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502154125   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2987: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2988: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #2989: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #2990: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502154126   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #2991: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #2992: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #2993: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154120 (0x1dee4388)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:02 2017
            Not After : Mon May 02 15:42:02 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:f0:10:1c:aa:e0:74:50:70:43:39:3d:50:25:65:d7:
                    12:e8:1d:6e:28:2c:a4:50:60:e4:ce:fe:70:c6:5f:00:
                    99:10:49:03:63:e2:73:50:7d:d0:fc:43:e8:b1:33:35:
                    51:6f:cc:0e:f1:03:60:8e:25:8e:52:8e:f3:ae:c8:80:
                    bc:80:41:0c:89:6f:9d:f7:f3:eb:36:79:de:8b:e6:51:
                    34:0b:1e:ab:16:08:f0:96:b5:67:0a:52:26:e1:71:06:
                    36:c8:e1:4d:e6:0d:28:4c:73:e8:8f:75:c3:6c:b7:f6:
                    01:a9:c8:6c:a2:40:34:76:7f:25:65:dc:51:46:1a:1a:
                    6a:bb:1c:03:5a:b8:8a:85:a7:22:9b:12:7d:27:d4:f0:
                    07:a4:1f:c0:a9:ba:d0:a7:3f:c7:d4:94:57:d2:fa:3f:
                    03:13:ad:6c:7c:03:0f:99:80:bf:6c:12:2c:16:95:12:
                    5b:37:33:35:9a:c2:26:49:63:d7:63:12:a0:7e:82:b2:
                    d2:19:4f:38:77:d0:8d:ac:3b:08:e6:5b:5a:f3:84:b8:
                    ff:85:db:7e:ae:0e:29:5b:27:4b:36:a4:6a:d3:5e:1a:
                    0a:8e:9d:15:09:d2:cc:81:c4:58:50:a6:d8:f5:94:11:
                    de:80:a4:3b:f0:1a:4f:d4:92:17:ec:c0:5e:f2:e8:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:71:df:09:8c:c3:c5:71:34:bd:a5:cd:aa:5c:88:3d:
        b1:a8:7f:ad:07:0e:34:e6:ab:15:96:a1:4d:67:a8:95:
        84:87:45:3d:c2:ce:dc:12:92:ed:fb:80:48:c9:b1:83:
        dd:09:d6:a5:4c:90:ab:f1:e1:1f:75:6a:43:78:e5:6e:
        85:ed:4b:f0:19:da:8c:6f:ec:4a:cc:9c:dc:71:7f:f5:
        7d:4e:2a:45:25:21:9d:ff:e7:14:92:ed:9a:dc:da:d3:
        b2:fc:49:cf:74:c1:cd:a0:e8:16:0b:df:67:f5:d6:af:
        5a:31:a1:e3:fb:7f:6c:2e:d4:67:0f:ff:50:65:73:88:
        c2:fd:50:d2:11:db:60:fb:33:46:2e:54:0f:e4:aa:47:
        98:66:8d:00:c7:5e:33:8b:d7:86:79:ce:71:69:b7:d0:
        6a:91:e1:cc:c7:01:3b:e3:5d:3f:3d:b8:d9:70:e7:4f:
        2c:ac:78:43:82:dd:eb:15:36:10:c9:db:d3:53:b5:86:
        7f:d0:3a:8a:5f:3d:68:f3:3e:5b:2f:bc:b0:d4:8b:d5:
        3f:a4:fe:10:da:d4:1a:5e:96:8f:4a:4f:20:78:b4:0f:
        94:85:54:a6:a4:1e:de:0e:19:d8:3b:99:9a:87:4b:d5:
        69:c5:d4:ac:e0:83:e1:c2:52:69:b6:52:8a:b3:70:f0
    Fingerprint (SHA-256):
        6D:D4:D6:7A:B6:AC:36:B7:76:FB:63:DD:64:8C:BC:56:18:56:81:7D:6E:68:48:30:64:C1:2E:D9:9B:05:6E:6F
    Fingerprint (SHA1):
        AB:EE:AE:81:79:CF:16:C7:53:1B:D0:ED:17:DE:2D:7A:30:23:BF:A3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #2994: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2995: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2996: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #2997: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154120 (0x1dee4388)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:02 2017
            Not After : Mon May 02 15:42:02 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:f0:10:1c:aa:e0:74:50:70:43:39:3d:50:25:65:d7:
                    12:e8:1d:6e:28:2c:a4:50:60:e4:ce:fe:70:c6:5f:00:
                    99:10:49:03:63:e2:73:50:7d:d0:fc:43:e8:b1:33:35:
                    51:6f:cc:0e:f1:03:60:8e:25:8e:52:8e:f3:ae:c8:80:
                    bc:80:41:0c:89:6f:9d:f7:f3:eb:36:79:de:8b:e6:51:
                    34:0b:1e:ab:16:08:f0:96:b5:67:0a:52:26:e1:71:06:
                    36:c8:e1:4d:e6:0d:28:4c:73:e8:8f:75:c3:6c:b7:f6:
                    01:a9:c8:6c:a2:40:34:76:7f:25:65:dc:51:46:1a:1a:
                    6a:bb:1c:03:5a:b8:8a:85:a7:22:9b:12:7d:27:d4:f0:
                    07:a4:1f:c0:a9:ba:d0:a7:3f:c7:d4:94:57:d2:fa:3f:
                    03:13:ad:6c:7c:03:0f:99:80:bf:6c:12:2c:16:95:12:
                    5b:37:33:35:9a:c2:26:49:63:d7:63:12:a0:7e:82:b2:
                    d2:19:4f:38:77:d0:8d:ac:3b:08:e6:5b:5a:f3:84:b8:
                    ff:85:db:7e:ae:0e:29:5b:27:4b:36:a4:6a:d3:5e:1a:
                    0a:8e:9d:15:09:d2:cc:81:c4:58:50:a6:d8:f5:94:11:
                    de:80:a4:3b:f0:1a:4f:d4:92:17:ec:c0:5e:f2:e8:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:71:df:09:8c:c3:c5:71:34:bd:a5:cd:aa:5c:88:3d:
        b1:a8:7f:ad:07:0e:34:e6:ab:15:96:a1:4d:67:a8:95:
        84:87:45:3d:c2:ce:dc:12:92:ed:fb:80:48:c9:b1:83:
        dd:09:d6:a5:4c:90:ab:f1:e1:1f:75:6a:43:78:e5:6e:
        85:ed:4b:f0:19:da:8c:6f:ec:4a:cc:9c:dc:71:7f:f5:
        7d:4e:2a:45:25:21:9d:ff:e7:14:92:ed:9a:dc:da:d3:
        b2:fc:49:cf:74:c1:cd:a0:e8:16:0b:df:67:f5:d6:af:
        5a:31:a1:e3:fb:7f:6c:2e:d4:67:0f:ff:50:65:73:88:
        c2:fd:50:d2:11:db:60:fb:33:46:2e:54:0f:e4:aa:47:
        98:66:8d:00:c7:5e:33:8b:d7:86:79:ce:71:69:b7:d0:
        6a:91:e1:cc:c7:01:3b:e3:5d:3f:3d:b8:d9:70:e7:4f:
        2c:ac:78:43:82:dd:eb:15:36:10:c9:db:d3:53:b5:86:
        7f:d0:3a:8a:5f:3d:68:f3:3e:5b:2f:bc:b0:d4:8b:d5:
        3f:a4:fe:10:da:d4:1a:5e:96:8f:4a:4f:20:78:b4:0f:
        94:85:54:a6:a4:1e:de:0e:19:d8:3b:99:9a:87:4b:d5:
        69:c5:d4:ac:e0:83:e1:c2:52:69:b6:52:8a:b3:70:f0
    Fingerprint (SHA-256):
        6D:D4:D6:7A:B6:AC:36:B7:76:FB:63:DD:64:8C:BC:56:18:56:81:7D:6E:68:48:30:64:C1:2E:D9:9B:05:6E:6F
    Fingerprint (SHA1):
        AB:EE:AE:81:79:CF:16:C7:53:1B:D0:ED:17:DE:2D:7A:30:23:BF:A3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #2998: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #2999: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3000: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3001: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154127 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3002: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3003: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3004: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3005: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154128   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3006: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3007: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3008: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3009: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154129   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3010: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3011: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3012: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3013: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154130   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3014: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3015: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3016: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3017: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3018: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3019: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154127 (0x1dee438f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:09 2017
            Not After : Mon May 02 15:42:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:8a:23:ed:05:12:0e:d2:c0:14:15:47:53:a1:ad:5f:
                    e9:93:36:94:aa:5e:c4:cf:dc:6a:ba:b5:8e:67:d9:1f:
                    26:f7:70:4f:7e:46:0e:69:d8:37:f2:dc:ae:c1:2d:70:
                    13:df:19:4e:34:1a:97:5d:5d:77:c3:af:72:b8:ed:61:
                    29:ee:1d:5b:1e:4e:59:92:29:c0:a4:97:64:28:7f:7a:
                    d3:65:bf:e8:e4:ee:87:c3:75:0a:e0:e9:53:4c:25:bb:
                    86:de:1a:b5:c0:60:b8:e7:20:ea:78:11:69:82:69:56:
                    8a:62:50:88:16:a4:d5:f1:ad:e9:c8:a5:fc:ae:74:7b:
                    4e:17:a7:fe:da:a0:65:40:2a:96:ac:a7:49:df:08:a2:
                    9a:1b:03:3b:70:37:ae:11:e5:a0:c9:14:b2:91:83:cb:
                    fd:f8:05:3d:f5:94:cc:06:49:42:66:cb:cc:f8:cb:c0:
                    b8:15:37:2e:91:1d:29:01:66:e1:52:43:54:ae:81:43:
                    cc:b9:4d:d5:ea:d2:d0:c0:ad:ac:9b:fb:95:b3:bc:45:
                    61:d4:63:1c:0f:5f:00:a4:09:d9:33:c7:d4:7b:c8:dc:
                    e2:90:c2:6d:5f:da:01:30:f5:b2:f1:97:e9:5f:4d:c5:
                    24:b1:ff:0a:98:78:15:a4:48:67:18:06:83:13:46:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        00:35:cf:ad:2f:07:5b:6c:72:ba:e5:cd:05:2b:10:31:
        3c:fa:ab:00:b7:e0:dc:2a:40:2e:37:07:62:61:d6:99:
        4c:3a:1a:ed:fa:5c:89:91:94:4e:e2:0a:2d:76:8f:2a:
        ad:d8:e9:27:a6:74:1f:5c:cd:ce:da:c0:9e:65:e9:d7:
        a7:77:5d:41:ef:a2:26:a9:38:a4:02:dd:a1:b1:d1:73:
        64:22:67:9c:0e:ce:7b:14:3f:97:61:d2:21:fb:5d:27:
        0b:15:6a:58:81:4f:d6:b4:88:ca:20:1c:19:b1:39:7d:
        85:d2:e4:53:fd:00:fe:11:4f:2a:e1:35:72:77:07:96:
        15:5b:fa:b5:e3:1e:b1:ce:00:53:3f:c9:34:23:42:29:
        8e:4a:d2:be:08:cb:54:d7:36:f5:c6:dc:12:e6:93:bd:
        74:2e:85:09:cf:24:8f:03:9f:d1:1d:0b:04:86:0e:d6:
        3c:33:3c:52:70:c8:24:02:43:44:9b:54:ef:f9:7d:04:
        5b:b4:7f:fb:7e:de:08:a6:5e:d6:bc:97:e7:cf:be:0e:
        30:75:6b:a1:45:38:a5:d5:e7:95:be:b5:cb:92:5c:0e:
        75:2d:bb:c4:e3:c0:0b:9b:2f:b7:d7:1c:19:00:a5:34:
        36:e0:6e:1f:8e:56:03:36:a5:e3:a3:30:a1:01:f1:63
    Fingerprint (SHA-256):
        55:B3:55:F2:A3:17:9F:53:4D:2B:19:09:93:28:FA:C0:E9:D0:4B:F6:5D:18:AB:8D:69:8B:84:21:39:9C:B9:E7
    Fingerprint (SHA1):
        4F:53:CA:C7:E7:8D:C5:E3:13:92:F1:AB:28:06:A7:E7:7C:30:F6:67
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3020: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3021: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3022: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154128 (0x1dee4390)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:10 2017
            Not After : Mon May 02 15:42:10 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:f0:e7:af:8a:8e:e2:6e:95:ef:0e:3b:92:5d:fd:b2:
                    9f:92:2b:37:24:4b:d8:d8:2f:24:6c:c2:d6:e5:f2:06:
                    f2:99:17:84:ea:03:b0:6f:ac:9d:c9:62:26:49:4c:1e:
                    aa:79:49:0a:68:ae:59:57:0c:5c:df:ee:5b:f2:b9:45:
                    b0:61:82:7d:61:c6:ef:76:ed:93:dd:06:00:e5:0c:d4:
                    c8:3d:f6:08:78:04:1b:91:d2:c7:3a:58:1e:0d:57:3f:
                    16:a9:1d:4a:28:ab:a7:ad:b0:b5:5d:ce:20:21:20:b1:
                    a2:99:a4:6d:db:4d:c8:4f:f5:ae:9c:55:da:1e:19:8d:
                    7e:b2:f2:54:16:82:29:bd:36:94:2c:83:42:5b:58:65:
                    89:c4:fb:d8:b4:a8:73:bd:9e:54:d5:c9:75:6b:9a:13:
                    98:dd:57:88:ba:13:2f:4c:b0:29:df:4a:f9:1d:1d:d1:
                    8b:32:d4:7d:7a:c4:bf:d1:bb:94:8c:f6:7a:5b:52:10:
                    0e:5a:a6:93:37:60:6c:81:8b:9e:7a:19:04:55:4f:42:
                    f9:74:93:1e:48:f6:68:13:54:e8:19:f7:a5:83:05:29:
                    0b:58:d1:e7:5e:b7:ee:20:dd:d1:6f:3b:a6:67:e6:2f:
                    31:6a:7f:ec:68:e7:d5:f0:2e:cc:29:72:51:fb:b8:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ea:44:fc:22:6c:6c:21:16:29:eb:2d:3a:9c:7a:2e:57:
        82:3c:be:ea:cc:7d:d5:5b:34:ff:2d:9e:dd:1c:ac:6c:
        5c:f5:34:71:8c:05:0f:ca:39:a9:01:88:30:6c:26:cb:
        70:8e:3b:f2:fe:83:40:20:ec:4e:ce:cf:ae:be:c0:c3:
        b1:65:68:7c:5e:6e:09:88:f9:70:b2:2d:a2:fa:cc:20:
        2b:98:35:ac:6a:56:de:7f:a5:b9:3c:51:ef:fe:98:85:
        33:28:c6:88:b2:d2:54:4f:ed:07:43:b9:86:3b:cb:a3:
        a9:52:75:88:30:b0:db:aa:a6:0e:31:1f:87:f6:be:95:
        ae:f4:3a:03:14:af:4b:d7:dd:7f:c9:36:9e:c8:54:54:
        b0:5d:99:d4:24:0e:b5:77:13:58:69:61:5c:ac:40:30:
        75:71:fb:f2:d8:e6:a2:37:29:47:10:13:cb:4a:0d:35:
        3d:6b:07:0f:84:5a:0a:32:11:18:9e:14:97:64:e2:fa:
        39:d4:6c:0e:ed:58:32:2f:77:ee:f2:7f:99:26:c5:a5:
        9d:da:c8:24:48:6f:bf:4a:0c:88:13:21:9f:e1:c4:db:
        17:27:e0:2c:6f:16:4a:e9:ba:75:2b:c9:1f:10:0d:e6:
        25:67:c5:b3:dd:d5:2c:a8:cf:73:f2:02:c9:75:71:f4
    Fingerprint (SHA-256):
        C8:59:EE:E8:2D:D7:94:53:BA:67:75:F0:D9:C1:73:B1:F2:9D:A6:7B:DD:A9:00:4E:2C:63:93:41:D4:73:68:9E
    Fingerprint (SHA1):
        63:59:5E:8E:00:E5:CC:CB:15:5B:68:DD:2B:10:DA:96:EB:B3:47:6F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3023: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3024: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154129 (0x1dee4391)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:42:10 2017
            Not After : Mon May 02 15:42:10 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:1d:4f:b9:b7:ed:ed:1c:a2:a4:26:58:da:09:e4:2d:
                    40:e4:22:27:4b:37:0c:ee:7c:02:a0:b9:d3:16:0d:db:
                    62:f5:ae:4a:ec:e9:de:c5:eb:91:2e:57:65:c6:68:e2:
                    9d:69:f2:29:08:fb:7f:9c:48:75:08:d2:07:39:97:1e:
                    78:1f:da:82:89:ff:14:ae:84:aa:c3:84:b9:87:39:cf:
                    01:de:dc:0c:f9:98:c5:0a:9f:5f:df:1e:9a:d5:5e:81:
                    1c:4c:53:6c:d0:e7:07:af:8e:c2:d9:b5:f7:46:83:66:
                    97:c1:6a:57:bd:56:48:d3:e1:ee:89:20:96:1f:47:4c:
                    a7:1e:bd:fb:78:0a:31:cb:2d:62:d6:d1:28:aa:0f:cc:
                    d2:d5:ac:87:d4:c8:50:aa:94:11:76:79:4a:47:cd:85:
                    6f:19:77:9a:b1:ac:62:86:ad:89:48:5b:71:c7:1f:d5:
                    6a:82:3b:ad:9f:74:e4:52:2e:5f:5d:49:79:26:42:3c:
                    6c:fa:ab:51:ac:3d:73:36:b6:86:c7:0e:4a:19:0f:cc:
                    b4:ed:21:39:b6:11:ed:36:a4:74:47:bb:ae:f8:90:67:
                    3c:97:ec:bb:d1:bd:3a:52:bb:3c:ab:93:dc:15:46:97:
                    0f:9c:b9:8e:a9:bd:09:1f:01:a6:00:51:77:db:57:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5b:8f:72:b4:b7:66:56:5a:91:5a:11:e2:61:14:58:19:
        4e:44:7f:8b:ba:9e:ba:15:f1:fa:22:07:7d:af:6f:37:
        91:16:55:f7:9d:49:18:00:9b:ee:bb:14:58:61:ec:95:
        d3:47:a5:94:5f:61:48:20:3d:ca:de:d6:85:cd:4d:f7:
        73:92:ec:c0:2f:9a:d4:6e:51:e5:a4:cc:5d:13:96:85:
        7a:4b:43:51:53:70:08:49:b6:bd:3d:be:97:12:7a:7c:
        3b:45:46:b7:70:3b:bd:60:aa:53:bc:7b:36:3b:ff:2b:
        17:0a:ad:e3:f3:de:58:6c:d3:29:45:dc:83:fc:01:7c:
        ff:2f:42:c0:c3:88:0f:d2:45:b9:92:8b:c1:44:9f:14:
        e7:21:2a:b7:33:d0:5c:d9:7c:6b:c1:47:68:6f:80:b9:
        8f:e9:e1:ad:ae:a8:a3:93:f6:fd:5f:79:b9:05:65:a3:
        90:ad:9e:81:94:31:68:ec:89:d0:85:9c:86:7c:05:6c:
        b2:14:2e:5d:52:2b:09:19:ec:85:bf:21:9f:2f:07:72:
        89:47:bd:a7:27:89:7e:f9:21:af:b4:19:aa:4b:a6:a9:
        c5:05:e3:07:18:59:4d:1f:04:4f:15:69:29:8a:fb:1e:
        3e:f4:38:0f:5f:18:27:17:5d:8e:ba:e0:e9:90:b5:67
    Fingerprint (SHA-256):
        9F:78:5B:75:EA:8D:FA:C2:32:98:6F:FA:39:AA:C6:23:0B:75:06:94:80:CF:2B:65:7D:BD:C3:5A:AA:BF:47:00
    Fingerprint (SHA1):
        C2:57:C9:1D:06:CD:46:CA:5C:1F:4B:C2:E9:6B:C9:CF:8D:7C:02:E5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3025: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3026: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154131 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3027: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3028: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3029: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3030: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154132   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3031: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3032: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3033: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3034: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154133   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3035: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3036: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3037: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3038: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502154134   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3039: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3040: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3041: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3042: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502154135   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3043: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3044: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3045: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3046: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3047: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3048: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3049: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154131 (0x1dee4393)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:13 2017
            Not After : Mon May 02 15:42:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:34:76:65:9a:d7:8b:56:66:62:33:c6:65:ea:e8:31:
                    01:65:32:30:ec:08:4f:f9:78:09:66:b0:e7:aa:4b:47:
                    53:24:d5:98:7b:c1:48:ed:11:19:f7:e3:be:0e:27:03:
                    9e:0c:4c:11:01:20:ca:7e:e8:9e:85:78:28:d9:b3:e0:
                    3c:27:8e:e4:16:66:b9:69:d5:93:39:3a:76:b6:46:86:
                    20:93:01:a2:1c:79:98:2e:bb:19:af:64:c1:df:0e:bc:
                    1e:26:1c:02:4d:04:b8:75:88:9b:91:5f:2b:bc:c7:5a:
                    0b:21:51:a8:0f:f4:92:86:4e:3b:10:98:ae:d1:f0:50:
                    58:3b:00:63:e3:34:c1:dd:70:13:db:05:04:7f:2f:48:
                    4a:27:ca:2e:d3:52:ce:a7:17:d7:6b:87:eb:cb:96:76:
                    0c:cb:ca:4a:46:90:8f:d2:32:e7:c9:4a:c8:68:1b:32:
                    6a:1e:50:d4:94:af:ae:e1:2e:ee:ba:d1:9b:f9:fb:33:
                    08:ef:ba:c0:22:20:ba:a7:c9:d3:55:f8:fc:ca:03:8e:
                    4f:49:af:58:3c:06:74:9b:16:6c:e8:34:4c:ea:00:a9:
                    b8:56:64:02:e5:af:8f:55:66:4c:c1:05:9d:b3:ed:75:
                    ad:e8:e8:0e:6c:38:6a:ce:d7:9b:07:19:bb:04:48:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:2f:d5:1d:cc:b5:13:ec:ac:e2:d7:b1:16:bc:f2:31:
        d3:1c:1d:0a:24:7d:28:4f:2c:bf:b1:06:55:e6:18:3a:
        89:ff:76:f7:db:40:ab:f4:b7:cd:73:d2:47:c9:2d:ad:
        8c:46:a1:97:f1:1d:e4:6e:78:85:13:b3:04:95:0b:61:
        34:5d:d2:3d:b0:f9:30:6a:53:05:00:3e:73:89:9b:ba:
        5b:cb:07:4f:20:f3:72:bb:78:b0:6f:d2:7a:82:30:b1:
        64:7a:9f:de:e3:cf:18:0a:b5:cb:82:54:fd:0a:37:ad:
        80:f3:29:ae:ea:f8:c7:34:b7:25:89:1f:00:20:00:ae:
        90:e2:59:f6:96:07:11:de:7b:10:a0:31:10:23:61:1f:
        ca:e2:31:d9:07:5b:6c:6b:3e:22:0e:0d:c6:7e:c6:06:
        d3:6b:03:98:5e:d3:df:a4:42:fd:92:84:32:25:2c:8a:
        39:e8:45:f3:71:b8:c8:73:de:73:66:bc:f9:02:50:f7:
        38:7e:db:7b:c5:55:d4:9f:aa:6e:7f:8c:08:3d:c1:14:
        61:4c:b6:58:3d:5c:2d:97:78:4f:49:2b:13:de:3e:2c:
        bd:58:58:3a:40:43:b0:b7:5d:0c:ab:1e:c4:4f:53:83:
        55:f1:2b:70:00:7e:8b:18:e9:6c:1d:99:44:b7:1d:8f
    Fingerprint (SHA-256):
        F6:A1:6A:F0:9D:A5:DA:F3:34:98:4C:43:D2:08:0D:D6:F8:A5:05:A6:18:0D:DD:EE:67:E6:A5:BA:9F:3F:4C:29
    Fingerprint (SHA1):
        33:4D:93:66:CD:59:06:65:D9:46:4D:00:20:C7:F1:96:2A:86:47:CC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3050: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3051: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154132 (0x1dee4394)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:14 2017
            Not After : Mon May 02 15:42:14 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:0f:af:a6:56:cc:05:19:75:2c:38:84:51:bd:63:63:
                    7b:72:3d:d1:d2:3b:42:46:1c:55:06:3e:74:ee:3a:0b:
                    0e:8e:10:4f:11:a7:a2:da:7a:ef:97:71:a6:1d:1d:54:
                    92:c8:e0:d3:15:fc:31:9c:2b:fa:46:ab:cb:8b:f4:68:
                    f7:e7:9f:fb:34:10:ac:14:7a:f1:29:86:5a:bb:46:8e:
                    f7:ee:b3:f0:41:fb:91:40:a4:18:ab:0a:85:0f:69:11:
                    70:01:17:68:96:1f:61:67:60:b7:1d:ca:af:a7:ec:0e:
                    f3:b9:aa:e3:ca:9e:68:2c:85:ea:a1:11:09:3b:85:e1:
                    f6:3e:38:fe:14:7c:c1:67:95:d8:ee:18:58:57:3b:00:
                    1d:e6:b5:31:7d:7b:f4:81:07:24:32:ee:ab:f9:3a:b7:
                    70:42:eb:58:95:3e:46:77:3d:06:48:32:04:48:68:07:
                    4b:2d:34:ec:ac:8b:d8:b0:e0:70:5b:9c:71:99:2b:32:
                    18:5a:0e:24:9d:93:9e:da:a9:ef:d0:ed:1a:8a:26:a4:
                    1d:a4:d3:ce:5e:0c:4e:f8:1d:b4:d9:df:d5:92:81:75:
                    04:58:ef:1c:9c:e3:c8:3c:bd:e7:f6:b3:dc:08:e0:23:
                    1a:15:23:f8:19:b0:33:c0:5d:4a:e1:22:68:5e:06:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8a:52:36:b3:7f:4f:0c:bb:0f:e7:87:b4:fd:00:b9:0e:
        a7:cb:8f:df:3e:a6:3c:d3:e3:4e:30:9b:6f:50:f3:b7:
        c9:f1:d3:69:c4:7e:66:4e:7e:c8:d8:b6:c3:6f:00:65:
        4c:06:b2:67:50:2a:bd:43:8a:a3:d9:a0:e6:87:89:56:
        1f:0d:83:10:46:9f:a6:2b:3c:21:7b:42:a7:8c:c9:11:
        f0:65:b1:2b:cf:d2:d3:b8:7a:90:8c:c4:7f:12:80:28:
        b3:0f:90:f2:38:86:6b:07:f5:5b:2b:07:16:ee:d9:82:
        46:7d:e8:c5:a7:80:e7:d4:b0:61:f3:38:f1:3c:a6:e8:
        07:4c:aa:2b:a8:b8:22:01:7a:98:6a:4f:44:79:5e:51:
        1f:44:93:6a:e8:a1:ac:78:e8:69:28:f3:fa:b2:42:e0:
        77:bd:b4:91:9a:fb:72:41:a7:86:e1:3a:71:62:37:d2:
        cf:d9:1c:8d:a5:6a:9e:86:68:56:2c:3f:80:29:1e:4d:
        d7:a6:c2:da:5e:59:29:e8:1b:fe:38:f5:bc:96:fb:f6:
        b4:75:16:b7:10:e7:01:2e:5e:a2:ec:08:7c:df:34:ec:
        bc:aa:62:f4:c2:70:c5:0a:5e:1b:91:77:db:59:47:1f:
        1f:4b:f9:1e:cd:0d:2b:86:77:db:dc:58:6c:1d:b5:43
    Fingerprint (SHA-256):
        D6:1C:4D:08:81:DF:FC:1E:2B:43:98:A0:AE:EC:CE:7D:51:2D:9F:27:ED:87:DB:AC:FD:B8:58:A0:AA:DA:C6:88
    Fingerprint (SHA1):
        19:E3:30:71:03:83:05:20:57:FE:99:F3:63:53:2A:98:17:6E:0B:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3052: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3053: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3054: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154133 (0x1dee4395)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:42:15 2017
            Not After : Mon May 02 15:42:15 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:66:9f:f1:58:03:e7:9f:7a:df:b4:46:12:0e:db:ee:
                    ff:b9:f2:ed:40:62:7f:0f:a4:12:b4:7a:ce:3d:38:c5:
                    77:29:23:03:35:51:87:3b:73:e4:dc:b4:e3:4d:a2:30:
                    54:aa:21:2f:b8:3a:7d:24:35:e3:1f:51:aa:e4:41:98:
                    d5:a1:a5:7a:6b:cd:f6:6d:ce:2d:8f:fe:f0:7e:6c:d2:
                    45:7d:7b:81:fa:81:4e:fe:8a:3e:d7:8b:f9:3f:21:e5:
                    8d:8e:3f:7a:67:9a:98:eb:7a:77:24:94:b2:ca:89:59:
                    03:f7:1c:fa:ec:6f:34:db:3d:ff:8a:64:d2:63:c8:f8:
                    78:b4:84:45:2a:9f:22:5d:17:11:e9:c5:26:ed:50:b9:
                    12:88:d0:c9:6e:58:6d:94:10:56:99:ba:36:dd:da:35:
                    8b:85:b5:94:a1:a2:73:51:0e:da:46:45:ba:bb:19:7d:
                    20:d3:f7:c8:71:00:23:5e:8c:5f:dc:ac:30:d7:98:0c:
                    fe:2e:f1:fd:01:46:8c:d3:2b:9a:88:d9:c4:9f:10:c3:
                    2b:ea:40:84:52:e3:b7:2f:ac:72:e0:22:e8:9b:92:a8:
                    46:1d:9f:b5:05:9c:d2:14:97:27:9b:60:ac:7b:78:4c:
                    f0:97:c7:2f:e4:11:e5:0d:38:70:54:a9:d5:b1:f9:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        19:83:0a:2f:89:e0:08:46:dd:f2:30:ef:25:2e:57:50:
        c0:90:a0:44:f7:e5:b4:42:e4:80:b1:ff:f9:54:85:7d:
        13:a8:f4:d7:7e:ba:c7:91:06:9a:90:65:8b:ef:8c:17:
        42:b2:e9:a3:df:54:f7:5e:af:8a:c5:55:03:b4:ac:34:
        14:2b:24:a1:a5:e2:ff:65:4f:30:6d:7f:8b:2f:80:f5:
        42:07:bc:35:06:92:59:2a:ed:66:7a:a2:34:ba:14:48:
        c5:53:62:45:3a:21:87:3a:f1:20:28:de:10:66:2c:3d:
        db:10:c7:1a:22:c0:0d:b2:c2:29:91:8b:d5:a1:12:6c:
        76:fa:09:5c:b7:69:d4:bc:23:3d:49:1e:2d:d0:18:fd:
        a2:6b:74:9b:54:96:b0:8c:5c:2e:6c:e0:2f:57:d7:da:
        7a:86:82:09:42:8e:22:4e:a7:fd:1f:29:d7:21:da:23:
        07:de:19:7b:25:0b:67:cb:84:3c:c8:9e:93:b8:49:37:
        a7:30:a0:dd:d7:62:3c:cd:59:d0:fe:a8:69:04:0d:80:
        26:53:c3:bc:16:5a:4b:6c:10:07:d7:62:56:2d:a5:72:
        67:40:e8:b7:a3:02:8e:a0:d7:89:6c:4b:6b:3c:cd:3c:
        54:93:5b:3e:6f:3c:81:69:41:b5:03:8e:09:eb:3e:1a
    Fingerprint (SHA-256):
        4E:F6:61:E2:A6:EB:51:08:74:F7:B1:9A:5C:BC:50:A3:46:64:F9:5D:CB:3F:C9:D6:2C:06:1C:CC:0D:50:C5:7F
    Fingerprint (SHA1):
        33:F7:B3:58:CD:EC:67:B2:D5:CC:B8:BC:66:05:B2:1A:4D:38:81:20
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3055: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3056: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154136 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3057: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3058: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3059: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3060: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154137   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3061: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3062: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3063: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3064: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154138   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA1Root-502154045.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3065: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3066: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3067: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3068: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154139   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3069: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3070: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3071: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154136 (0x1dee4398)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:17 2017
            Not After : Mon May 02 15:42:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:ee:ff:a2:60:47:c6:49:fb:0a:56:b5:e8:a3:dd:29:
                    0b:fe:38:5d:72:06:b6:3a:a9:d0:32:93:bf:24:b5:81:
                    ae:dd:71:79:fb:dd:35:33:8e:60:5c:a3:4b:70:f0:50:
                    27:64:13:42:10:ec:37:95:ab:aa:2a:97:1f:1d:05:52:
                    75:3b:69:f1:44:a8:53:ad:85:27:76:97:fe:f7:1a:f7:
                    6b:30:c9:71:2d:58:4d:ef:22:20:3d:7b:5c:79:2d:ed:
                    f9:0e:96:a8:68:2e:db:9d:6d:d5:71:29:c8:2f:19:f3:
                    e7:bc:30:5e:67:a5:2b:14:d7:41:ea:3c:e7:75:70:36:
                    ed:17:f5:9d:a2:56:f2:9d:cf:54:ae:0c:b3:20:45:4e:
                    4c:b9:20:5e:5b:11:03:3a:8b:2e:fa:09:1c:1c:e3:dc:
                    a1:30:24:4a:80:32:f1:eb:47:c3:24:19:c1:d7:a9:13:
                    2a:12:a2:d6:3f:04:f0:df:ac:6d:07:b8:d2:a3:54:18:
                    7e:b4:69:0b:f3:e7:3c:56:97:f3:aa:e1:73:cf:c1:52:
                    31:84:1b:3a:96:45:c8:1a:86:2a:ad:86:31:80:da:a3:
                    bd:f3:ed:22:f7:8f:95:46:ee:c5:47:d0:bc:e5:43:44:
                    2c:4b:7b:02:1a:50:0a:d7:6e:4f:3f:f0:56:fb:e7:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        61:6b:c6:2a:8a:7b:7c:02:f3:f4:89:ee:83:9d:ee:12:
        55:cf:cc:68:e1:72:3a:82:ff:de:43:ff:46:e5:64:e9:
        6e:f6:61:0c:4f:98:f8:9d:1d:0d:6d:5b:d1:3c:e3:16:
        7a:07:fc:21:4c:3d:72:7e:1b:ce:ac:9c:cd:56:5c:d1:
        27:4c:64:e8:e6:9f:67:4a:46:53:2b:3d:73:bf:ce:78:
        26:6a:02:64:7d:4c:c3:2a:1d:6f:c3:3d:43:3c:c9:91:
        ee:c1:94:50:5f:ca:e3:6a:4b:6a:f7:27:7c:9b:74:2a:
        cd:ae:be:20:5a:b8:ca:a5:8a:79:1f:a4:24:74:e7:89:
        97:3a:67:12:e0:8b:f8:5f:24:9b:fd:99:73:b3:81:45:
        94:cf:79:63:25:4e:29:d8:4e:b3:6a:e6:86:8a:0f:88:
        21:84:fe:d0:9d:7b:af:db:0c:66:51:2d:e3:3b:b1:73:
        91:2f:89:c6:fc:c8:33:67:1d:ec:60:9c:6d:c9:2e:90:
        e9:d7:33:bc:92:75:68:15:fa:7b:72:a7:4a:98:25:93:
        8d:fc:18:94:14:f6:ef:8b:4b:8e:2a:14:31:43:a8:bd:
        d0:4a:c9:d5:71:e7:b7:f6:22:40:f0:99:79:50:36:eb:
        6d:12:dd:64:07:c3:da:a4:7f:7b:ae:b6:f1:1e:46:c0
    Fingerprint (SHA-256):
        99:17:98:A9:20:71:0C:52:87:35:B1:2B:D8:F2:D2:A3:33:E8:24:F2:24:4F:D1:03:27:C1:E9:45:66:31:CD:4A
    Fingerprint (SHA1):
        4F:45:3E:65:B2:4A:A0:D5:3C:86:B2:83:E3:73:11:15:A6:A6:AC:D3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3072: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3073: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154140 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3074: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3075: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3076: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154141 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3077: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3078: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3079: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3080: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154142 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3081: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3082: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154143 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3083: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3084: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3085: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3086: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3087: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154144   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502154046.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3088: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3089: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3090: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3091: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154145   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3092: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3093: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3094: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3095: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154141 (0x1dee439d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:42:20 2017
            Not After : Mon May 02 15:42:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:f6:78:ce:f0:dd:3e:24:3b:02:43:b6:77:e3:29:16:
                    4f:6f:24:02:4a:9b:05:02:e6:5a:f8:54:a9:df:7a:2b:
                    15:24:b1:74:57:41:de:75:02:bd:15:45:94:49:e4:ee:
                    dd:f0:0b:3d:b5:85:7a:fb:ad:09:ce:bc:f1:8c:3e:9e:
                    73:5e:a9:7c:1a:f0:71:40:44:2e:21:6a:25:2c:06:55:
                    4b:8a:c8:ef:5f:97:3d:41:62:f9:06:8c:88:3a:58:62:
                    fc:1d:25:fc:de:2c:cb:75:20:7e:6d:56:63:ae:4f:77:
                    c3:fd:ae:42:80:c2:b8:6e:f1:82:80:29:75:30:63:00:
                    6c:54:4e:bd:d0:c6:1f:81:be:7e:05:b9:96:f1:aa:50:
                    86:b6:05:61:a5:a9:51:cc:e3:1b:ad:17:26:4a:93:7f:
                    ee:ae:e2:f6:e9:89:e6:66:45:12:da:3d:e7:d8:82:55:
                    d7:2e:62:6e:57:56:21:65:69:b4:a8:75:bd:ef:a8:4d:
                    3e:28:f4:07:9b:d0:f6:91:1e:4a:00:40:59:dc:22:0a:
                    5b:55:99:1e:f9:64:7d:1f:7a:74:cc:fc:de:77:39:4b:
                    f0:c6:e9:45:c6:43:05:55:38:bf:88:aa:db:c5:29:e2:
                    eb:34:27:41:93:bf:73:09:3d:4c:1c:5a:51:73:b3:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:d8:c0:e6:dd:1d:d5:51:5c:10:5e:d8:a0:cb:aa:61:
        20:c5:29:00:53:0f:3e:bd:56:5a:dd:9c:0c:39:02:7a:
        b3:a6:e6:db:ea:2e:ba:c3:dd:05:46:92:71:33:ae:2d:
        b2:d9:36:8e:b2:a2:3b:d8:a8:1b:82:ab:4e:23:7b:89:
        7c:41:f8:5b:07:3c:da:6e:e2:4c:21:0c:11:17:bf:42:
        fb:7a:de:84:01:41:b5:62:67:62:32:7e:f4:e4:03:aa:
        19:8b:fb:ad:fc:cd:ab:fd:3a:90:a6:d2:d5:85:ad:62:
        c1:fd:2b:2d:f0:af:3e:aa:1d:8b:5e:0e:43:df:a2:5c:
        f0:d4:81:d1:35:0c:6b:4a:d7:1d:89:4e:1c:74:66:ea:
        b5:ee:47:e1:19:44:49:23:23:78:a1:23:16:d2:b7:fb:
        a3:2b:99:eb:72:c8:32:55:33:90:f8:d2:59:70:f4:ba:
        02:f8:a1:22:a4:19:e0:cb:a9:0f:cf:a1:9c:2d:89:2b:
        b1:22:51:8f:1e:1a:ae:3c:a5:48:b4:c3:58:23:bf:a0:
        e8:a3:ad:0b:dd:2b:e3:18:5e:ba:5f:05:aa:44:3a:31:
        4b:77:9d:f0:cc:5b:f6:29:f6:8d:ab:35:49:dc:bb:cf:
        fa:f5:18:82:59:74:7b:da:5b:4f:23:e9:ee:16:b6:31
    Fingerprint (SHA-256):
        99:0F:33:7F:29:B1:E8:E0:0E:B4:0D:E0:AC:F9:31:8D:BF:62:27:49:D0:7C:C2:C3:69:D0:A0:0F:51:7B:10:F0
    Fingerprint (SHA1):
        16:85:51:C3:9D:F0:29:63:D4:BF:5F:20:E4:2A:35:A7:9D:BA:9D:E1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3096: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154141 (0x1dee439d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:42:20 2017
            Not After : Mon May 02 15:42:20 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:f6:78:ce:f0:dd:3e:24:3b:02:43:b6:77:e3:29:16:
                    4f:6f:24:02:4a:9b:05:02:e6:5a:f8:54:a9:df:7a:2b:
                    15:24:b1:74:57:41:de:75:02:bd:15:45:94:49:e4:ee:
                    dd:f0:0b:3d:b5:85:7a:fb:ad:09:ce:bc:f1:8c:3e:9e:
                    73:5e:a9:7c:1a:f0:71:40:44:2e:21:6a:25:2c:06:55:
                    4b:8a:c8:ef:5f:97:3d:41:62:f9:06:8c:88:3a:58:62:
                    fc:1d:25:fc:de:2c:cb:75:20:7e:6d:56:63:ae:4f:77:
                    c3:fd:ae:42:80:c2:b8:6e:f1:82:80:29:75:30:63:00:
                    6c:54:4e:bd:d0:c6:1f:81:be:7e:05:b9:96:f1:aa:50:
                    86:b6:05:61:a5:a9:51:cc:e3:1b:ad:17:26:4a:93:7f:
                    ee:ae:e2:f6:e9:89:e6:66:45:12:da:3d:e7:d8:82:55:
                    d7:2e:62:6e:57:56:21:65:69:b4:a8:75:bd:ef:a8:4d:
                    3e:28:f4:07:9b:d0:f6:91:1e:4a:00:40:59:dc:22:0a:
                    5b:55:99:1e:f9:64:7d:1f:7a:74:cc:fc:de:77:39:4b:
                    f0:c6:e9:45:c6:43:05:55:38:bf:88:aa:db:c5:29:e2:
                    eb:34:27:41:93:bf:73:09:3d:4c:1c:5a:51:73:b3:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:d8:c0:e6:dd:1d:d5:51:5c:10:5e:d8:a0:cb:aa:61:
        20:c5:29:00:53:0f:3e:bd:56:5a:dd:9c:0c:39:02:7a:
        b3:a6:e6:db:ea:2e:ba:c3:dd:05:46:92:71:33:ae:2d:
        b2:d9:36:8e:b2:a2:3b:d8:a8:1b:82:ab:4e:23:7b:89:
        7c:41:f8:5b:07:3c:da:6e:e2:4c:21:0c:11:17:bf:42:
        fb:7a:de:84:01:41:b5:62:67:62:32:7e:f4:e4:03:aa:
        19:8b:fb:ad:fc:cd:ab:fd:3a:90:a6:d2:d5:85:ad:62:
        c1:fd:2b:2d:f0:af:3e:aa:1d:8b:5e:0e:43:df:a2:5c:
        f0:d4:81:d1:35:0c:6b:4a:d7:1d:89:4e:1c:74:66:ea:
        b5:ee:47:e1:19:44:49:23:23:78:a1:23:16:d2:b7:fb:
        a3:2b:99:eb:72:c8:32:55:33:90:f8:d2:59:70:f4:ba:
        02:f8:a1:22:a4:19:e0:cb:a9:0f:cf:a1:9c:2d:89:2b:
        b1:22:51:8f:1e:1a:ae:3c:a5:48:b4:c3:58:23:bf:a0:
        e8:a3:ad:0b:dd:2b:e3:18:5e:ba:5f:05:aa:44:3a:31:
        4b:77:9d:f0:cc:5b:f6:29:f6:8d:ab:35:49:dc:bb:cf:
        fa:f5:18:82:59:74:7b:da:5b:4f:23:e9:ee:16:b6:31
    Fingerprint (SHA-256):
        99:0F:33:7F:29:B1:E8:E0:0E:B4:0D:E0:AC:F9:31:8D:BF:62:27:49:D0:7C:C2:C3:69:D0:A0:0F:51:7B:10:F0
    Fingerprint (SHA1):
        16:85:51:C3:9D:F0:29:63:D4:BF:5F:20:E4:2A:35:A7:9D:BA:9D:E1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3097: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3098: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154146 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3099: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3100: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3101: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154147 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3102: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3103: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3104: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3105: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154148 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3106: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3107: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154149 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3108: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3109: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3110: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3111: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3112: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154150   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502154047.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3113: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3114: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3115: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3116: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154151   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3117: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3118: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3119: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3120: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502154152   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-BridgeNavy-502154048.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3121: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3122: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3123: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3124: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154153   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3125: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3126: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3127: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3128: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154147 (0x1dee43a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:42:25 2017
            Not After : Mon May 02 15:42:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:08:81:bd:a5:67:4d:df:b0:03:d4:6e:30:37:51:d6:
                    e7:0d:df:bb:c1:f7:ac:20:36:e2:d6:3e:2a:2e:ee:f6:
                    db:2e:70:93:b6:22:85:03:76:86:0c:b3:41:7b:20:d3:
                    7f:f9:fb:71:a0:82:14:ad:4f:de:f3:4a:2f:34:30:d7:
                    85:2d:98:91:68:89:a6:56:07:b5:90:f7:6d:7f:82:cd:
                    96:51:af:0e:38:5c:6c:d7:96:3f:8c:17:6f:a5:18:62:
                    8a:1a:0a:1d:69:dc:93:bb:4b:78:31:b5:a2:ca:28:86:
                    de:a3:f6:bd:86:77:68:a9:d1:27:da:ba:d5:af:25:14:
                    ed:d9:a7:d1:46:8d:15:3f:b0:26:fd:68:c9:bc:cf:bc:
                    a5:29:94:3b:57:d8:95:13:08:59:d1:ae:38:da:8e:77:
                    b4:bf:ea:49:9e:d5:b2:5c:7d:64:16:8e:2a:b5:c9:21:
                    31:d8:06:2a:60:47:2c:97:e8:7a:f5:d1:7d:55:90:c0:
                    0a:c6:29:75:40:e2:65:f7:3d:fd:9f:20:c7:c3:9c:d1:
                    52:2b:e9:53:44:4a:ea:cd:aa:eb:62:74:1f:41:07:56:
                    72:ad:d9:76:c4:74:bc:2d:b9:b7:db:b9:00:43:61:dd:
                    60:13:57:58:97:95:d3:ca:53:6c:e8:4f:07:93:39:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0f:49:c3:6a:d9:b2:ac:e9:01:23:9d:50:6f:0d:8f:
        5b:23:a7:e6:28:0f:ea:50:a3:24:d3:8d:eb:cc:52:e8:
        26:5a:d7:9c:39:d9:6f:ff:53:dd:d5:a8:61:b3:e2:c6:
        4d:53:c9:83:3f:1a:eb:9b:78:c0:42:15:36:9e:ca:44:
        28:50:18:19:35:d9:bf:49:c8:0a:3b:9e:40:ee:d2:69:
        99:b2:1a:eb:af:34:6d:fb:91:27:de:b4:c5:11:a2:24:
        46:7e:65:0b:e0:be:7e:2f:e6:fd:91:4a:8c:89:b3:db:
        d7:42:a9:d0:af:99:fa:75:6c:e1:21:4d:98:9f:c4:4f:
        19:f7:d2:d2:d9:d8:1a:14:00:21:67:53:6f:3a:9b:c5:
        60:6d:be:92:0a:8a:56:e8:7f:83:c7:3e:c9:cb:b9:19:
        c4:89:cc:9b:18:eb:1c:0f:69:c8:b3:c2:e8:6c:8e:fb:
        33:8b:17:82:56:b6:10:77:20:b4:02:1d:ba:00:fb:2e:
        f3:5f:35:ff:d3:60:b9:1f:74:69:66:a5:84:2d:ed:b6:
        cb:4f:94:35:cb:e1:50:54:6a:9a:4e:47:39:86:ac:9a:
        f7:38:7d:d5:b5:17:59:14:85:1c:46:20:c6:0c:be:bc:
        32:60:e2:13:50:f7:6a:cf:b6:ee:87:02:7b:4a:87:da
    Fingerprint (SHA-256):
        7A:9D:39:49:0B:56:E2:6F:17:E1:4F:7A:B0:81:16:DC:51:32:21:19:93:B7:5B:BF:EA:19:41:75:C4:75:FC:59
    Fingerprint (SHA1):
        65:60:98:6F:02:A1:3A:F7:65:6E:D9:E5:CD:8A:75:C8:4D:80:13:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3129: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154147 (0x1dee43a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:42:25 2017
            Not After : Mon May 02 15:42:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:08:81:bd:a5:67:4d:df:b0:03:d4:6e:30:37:51:d6:
                    e7:0d:df:bb:c1:f7:ac:20:36:e2:d6:3e:2a:2e:ee:f6:
                    db:2e:70:93:b6:22:85:03:76:86:0c:b3:41:7b:20:d3:
                    7f:f9:fb:71:a0:82:14:ad:4f:de:f3:4a:2f:34:30:d7:
                    85:2d:98:91:68:89:a6:56:07:b5:90:f7:6d:7f:82:cd:
                    96:51:af:0e:38:5c:6c:d7:96:3f:8c:17:6f:a5:18:62:
                    8a:1a:0a:1d:69:dc:93:bb:4b:78:31:b5:a2:ca:28:86:
                    de:a3:f6:bd:86:77:68:a9:d1:27:da:ba:d5:af:25:14:
                    ed:d9:a7:d1:46:8d:15:3f:b0:26:fd:68:c9:bc:cf:bc:
                    a5:29:94:3b:57:d8:95:13:08:59:d1:ae:38:da:8e:77:
                    b4:bf:ea:49:9e:d5:b2:5c:7d:64:16:8e:2a:b5:c9:21:
                    31:d8:06:2a:60:47:2c:97:e8:7a:f5:d1:7d:55:90:c0:
                    0a:c6:29:75:40:e2:65:f7:3d:fd:9f:20:c7:c3:9c:d1:
                    52:2b:e9:53:44:4a:ea:cd:aa:eb:62:74:1f:41:07:56:
                    72:ad:d9:76:c4:74:bc:2d:b9:b7:db:b9:00:43:61:dd:
                    60:13:57:58:97:95:d3:ca:53:6c:e8:4f:07:93:39:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0f:49:c3:6a:d9:b2:ac:e9:01:23:9d:50:6f:0d:8f:
        5b:23:a7:e6:28:0f:ea:50:a3:24:d3:8d:eb:cc:52:e8:
        26:5a:d7:9c:39:d9:6f:ff:53:dd:d5:a8:61:b3:e2:c6:
        4d:53:c9:83:3f:1a:eb:9b:78:c0:42:15:36:9e:ca:44:
        28:50:18:19:35:d9:bf:49:c8:0a:3b:9e:40:ee:d2:69:
        99:b2:1a:eb:af:34:6d:fb:91:27:de:b4:c5:11:a2:24:
        46:7e:65:0b:e0:be:7e:2f:e6:fd:91:4a:8c:89:b3:db:
        d7:42:a9:d0:af:99:fa:75:6c:e1:21:4d:98:9f:c4:4f:
        19:f7:d2:d2:d9:d8:1a:14:00:21:67:53:6f:3a:9b:c5:
        60:6d:be:92:0a:8a:56:e8:7f:83:c7:3e:c9:cb:b9:19:
        c4:89:cc:9b:18:eb:1c:0f:69:c8:b3:c2:e8:6c:8e:fb:
        33:8b:17:82:56:b6:10:77:20:b4:02:1d:ba:00:fb:2e:
        f3:5f:35:ff:d3:60:b9:1f:74:69:66:a5:84:2d:ed:b6:
        cb:4f:94:35:cb:e1:50:54:6a:9a:4e:47:39:86:ac:9a:
        f7:38:7d:d5:b5:17:59:14:85:1c:46:20:c6:0c:be:bc:
        32:60:e2:13:50:f7:6a:cf:b6:ee:87:02:7b:4a:87:da
    Fingerprint (SHA-256):
        7A:9D:39:49:0B:56:E2:6F:17:E1:4F:7A:B0:81:16:DC:51:32:21:19:93:B7:5B:BF:EA:19:41:75:C4:75:FC:59
    Fingerprint (SHA1):
        65:60:98:6F:02:A1:3A:F7:65:6E:D9:E5:CD:8A:75:C8:4D:80:13:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3130: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3131: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154146 (0x1dee43a2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:42:25 2017
            Not After : Mon May 02 15:42:25 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:19:43:e0:52:fb:a9:89:6f:3e:d8:18:f3:13:3c:0c:
                    e0:d6:a4:56:b2:9e:c3:1b:37:79:17:fe:8f:98:77:8d:
                    18:fd:50:31:e5:c3:5b:53:19:a3:27:62:16:4a:7a:93:
                    80:d5:51:f6:29:72:04:8f:4a:0d:88:37:c1:6b:50:40:
                    ef:1a:75:77:18:6c:c4:59:1c:cb:4a:97:c4:4e:a1:6c:
                    0b:e8:51:7c:a1:c0:b7:fd:e5:d9:03:94:ad:87:64:9b:
                    e5:55:b9:55:ec:51:27:16:d9:da:80:93:cf:4f:42:73:
                    c7:6b:49:94:c6:b4:57:ec:24:e9:91:d9:33:54:db:82:
                    12:11:55:de:48:12:c6:23:ba:66:71:6e:bc:d4:d5:1d:
                    fc:e2:70:71:5d:d9:62:ad:2c:48:17:ce:9a:c5:89:ff:
                    d4:20:cc:b0:19:cd:25:24:c1:a1:a4:05:f4:9e:37:a7:
                    e6:d3:88:e7:00:85:c3:e2:a2:b1:db:fb:80:f3:4f:d0:
                    48:60:7b:c3:0e:20:10:4c:cd:1f:93:fb:5f:31:b3:4f:
                    5a:2d:b1:11:c9:9f:78:ea:87:3f:aa:43:b5:49:1b:83:
                    0f:57:5d:f0:a5:0a:fc:39:af:a0:0d:54:c1:69:9d:fa:
                    03:9a:eb:0b:77:53:49:72:4d:5b:38:58:50:b4:37:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:38:0f:22:0e:8f:ae:23:b0:87:a8:4a:9c:3a:29:38:
        db:1d:6d:ec:10:2f:b5:ed:74:60:f4:9b:c4:92:7a:eb:
        99:cb:3d:f9:a2:dc:f7:c0:4b:dc:e9:1a:21:ff:d3:1b:
        12:ff:c3:c1:c5:63:57:d7:05:6b:3e:21:4b:d9:b3:ad:
        91:0d:5d:64:5b:c5:8f:9c:e9:b4:fa:27:7f:ce:d5:c8:
        09:52:26:4e:4b:6b:43:bb:e0:f4:51:01:dd:5b:ab:0f:
        cd:98:a7:6a:14:d9:2a:15:e1:40:c7:4a:fc:12:23:a7:
        7a:c6:03:85:a8:35:e7:aa:c9:e2:a6:47:74:fe:f4:eb:
        34:da:7a:1a:05:67:20:0a:e9:2b:3e:a2:a9:25:03:3f:
        8f:7f:f7:61:37:16:8f:56:b3:d7:2a:30:5a:62:ad:d5:
        ca:c7:25:a9:b2:56:69:e0:df:99:f8:4f:77:01:d3:bb:
        6b:25:d5:69:b4:ce:7a:af:1b:74:27:09:b6:ba:81:f7:
        55:61:75:13:4f:43:29:e5:c9:f1:b0:5f:6e:19:10:71:
        af:d4:21:8e:15:cb:c4:8a:e6:bb:42:a8:27:b0:e1:05:
        15:f9:83:00:8c:1b:75:77:41:b4:3a:1a:a1:e9:5f:1b:
        6f:30:9f:73:4b:e5:77:f7:f1:cb:ec:be:fb:65:f3:28
    Fingerprint (SHA-256):
        1C:4A:65:F4:18:2C:6C:35:82:17:9C:27:23:1D:F7:28:91:57:13:3A:AF:C9:F4:37:8A:38:08:1A:F5:4F:20:A6
    Fingerprint (SHA1):
        B4:5A:21:E6:60:9C:87:CD:F7:D0:9A:87:F4:60:93:59:FA:FD:01:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3132: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154147 (0x1dee43a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:42:25 2017
            Not After : Mon May 02 15:42:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:08:81:bd:a5:67:4d:df:b0:03:d4:6e:30:37:51:d6:
                    e7:0d:df:bb:c1:f7:ac:20:36:e2:d6:3e:2a:2e:ee:f6:
                    db:2e:70:93:b6:22:85:03:76:86:0c:b3:41:7b:20:d3:
                    7f:f9:fb:71:a0:82:14:ad:4f:de:f3:4a:2f:34:30:d7:
                    85:2d:98:91:68:89:a6:56:07:b5:90:f7:6d:7f:82:cd:
                    96:51:af:0e:38:5c:6c:d7:96:3f:8c:17:6f:a5:18:62:
                    8a:1a:0a:1d:69:dc:93:bb:4b:78:31:b5:a2:ca:28:86:
                    de:a3:f6:bd:86:77:68:a9:d1:27:da:ba:d5:af:25:14:
                    ed:d9:a7:d1:46:8d:15:3f:b0:26:fd:68:c9:bc:cf:bc:
                    a5:29:94:3b:57:d8:95:13:08:59:d1:ae:38:da:8e:77:
                    b4:bf:ea:49:9e:d5:b2:5c:7d:64:16:8e:2a:b5:c9:21:
                    31:d8:06:2a:60:47:2c:97:e8:7a:f5:d1:7d:55:90:c0:
                    0a:c6:29:75:40:e2:65:f7:3d:fd:9f:20:c7:c3:9c:d1:
                    52:2b:e9:53:44:4a:ea:cd:aa:eb:62:74:1f:41:07:56:
                    72:ad:d9:76:c4:74:bc:2d:b9:b7:db:b9:00:43:61:dd:
                    60:13:57:58:97:95:d3:ca:53:6c:e8:4f:07:93:39:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0f:49:c3:6a:d9:b2:ac:e9:01:23:9d:50:6f:0d:8f:
        5b:23:a7:e6:28:0f:ea:50:a3:24:d3:8d:eb:cc:52:e8:
        26:5a:d7:9c:39:d9:6f:ff:53:dd:d5:a8:61:b3:e2:c6:
        4d:53:c9:83:3f:1a:eb:9b:78:c0:42:15:36:9e:ca:44:
        28:50:18:19:35:d9:bf:49:c8:0a:3b:9e:40:ee:d2:69:
        99:b2:1a:eb:af:34:6d:fb:91:27:de:b4:c5:11:a2:24:
        46:7e:65:0b:e0:be:7e:2f:e6:fd:91:4a:8c:89:b3:db:
        d7:42:a9:d0:af:99:fa:75:6c:e1:21:4d:98:9f:c4:4f:
        19:f7:d2:d2:d9:d8:1a:14:00:21:67:53:6f:3a:9b:c5:
        60:6d:be:92:0a:8a:56:e8:7f:83:c7:3e:c9:cb:b9:19:
        c4:89:cc:9b:18:eb:1c:0f:69:c8:b3:c2:e8:6c:8e:fb:
        33:8b:17:82:56:b6:10:77:20:b4:02:1d:ba:00:fb:2e:
        f3:5f:35:ff:d3:60:b9:1f:74:69:66:a5:84:2d:ed:b6:
        cb:4f:94:35:cb:e1:50:54:6a:9a:4e:47:39:86:ac:9a:
        f7:38:7d:d5:b5:17:59:14:85:1c:46:20:c6:0c:be:bc:
        32:60:e2:13:50:f7:6a:cf:b6:ee:87:02:7b:4a:87:da
    Fingerprint (SHA-256):
        7A:9D:39:49:0B:56:E2:6F:17:E1:4F:7A:B0:81:16:DC:51:32:21:19:93:B7:5B:BF:EA:19:41:75:C4:75:FC:59
    Fingerprint (SHA1):
        65:60:98:6F:02:A1:3A:F7:65:6E:D9:E5:CD:8A:75:C8:4D:80:13:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3133: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154147 (0x1dee43a3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:42:25 2017
            Not After : Mon May 02 15:42:25 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:08:81:bd:a5:67:4d:df:b0:03:d4:6e:30:37:51:d6:
                    e7:0d:df:bb:c1:f7:ac:20:36:e2:d6:3e:2a:2e:ee:f6:
                    db:2e:70:93:b6:22:85:03:76:86:0c:b3:41:7b:20:d3:
                    7f:f9:fb:71:a0:82:14:ad:4f:de:f3:4a:2f:34:30:d7:
                    85:2d:98:91:68:89:a6:56:07:b5:90:f7:6d:7f:82:cd:
                    96:51:af:0e:38:5c:6c:d7:96:3f:8c:17:6f:a5:18:62:
                    8a:1a:0a:1d:69:dc:93:bb:4b:78:31:b5:a2:ca:28:86:
                    de:a3:f6:bd:86:77:68:a9:d1:27:da:ba:d5:af:25:14:
                    ed:d9:a7:d1:46:8d:15:3f:b0:26:fd:68:c9:bc:cf:bc:
                    a5:29:94:3b:57:d8:95:13:08:59:d1:ae:38:da:8e:77:
                    b4:bf:ea:49:9e:d5:b2:5c:7d:64:16:8e:2a:b5:c9:21:
                    31:d8:06:2a:60:47:2c:97:e8:7a:f5:d1:7d:55:90:c0:
                    0a:c6:29:75:40:e2:65:f7:3d:fd:9f:20:c7:c3:9c:d1:
                    52:2b:e9:53:44:4a:ea:cd:aa:eb:62:74:1f:41:07:56:
                    72:ad:d9:76:c4:74:bc:2d:b9:b7:db:b9:00:43:61:dd:
                    60:13:57:58:97:95:d3:ca:53:6c:e8:4f:07:93:39:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:0f:49:c3:6a:d9:b2:ac:e9:01:23:9d:50:6f:0d:8f:
        5b:23:a7:e6:28:0f:ea:50:a3:24:d3:8d:eb:cc:52:e8:
        26:5a:d7:9c:39:d9:6f:ff:53:dd:d5:a8:61:b3:e2:c6:
        4d:53:c9:83:3f:1a:eb:9b:78:c0:42:15:36:9e:ca:44:
        28:50:18:19:35:d9:bf:49:c8:0a:3b:9e:40:ee:d2:69:
        99:b2:1a:eb:af:34:6d:fb:91:27:de:b4:c5:11:a2:24:
        46:7e:65:0b:e0:be:7e:2f:e6:fd:91:4a:8c:89:b3:db:
        d7:42:a9:d0:af:99:fa:75:6c:e1:21:4d:98:9f:c4:4f:
        19:f7:d2:d2:d9:d8:1a:14:00:21:67:53:6f:3a:9b:c5:
        60:6d:be:92:0a:8a:56:e8:7f:83:c7:3e:c9:cb:b9:19:
        c4:89:cc:9b:18:eb:1c:0f:69:c8:b3:c2:e8:6c:8e:fb:
        33:8b:17:82:56:b6:10:77:20:b4:02:1d:ba:00:fb:2e:
        f3:5f:35:ff:d3:60:b9:1f:74:69:66:a5:84:2d:ed:b6:
        cb:4f:94:35:cb:e1:50:54:6a:9a:4e:47:39:86:ac:9a:
        f7:38:7d:d5:b5:17:59:14:85:1c:46:20:c6:0c:be:bc:
        32:60:e2:13:50:f7:6a:cf:b6:ee:87:02:7b:4a:87:da
    Fingerprint (SHA-256):
        7A:9D:39:49:0B:56:E2:6F:17:E1:4F:7A:B0:81:16:DC:51:32:21:19:93:B7:5B:BF:EA:19:41:75:C4:75:FC:59
    Fingerprint (SHA1):
        65:60:98:6F:02:A1:3A:F7:65:6E:D9:E5:CD:8A:75:C8:4D:80:13:8C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3134: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3135: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154154 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3136: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3137: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3138: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154155 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3139: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3140: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3141: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3142: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502154156   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3143: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3144: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3145: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3146: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502154157   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3147: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3148: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3149: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3150: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502154158 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3151: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3152: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502154159 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3153: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3154: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3155: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3156: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3157: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154160   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3158: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3159: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3160: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3161: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502154161   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3162: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3163: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3164: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3165: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154162   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3166: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3167: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3168: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3169: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154163   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3170: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3171: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3172: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154154 (0x1dee43aa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:42:31 2017
            Not After : Mon May 02 15:42:31 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:e9:ce:ff:32:ba:6e:2a:fb:35:b1:4f:19:2a:9e:29:
                    bf:f3:c5:2a:2d:70:77:f6:6d:9e:e7:9e:aa:f2:0a:7b:
                    bb:97:55:a8:00:76:ba:65:37:2c:a8:95:d5:50:fc:14:
                    a1:29:b3:bb:4a:0a:af:73:bf:ae:c4:6d:89:31:10:37:
                    dc:87:8b:70:cf:6e:9d:c2:45:2e:fe:5b:02:42:16:45:
                    40:02:b9:98:6e:aa:6a:14:e2:03:3b:81:e5:83:fc:f3:
                    49:33:9a:79:f3:36:c5:35:78:bb:ca:10:d3:20:0f:a9:
                    8e:f7:35:20:ff:56:1d:0b:40:2d:11:f1:66:cd:0b:4a:
                    e4:20:e2:81:dc:44:0b:39:7c:bd:04:28:48:28:fa:cb:
                    68:1d:4c:eb:6c:8a:0f:1b:ff:57:77:4b:0b:bd:7f:ea:
                    b7:3f:e5:2a:10:9e:5f:e9:fb:9d:6c:98:2a:7f:77:c9:
                    b0:b3:46:79:18:f0:f5:ee:89:39:19:22:bf:41:8e:f2:
                    49:7f:b1:78:0e:ed:83:46:96:e3:27:a8:e1:5a:a5:75:
                    e3:da:51:b5:04:de:e9:06:da:ac:d2:45:d6:bf:8d:00:
                    23:21:14:36:53:74:1b:d6:4f:0a:48:10:e7:de:aa:4f:
                    e2:34:06:b8:36:f7:e4:2c:fa:36:7b:5b:5e:24:e7:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6b:d8:bd:41:a2:6d:a5:a0:92:81:92:73:39:ef:00:16:
        a3:2a:5a:c4:76:fa:77:e0:87:d6:22:82:ec:ca:ed:c3:
        e4:11:ef:42:03:21:d6:b5:93:ee:91:c0:9c:3c:f8:49:
        ed:5e:ec:1a:da:9e:fa:23:31:8a:41:f1:b5:7d:8b:2e:
        0e:8b:39:c1:5f:f6:c5:fe:9a:23:97:8f:bc:a5:01:03:
        bc:51:2b:cb:78:a9:c0:ed:ae:f1:0a:33:21:7b:a1:bc:
        74:13:34:b0:cc:3e:26:98:4e:44:9e:db:2a:f7:35:7d:
        7f:f6:f0:6b:d7:fd:8d:fd:ff:ae:1a:02:b9:f0:b1:b5:
        e5:ac:f0:72:1b:73:a7:d1:bb:ea:ee:94:64:63:8d:1c:
        e1:11:e2:c1:7c:4c:de:71:e9:7f:3e:e3:da:cc:ae:1c:
        de:98:19:a0:c0:61:dc:17:c2:6d:70:86:a7:59:92:d1:
        81:d2:bc:0d:16:5b:33:fc:92:e5:48:ed:07:38:bc:e9:
        99:07:fc:9c:66:f3:e0:19:c5:50:31:78:5f:df:59:ec:
        21:7e:9f:5f:30:d2:00:07:4d:01:ef:0e:21:5d:62:fc:
        e5:32:78:a9:b4:39:ff:bf:0e:fc:68:ee:5a:36:64:08:
        b0:a4:d7:70:9c:ac:1f:c7:db:31:69:5d:37:9d:c6:0c
    Fingerprint (SHA-256):
        1E:9B:1E:06:5E:BB:09:54:03:9C:49:A2:AA:F0:03:A6:43:33:80:57:AC:9D:4D:9A:21:FD:F9:68:AB:91:27:CF
    Fingerprint (SHA1):
        98:6A:AA:FD:59:CC:9B:61:5A:E6:10:46:FD:CC:18:3D:01:10:03:96
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3173: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3174: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3175: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3176: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3177: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3178: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3179: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3180: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3181: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154155 (0x1dee43ab)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:42:31 2017
            Not After : Mon May 02 15:42:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fb:1e:0f:b9:04:cc:59:6f:f9:36:6c:71:b4:a2:56:90:
                    92:24:95:fc:10:36:0d:19:30:d7:0b:5a:d1:40:00:98:
                    c5:c9:97:11:1e:32:f3:24:e9:1f:58:a7:48:31:10:e7:
                    50:fc:a9:e5:e0:b6:e7:7b:93:c1:c4:1f:64:a8:a0:cb:
                    1b:57:73:27:88:c0:9d:4f:36:1e:de:6c:23:a0:7e:be:
                    69:dc:1e:5c:a9:23:f9:4f:87:18:55:4e:4b:fe:e1:67:
                    62:ba:7f:35:63:5c:1a:7a:b6:41:2c:d5:f1:26:50:07:
                    2b:4e:e6:ae:f9:bf:3a:d0:73:7f:ea:be:41:79:c3:f5:
                    c4:2d:6b:62:23:cc:51:2b:87:0a:6c:53:90:fa:a0:ac:
                    9a:f4:c3:ec:0f:52:12:8d:ee:d9:23:d9:ce:e9:32:5f:
                    ed:6e:1c:1f:93:8f:b3:29:b6:eb:79:93:79:78:5c:94:
                    4d:52:4d:38:11:c9:ec:ce:14:ff:e4:43:05:07:95:aa:
                    de:24:0d:45:60:01:34:5e:7a:a0:19:74:83:14:92:36:
                    e7:9d:3e:79:90:d6:1a:4f:19:08:80:51:5d:ed:9b:f5:
                    6d:ce:78:c3:fc:74:54:cc:ba:6a:34:de:d9:42:b6:8a:
                    94:ce:28:c1:53:3f:eb:ca:c2:44:04:27:c3:c4:bf:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0f:3d:65:c7:d3:5a:d4:33:54:3e:d1:65:3a:f1:33:14:
        aa:e9:2b:33:21:e2:f6:31:ad:8a:a1:9e:2c:e1:8e:33:
        38:41:3e:4a:4e:81:68:62:a6:c5:17:f8:07:31:18:04:
        59:5e:d0:e4:5d:23:8e:93:9c:56:10:07:00:37:bc:5b:
        70:dc:f0:fb:ea:36:c3:61:a6:a4:06:af:5f:b2:3e:f2:
        cf:d0:3c:a3:e8:b3:ed:9c:ea:8a:21:24:78:cc:36:09:
        e8:fe:f9:e1:66:6a:78:d9:8c:63:bb:f8:ed:6b:d8:c6:
        5e:10:4a:0e:f3:2a:2e:df:c5:1e:f8:f5:1e:1e:61:ce:
        a0:e6:af:f8:4b:4d:00:9c:b5:74:e4:14:41:bf:1d:84:
        a0:a8:06:41:d2:4d:83:eb:d3:db:ff:fb:ab:72:5d:60:
        92:21:9c:cc:9e:e4:9a:5c:5e:bf:64:1a:8d:c3:66:63:
        93:4b:b1:90:ea:9f:6e:9a:98:3f:f8:d8:4a:cd:f6:18:
        04:cc:44:15:62:f6:32:44:5c:95:e8:6e:37:71:5f:58:
        c6:72:76:65:73:67:54:9b:29:4a:52:ec:23:28:bf:fa:
        47:96:d9:19:e5:12:42:25:e3:88:fa:89:5d:55:6a:96:
        8e:37:98:6f:48:3c:62:67:69:b3:ec:ae:30:2d:93:64
    Fingerprint (SHA-256):
        95:95:2F:A3:45:AE:F5:C2:03:88:5E:08:09:66:B2:6F:C5:0D:DB:8C:12:71:F1:BA:6B:0B:E2:A4:6C:A3:F1:DF
    Fingerprint (SHA1):
        69:00:A3:99:A3:17:0C:C4:AC:1E:ED:FE:02:F9:E2:16:A6:4B:67:15
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3182: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3183: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3184: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3185: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3186: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3187: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3188: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3189: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3190: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #3191: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #3192: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #3193: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #3194: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #3195: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3196: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3197: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #3198: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #3199: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3200: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154164 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3201: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3202: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3203: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3204: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154165   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3205: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3206: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3207: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3208: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154166   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3209: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3210: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3211: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3212: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502154167   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3213: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3214: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3215: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3216: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154168   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3217: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3218: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3219: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3220: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502154169   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3221: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3222: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3223: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3224: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502154170   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3225: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3226: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #3227: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3228: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502154171   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3229: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3230: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3231: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3232: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502154172   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3233: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3234: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3235: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154164 (0x1dee43b4)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:38 2017
            Not After : Mon May 02 15:42:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    1c:b5:a7:3d:15:f4:e0:f0:03:74:49:12:d5:b6:05:e8:
                    c8:8e:3c:04:66:ed:d2:5e:6f:a3:19:f3:25:ea:b3:54:
                    b3:22:fe:e1:be:ae:e5:76:a8:04:77:d9:b8:73:9a:52:
                    0a:08:88:08:cb:9d:61:f1:12:88:43:98:f4:c5:99:c3:
                    38:2b:aa:ca:ad:2d:6a:6d:71:11:7b:f1:76:87:29:e6:
                    ee:d6:db:8a:11:18:53:a6:4d:98:f1:12:72:bb:e4:55:
                    4e:1c:57:56:1c:09:a3:4b:16:7c:7f:d6:6b:af:40:1d:
                    27:48:06:be:6a:54:d2:9c:29:ed:cf:9d:69:a2:55:30:
                    b4:74:a8:96:ba:9f:3b:64:61:3f:d3:ec:ac:6e:79:70:
                    c1:37:68:50:84:9e:cf:46:ee:8f:40:3d:bf:d9:63:3f:
                    58:01:46:b1:df:f0:9d:b1:47:c7:65:bb:68:53:89:03:
                    0c:06:19:7d:17:2c:da:59:bc:19:60:18:d9:29:9e:74:
                    2f:35:0c:58:34:78:d7:9c:23:96:da:22:86:e9:a2:31:
                    24:3f:de:de:66:1f:96:d4:d2:54:0c:e7:f2:71:ba:a8:
                    be:5c:c7:e3:d6:0d:c0:13:70:ca:e3:a5:07:fa:28:bc:
                    f5:30:5f:eb:c3:73:60:c9:21:47:cb:2c:7a:31:70:d3
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:28:35:53:60:2a:0a:ce:07:af:71:0a:9c:
        37:3c:81:fa:ca:b9:b1:6c:ba:90:dc:28:b7:27:d1:57:
        02:1d:00:80:db:55:c7:bb:c7:59:21:d8:2c:61:a9:d2:
        fd:1e:d3:77:70:00:fc:ee:c3:42:1a:37:c8:67:d7
    Fingerprint (SHA-256):
        24:6D:89:CB:04:F2:92:F3:16:95:B7:DE:02:54:F8:03:14:1E:8A:C1:85:07:57:88:D2:C9:33:38:BC:28:7E:EE
    Fingerprint (SHA1):
        C1:FB:21:1C:14:32:74:ED:7C:EE:43:A6:24:56:40:F8:39:0D:03:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3236: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154164 (0x1dee43b4)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:38 2017
            Not After : Mon May 02 15:42:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    1c:b5:a7:3d:15:f4:e0:f0:03:74:49:12:d5:b6:05:e8:
                    c8:8e:3c:04:66:ed:d2:5e:6f:a3:19:f3:25:ea:b3:54:
                    b3:22:fe:e1:be:ae:e5:76:a8:04:77:d9:b8:73:9a:52:
                    0a:08:88:08:cb:9d:61:f1:12:88:43:98:f4:c5:99:c3:
                    38:2b:aa:ca:ad:2d:6a:6d:71:11:7b:f1:76:87:29:e6:
                    ee:d6:db:8a:11:18:53:a6:4d:98:f1:12:72:bb:e4:55:
                    4e:1c:57:56:1c:09:a3:4b:16:7c:7f:d6:6b:af:40:1d:
                    27:48:06:be:6a:54:d2:9c:29:ed:cf:9d:69:a2:55:30:
                    b4:74:a8:96:ba:9f:3b:64:61:3f:d3:ec:ac:6e:79:70:
                    c1:37:68:50:84:9e:cf:46:ee:8f:40:3d:bf:d9:63:3f:
                    58:01:46:b1:df:f0:9d:b1:47:c7:65:bb:68:53:89:03:
                    0c:06:19:7d:17:2c:da:59:bc:19:60:18:d9:29:9e:74:
                    2f:35:0c:58:34:78:d7:9c:23:96:da:22:86:e9:a2:31:
                    24:3f:de:de:66:1f:96:d4:d2:54:0c:e7:f2:71:ba:a8:
                    be:5c:c7:e3:d6:0d:c0:13:70:ca:e3:a5:07:fa:28:bc:
                    f5:30:5f:eb:c3:73:60:c9:21:47:cb:2c:7a:31:70:d3
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:28:35:53:60:2a:0a:ce:07:af:71:0a:9c:
        37:3c:81:fa:ca:b9:b1:6c:ba:90:dc:28:b7:27:d1:57:
        02:1d:00:80:db:55:c7:bb:c7:59:21:d8:2c:61:a9:d2:
        fd:1e:d3:77:70:00:fc:ee:c3:42:1a:37:c8:67:d7
    Fingerprint (SHA-256):
        24:6D:89:CB:04:F2:92:F3:16:95:B7:DE:02:54:F8:03:14:1E:8A:C1:85:07:57:88:D2:C9:33:38:BC:28:7E:EE
    Fingerprint (SHA1):
        C1:FB:21:1C:14:32:74:ED:7C:EE:43:A6:24:56:40:F8:39:0D:03:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3237: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154164 (0x1dee43b4)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:38 2017
            Not After : Mon May 02 15:42:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    1c:b5:a7:3d:15:f4:e0:f0:03:74:49:12:d5:b6:05:e8:
                    c8:8e:3c:04:66:ed:d2:5e:6f:a3:19:f3:25:ea:b3:54:
                    b3:22:fe:e1:be:ae:e5:76:a8:04:77:d9:b8:73:9a:52:
                    0a:08:88:08:cb:9d:61:f1:12:88:43:98:f4:c5:99:c3:
                    38:2b:aa:ca:ad:2d:6a:6d:71:11:7b:f1:76:87:29:e6:
                    ee:d6:db:8a:11:18:53:a6:4d:98:f1:12:72:bb:e4:55:
                    4e:1c:57:56:1c:09:a3:4b:16:7c:7f:d6:6b:af:40:1d:
                    27:48:06:be:6a:54:d2:9c:29:ed:cf:9d:69:a2:55:30:
                    b4:74:a8:96:ba:9f:3b:64:61:3f:d3:ec:ac:6e:79:70:
                    c1:37:68:50:84:9e:cf:46:ee:8f:40:3d:bf:d9:63:3f:
                    58:01:46:b1:df:f0:9d:b1:47:c7:65:bb:68:53:89:03:
                    0c:06:19:7d:17:2c:da:59:bc:19:60:18:d9:29:9e:74:
                    2f:35:0c:58:34:78:d7:9c:23:96:da:22:86:e9:a2:31:
                    24:3f:de:de:66:1f:96:d4:d2:54:0c:e7:f2:71:ba:a8:
                    be:5c:c7:e3:d6:0d:c0:13:70:ca:e3:a5:07:fa:28:bc:
                    f5:30:5f:eb:c3:73:60:c9:21:47:cb:2c:7a:31:70:d3
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:28:35:53:60:2a:0a:ce:07:af:71:0a:9c:
        37:3c:81:fa:ca:b9:b1:6c:ba:90:dc:28:b7:27:d1:57:
        02:1d:00:80:db:55:c7:bb:c7:59:21:d8:2c:61:a9:d2:
        fd:1e:d3:77:70:00:fc:ee:c3:42:1a:37:c8:67:d7
    Fingerprint (SHA-256):
        24:6D:89:CB:04:F2:92:F3:16:95:B7:DE:02:54:F8:03:14:1E:8A:C1:85:07:57:88:D2:C9:33:38:BC:28:7E:EE
    Fingerprint (SHA1):
        C1:FB:21:1C:14:32:74:ED:7C:EE:43:A6:24:56:40:F8:39:0D:03:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3238: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154164 (0x1dee43b4)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:38 2017
            Not After : Mon May 02 15:42:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    1c:b5:a7:3d:15:f4:e0:f0:03:74:49:12:d5:b6:05:e8:
                    c8:8e:3c:04:66:ed:d2:5e:6f:a3:19:f3:25:ea:b3:54:
                    b3:22:fe:e1:be:ae:e5:76:a8:04:77:d9:b8:73:9a:52:
                    0a:08:88:08:cb:9d:61:f1:12:88:43:98:f4:c5:99:c3:
                    38:2b:aa:ca:ad:2d:6a:6d:71:11:7b:f1:76:87:29:e6:
                    ee:d6:db:8a:11:18:53:a6:4d:98:f1:12:72:bb:e4:55:
                    4e:1c:57:56:1c:09:a3:4b:16:7c:7f:d6:6b:af:40:1d:
                    27:48:06:be:6a:54:d2:9c:29:ed:cf:9d:69:a2:55:30:
                    b4:74:a8:96:ba:9f:3b:64:61:3f:d3:ec:ac:6e:79:70:
                    c1:37:68:50:84:9e:cf:46:ee:8f:40:3d:bf:d9:63:3f:
                    58:01:46:b1:df:f0:9d:b1:47:c7:65:bb:68:53:89:03:
                    0c:06:19:7d:17:2c:da:59:bc:19:60:18:d9:29:9e:74:
                    2f:35:0c:58:34:78:d7:9c:23:96:da:22:86:e9:a2:31:
                    24:3f:de:de:66:1f:96:d4:d2:54:0c:e7:f2:71:ba:a8:
                    be:5c:c7:e3:d6:0d:c0:13:70:ca:e3:a5:07:fa:28:bc:
                    f5:30:5f:eb:c3:73:60:c9:21:47:cb:2c:7a:31:70:d3
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:28:35:53:60:2a:0a:ce:07:af:71:0a:9c:
        37:3c:81:fa:ca:b9:b1:6c:ba:90:dc:28:b7:27:d1:57:
        02:1d:00:80:db:55:c7:bb:c7:59:21:d8:2c:61:a9:d2:
        fd:1e:d3:77:70:00:fc:ee:c3:42:1a:37:c8:67:d7
    Fingerprint (SHA-256):
        24:6D:89:CB:04:F2:92:F3:16:95:B7:DE:02:54:F8:03:14:1E:8A:C1:85:07:57:88:D2:C9:33:38:BC:28:7E:EE
    Fingerprint (SHA1):
        C1:FB:21:1C:14:32:74:ED:7C:EE:43:A6:24:56:40:F8:39:0D:03:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #3239: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3240: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3241: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3242: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3243: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3244: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3245: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3246: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3247: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3248: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3249: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3250: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3251: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3252: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3253: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3254: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #3255: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3256: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3257: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3258: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3259: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3260: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3261: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3262: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3263: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3264: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3265: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3266: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502154250Z
nextupdate=20180502154250Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:42:50 2017
    Next Update: Wed May 02 15:42:50 2018
    CRL Extensions:
chains.sh: #3267: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154250Z
nextupdate=20180502154250Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:42:50 2017
    Next Update: Wed May 02 15:42:50 2018
    CRL Extensions:
chains.sh: #3268: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154250Z
nextupdate=20180502154250Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:42:50 2017
    Next Update: Wed May 02 15:42:50 2018
    CRL Extensions:
chains.sh: #3269: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502154250Z
nextupdate=20180502154250Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:42:50 2017
    Next Update: Wed May 02 15:42:50 2018
    CRL Extensions:
chains.sh: #3270: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154251Z
addcert 14 20170502154251Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:42:51 2017
    Next Update: Wed May 02 15:42:50 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:42:51 2017
    CRL Extensions:
chains.sh: #3271: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154252Z
addcert 15 20170502154252Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:42:52 2017
    Next Update: Wed May 02 15:42:50 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:42:52 2017
    CRL Extensions:
chains.sh: #3272: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3273: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3274: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3275: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #3276: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #3277: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #3278: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #3279: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #3280: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #3281: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:44 2017
            Not After : Mon May 02 15:42:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:4f:99:54:bd:1f:a2:8d:93:8b:d9:08:db:8b:eb:fc:
                    e6:ff:45:73:8b:0f:86:3e:0c:52:25:0b:4c:80:4e:26:
                    98:d4:11:a5:61:59:bb:b5:4c:26:39:0e:75:af:42:7f:
                    a5:24:33:23:93:9b:df:27:f5:6d:04:1f:eb:f1:d4:8e:
                    8e:d8:94:6d:e5:83:56:73:3b:2e:9a:32:f1:9b:d8:54:
                    14:24:f2:91:d2:71:cc:fe:39:ef:b2:14:ba:49:b0:16:
                    a3:be:f9:d0:b2:d9:6a:fd:c8:6b:17:a0:27:f1:52:46:
                    08:ea:d1:c8:88:d3:d8:38:59:a2:3e:5c:a6:4f:ee:16:
                    3c:3e:8d:8c:7d:07:a8:5c:a7:66:d2:2f:16:2b:8d:f6:
                    25:b0:5c:65:11:28:19:4a:74:8b:0e:9c:4a:8d:06:f2:
                    c8:25:50:44:63:0c:3e:fa:b8:f0:81:1e:78:f7:05:58:
                    97:74:0c:52:13:bc:cf:31:f4:62:e1:4d:06:cf:50:f0:
                    f7:3e:21:1c:63:2a:7c:46:99:16:29:0c:77:a4:41:04:
                    a6:61:bf:d0:80:27:93:1d:9b:70:9c:a4:2d:c3:95:6f:
                    18:9e:b0:63:26:46:20:ed:44:65:62:5b:db:0f:83:d6:
                    d5:0b:a8:9a:9c:70:e6:a4:4e:f9:48:d6:43:f0:11:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        53:41:79:be:af:89:5c:a5:90:11:68:80:aa:1f:76:a0:
        8b:68:83:57:41:f9:86:1e:42:fa:3c:bd:c6:7c:9e:29:
        b7:2a:d2:59:f9:7f:cb:bb:23:4a:f9:b9:59:14:71:af:
        c4:7d:ba:46:25:bf:a8:e7:46:04:8c:69:46:1c:fb:76:
        5b:99:e0:c6:97:fb:7b:2b:f8:a5:ac:94:39:29:fd:21:
        6f:c1:66:61:7d:88:f9:88:4e:76:04:b4:24:5b:da:17:
        c3:46:7b:78:48:cf:a0:7d:af:8a:91:7c:1e:e3:84:d7:
        f2:f9:52:46:49:e1:27:cd:6e:5f:3b:31:c8:69:ff:84:
        1a:7f:c7:44:53:f9:d6:7a:ac:89:cf:38:3a:9a:5b:a2:
        a6:6d:ea:9d:cc:4d:73:10:dd:6a:cf:68:29:36:7e:9d:
        f2:fa:95:97:48:be:c8:d4:bc:66:1a:c8:43:5b:5e:e3:
        96:00:34:3a:65:7f:fd:5d:12:c9:54:d4:95:3e:d7:cb:
        59:06:c4:e8:b2:1c:68:2c:5a:8b:2b:56:86:bb:05:71:
        d3:b8:71:f8:d3:1f:1f:9d:6c:4a:d4:30:4c:62:c6:c1:
        d2:03:57:57:13:5e:3f:a8:6c:b0:55:99:24:ac:1e:a3:
        e3:82:a1:77:ce:14:b5:93:b9:40:80:a4:23:fa:09:cf
    Fingerprint (SHA-256):
        5C:91:2C:41:DA:62:7C:97:F6:14:CD:8A:98:3E:C7:0A:E7:B6:11:A4:93:D2:89:0D:EF:CC:FB:81:B2:FA:F9:39
    Fingerprint (SHA1):
        D7:6C:9B:69:33:D1:83:C2:CB:99:2A:45:E6:8C:67:5F:4F:04:5D:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3282: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3283: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:44 2017
            Not After : Mon May 02 15:42:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:4f:99:54:bd:1f:a2:8d:93:8b:d9:08:db:8b:eb:fc:
                    e6:ff:45:73:8b:0f:86:3e:0c:52:25:0b:4c:80:4e:26:
                    98:d4:11:a5:61:59:bb:b5:4c:26:39:0e:75:af:42:7f:
                    a5:24:33:23:93:9b:df:27:f5:6d:04:1f:eb:f1:d4:8e:
                    8e:d8:94:6d:e5:83:56:73:3b:2e:9a:32:f1:9b:d8:54:
                    14:24:f2:91:d2:71:cc:fe:39:ef:b2:14:ba:49:b0:16:
                    a3:be:f9:d0:b2:d9:6a:fd:c8:6b:17:a0:27:f1:52:46:
                    08:ea:d1:c8:88:d3:d8:38:59:a2:3e:5c:a6:4f:ee:16:
                    3c:3e:8d:8c:7d:07:a8:5c:a7:66:d2:2f:16:2b:8d:f6:
                    25:b0:5c:65:11:28:19:4a:74:8b:0e:9c:4a:8d:06:f2:
                    c8:25:50:44:63:0c:3e:fa:b8:f0:81:1e:78:f7:05:58:
                    97:74:0c:52:13:bc:cf:31:f4:62:e1:4d:06:cf:50:f0:
                    f7:3e:21:1c:63:2a:7c:46:99:16:29:0c:77:a4:41:04:
                    a6:61:bf:d0:80:27:93:1d:9b:70:9c:a4:2d:c3:95:6f:
                    18:9e:b0:63:26:46:20:ed:44:65:62:5b:db:0f:83:d6:
                    d5:0b:a8:9a:9c:70:e6:a4:4e:f9:48:d6:43:f0:11:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        53:41:79:be:af:89:5c:a5:90:11:68:80:aa:1f:76:a0:
        8b:68:83:57:41:f9:86:1e:42:fa:3c:bd:c6:7c:9e:29:
        b7:2a:d2:59:f9:7f:cb:bb:23:4a:f9:b9:59:14:71:af:
        c4:7d:ba:46:25:bf:a8:e7:46:04:8c:69:46:1c:fb:76:
        5b:99:e0:c6:97:fb:7b:2b:f8:a5:ac:94:39:29:fd:21:
        6f:c1:66:61:7d:88:f9:88:4e:76:04:b4:24:5b:da:17:
        c3:46:7b:78:48:cf:a0:7d:af:8a:91:7c:1e:e3:84:d7:
        f2:f9:52:46:49:e1:27:cd:6e:5f:3b:31:c8:69:ff:84:
        1a:7f:c7:44:53:f9:d6:7a:ac:89:cf:38:3a:9a:5b:a2:
        a6:6d:ea:9d:cc:4d:73:10:dd:6a:cf:68:29:36:7e:9d:
        f2:fa:95:97:48:be:c8:d4:bc:66:1a:c8:43:5b:5e:e3:
        96:00:34:3a:65:7f:fd:5d:12:c9:54:d4:95:3e:d7:cb:
        59:06:c4:e8:b2:1c:68:2c:5a:8b:2b:56:86:bb:05:71:
        d3:b8:71:f8:d3:1f:1f:9d:6c:4a:d4:30:4c:62:c6:c1:
        d2:03:57:57:13:5e:3f:a8:6c:b0:55:99:24:ac:1e:a3:
        e3:82:a1:77:ce:14:b5:93:b9:40:80:a4:23:fa:09:cf
    Fingerprint (SHA-256):
        5C:91:2C:41:DA:62:7C:97:F6:14:CD:8A:98:3E:C7:0A:E7:B6:11:A4:93:D2:89:0D:EF:CC:FB:81:B2:FA:F9:39
    Fingerprint (SHA1):
        D7:6C:9B:69:33:D1:83:C2:CB:99:2A:45:E6:8C:67:5F:4F:04:5D:07
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3284: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3285: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3286: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154173 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3287: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3288: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #3289: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3290: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502154174   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3291: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3292: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3293: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154064.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3294: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154049.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3295: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3296: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #3297: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154064.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3298: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502154175   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3299: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3300: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3301: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154064.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3302: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154050.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3303: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3304: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #3305: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3306: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502154176   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3307: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3308: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3309: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154064.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3310: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154051.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3311: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3312: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3313: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154064.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3314: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154052.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3315: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3316: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502154259Z
nextupdate=20180502154259Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:42:59 2017
    Next Update: Wed May 02 15:42:59 2018
    CRL Extensions:
chains.sh: #3317: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154259Z
nextupdate=20180502154259Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:42:59 2017
    Next Update: Wed May 02 15:42:59 2018
    CRL Extensions:
chains.sh: #3318: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154259Z
nextupdate=20180502154259Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:42:59 2017
    Next Update: Wed May 02 15:42:59 2018
    CRL Extensions:
chains.sh: #3319: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502154259Z
nextupdate=20180502154259Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:42:59 2017
    Next Update: Wed May 02 15:42:59 2018
    CRL Extensions:
chains.sh: #3320: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154300Z
addcert 20 20170502154300Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:43:00 2017
    Next Update: Wed May 02 15:42:59 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:43:00 2017
    CRL Extensions:
chains.sh: #3321: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154301Z
addcert 40 20170502154301Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:43:01 2017
    Next Update: Wed May 02 15:42:59 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:43:00 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:43:01 2017
    CRL Extensions:
chains.sh: #3322: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3323: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3324: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #3325: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154173 (0x1dee43bd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:54 2017
            Not After : Mon May 02 15:42:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:be:4a:76:b7:59:09:9b:81:c1:fe:8b:74:22:90:38:
                    86:cb:d1:90:f2:d3:df:4b:41:26:1c:bc:42:fe:c6:03:
                    f3:c2:98:81:ed:1c:5f:52:0a:85:92:83:f6:8b:82:c9:
                    02:06:aa:bd:c4:fb:cc:9b:a0:f6:a1:33:8a:70:5a:42:
                    7c:a0:16:ad:94:e4:c1:ea:95:5b:dc:89:82:e4:7e:09:
                    93:b8:37:a9:9c:63:07:65:42:aa:eb:a3:14:f6:07:53:
                    00:87:cd:8f:d3:db:27:ef:88:a3:15:d1:7f:ea:f0:05:
                    ca:e0:a1:27:20:5e:70:cb:76:f3:c9:be:91:eb:09:26:
                    82:73:6f:f2:c4:07:49:c6:79:d6:ea:6d:0b:0a:c1:af:
                    67:26:c5:d5:0a:00:6e:13:17:53:77:e8:ed:6d:47:0f:
                    9b:7b:c8:16:e5:f5:90:70:77:0e:40:98:bf:28:fd:12:
                    f2:ae:e8:e0:76:a4:77:d7:40:71:2d:e0:97:e8:6c:c6:
                    cf:02:b0:83:ef:b3:9d:c4:d3:37:a1:88:eb:30:2b:6d:
                    90:99:c8:5c:3a:99:5b:fc:7f:c7:a0:7f:50:2d:3c:14:
                    11:ed:af:ad:11:11:32:70:e6:54:eb:8c:af:f9:6a:c8:
                    4c:7a:38:b9:9f:ae:14:ac:9f:9b:92:63:06:ac:54:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:5e:ae:62:d4:ef:0a:75:bc:5f:04:0c:6e:28:b3:98:
        dd:bf:53:9b:62:e2:91:01:08:96:68:f0:26:29:b2:0a:
        31:ea:27:60:e3:f5:b9:5b:6b:29:a0:9e:c2:49:4a:d8:
        5f:6f:cb:82:09:95:d7:e1:75:6b:e9:a9:95:12:5b:06:
        3e:a5:f2:0a:ea:04:61:d8:d5:01:ed:7d:ed:ff:dd:45:
        df:5c:8e:a7:4f:1b:da:1d:8c:2b:55:b0:23:cf:fc:aa:
        7d:7b:6b:7f:6d:44:27:cb:a9:af:c5:2d:56:a0:83:46:
        44:d3:bf:80:fa:06:16:90:92:c9:70:65:6f:1f:a8:70:
        82:8a:1c:57:03:75:bc:b5:11:e2:3d:b0:04:27:77:d0:
        eb:2d:8a:51:dc:17:f0:6a:16:30:63:44:3f:33:7e:fd:
        ce:23:ff:b6:fa:23:76:42:69:6f:2e:37:ac:b5:d9:40:
        94:18:b4:38:ca:f4:4e:a9:34:e4:66:70:8f:ba:e2:d6:
        49:3b:6d:b1:24:ee:f7:65:7d:30:ba:8d:84:ea:64:8c:
        58:52:51:2c:70:d4:a8:e9:28:b3:47:4e:97:33:7e:86:
        b2:c6:76:c9:77:4c:fd:a2:f5:cb:b4:23:74:4a:ac:4f:
        92:d0:f3:82:c0:0a:00:23:f5:be:e7:c4:bd:45:68:9e
    Fingerprint (SHA-256):
        9E:30:15:66:62:9C:BC:72:DE:E5:53:2A:00:62:F6:DC:8B:DD:71:F7:2E:F7:69:E5:59:54:D4:CD:7E:2C:FA:B3
    Fingerprint (SHA1):
        4B:D4:08:67:80:71:1E:B4:49:D9:8B:41:63:74:DC:CC:7B:CE:2C:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3326: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3327: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154173 (0x1dee43bd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:42:54 2017
            Not After : Mon May 02 15:42:54 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:be:4a:76:b7:59:09:9b:81:c1:fe:8b:74:22:90:38:
                    86:cb:d1:90:f2:d3:df:4b:41:26:1c:bc:42:fe:c6:03:
                    f3:c2:98:81:ed:1c:5f:52:0a:85:92:83:f6:8b:82:c9:
                    02:06:aa:bd:c4:fb:cc:9b:a0:f6:a1:33:8a:70:5a:42:
                    7c:a0:16:ad:94:e4:c1:ea:95:5b:dc:89:82:e4:7e:09:
                    93:b8:37:a9:9c:63:07:65:42:aa:eb:a3:14:f6:07:53:
                    00:87:cd:8f:d3:db:27:ef:88:a3:15:d1:7f:ea:f0:05:
                    ca:e0:a1:27:20:5e:70:cb:76:f3:c9:be:91:eb:09:26:
                    82:73:6f:f2:c4:07:49:c6:79:d6:ea:6d:0b:0a:c1:af:
                    67:26:c5:d5:0a:00:6e:13:17:53:77:e8:ed:6d:47:0f:
                    9b:7b:c8:16:e5:f5:90:70:77:0e:40:98:bf:28:fd:12:
                    f2:ae:e8:e0:76:a4:77:d7:40:71:2d:e0:97:e8:6c:c6:
                    cf:02:b0:83:ef:b3:9d:c4:d3:37:a1:88:eb:30:2b:6d:
                    90:99:c8:5c:3a:99:5b:fc:7f:c7:a0:7f:50:2d:3c:14:
                    11:ed:af:ad:11:11:32:70:e6:54:eb:8c:af:f9:6a:c8:
                    4c:7a:38:b9:9f:ae:14:ac:9f:9b:92:63:06:ac:54:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:5e:ae:62:d4:ef:0a:75:bc:5f:04:0c:6e:28:b3:98:
        dd:bf:53:9b:62:e2:91:01:08:96:68:f0:26:29:b2:0a:
        31:ea:27:60:e3:f5:b9:5b:6b:29:a0:9e:c2:49:4a:d8:
        5f:6f:cb:82:09:95:d7:e1:75:6b:e9:a9:95:12:5b:06:
        3e:a5:f2:0a:ea:04:61:d8:d5:01:ed:7d:ed:ff:dd:45:
        df:5c:8e:a7:4f:1b:da:1d:8c:2b:55:b0:23:cf:fc:aa:
        7d:7b:6b:7f:6d:44:27:cb:a9:af:c5:2d:56:a0:83:46:
        44:d3:bf:80:fa:06:16:90:92:c9:70:65:6f:1f:a8:70:
        82:8a:1c:57:03:75:bc:b5:11:e2:3d:b0:04:27:77:d0:
        eb:2d:8a:51:dc:17:f0:6a:16:30:63:44:3f:33:7e:fd:
        ce:23:ff:b6:fa:23:76:42:69:6f:2e:37:ac:b5:d9:40:
        94:18:b4:38:ca:f4:4e:a9:34:e4:66:70:8f:ba:e2:d6:
        49:3b:6d:b1:24:ee:f7:65:7d:30:ba:8d:84:ea:64:8c:
        58:52:51:2c:70:d4:a8:e9:28:b3:47:4e:97:33:7e:86:
        b2:c6:76:c9:77:4c:fd:a2:f5:cb:b4:23:74:4a:ac:4f:
        92:d0:f3:82:c0:0a:00:23:f5:be:e7:c4:bd:45:68:9e
    Fingerprint (SHA-256):
        9E:30:15:66:62:9C:BC:72:DE:E5:53:2A:00:62:F6:DC:8B:DD:71:F7:2E:F7:69:E5:59:54:D4:CD:7E:2C:FA:B3
    Fingerprint (SHA1):
        4B:D4:08:67:80:71:1E:B4:49:D9:8B:41:63:74:DC:CC:7B:CE:2C:32
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #3328: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #3329: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3330: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154177 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3331: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3332: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3333: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3334: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154178   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3335: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3336: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3337: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3338: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154179   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3339: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3340: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3341: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3342: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502154180   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3343: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3344: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #3345: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154181 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3346: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #3347: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #3348: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3349: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502154182   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3350: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3351: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3352: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3353: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502154183   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3354: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3355: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #3356: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #3357: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #3358: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154177 (0x1dee43c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:03 2017
            Not After : Mon May 02 15:43:03 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:8b:b8:40:4e:5d:2b:10:2a:4d:91:7b:cb:31:4b:5b:
                    1d:8f:d5:7c:08:7c:fe:07:f1:c7:f4:ab:20:d7:03:fb:
                    6b:42:5e:94:4d:e0:20:1a:15:bc:c4:b5:40:12:70:5b:
                    c2:14:02:6e:f2:19:9d:d5:58:42:f0:86:cc:f3:1e:8e:
                    17:f4:25:d1:1a:f6:31:ea:ce:51:b3:1b:32:87:ef:65:
                    23:6a:b0:0c:04:d7:8f:6e:78:25:c6:5d:91:8e:70:20:
                    45:42:8b:b6:74:01:b1:0e:b4:13:df:54:cf:d1:5b:d6:
                    92:87:56:08:c4:59:7d:ea:f2:f3:25:26:87:42:aa:65:
                    d8:f5:7e:13:45:cf:0d:cb:c9:76:4b:62:c4:98:aa:bf:
                    cb:c6:88:e3:01:0e:84:c7:39:21:50:af:8f:e9:f0:2f:
                    2b:68:f0:02:8b:7e:51:46:38:2a:11:f3:06:4c:7b:4b:
                    9b:39:25:d4:15:e1:34:8f:9a:5c:e5:9e:04:c9:47:c1:
                    ec:53:7b:42:63:b6:32:ce:a2:12:26:82:03:6f:67:1c:
                    b4:1a:69:36:12:a0:45:7f:63:ca:32:31:60:f7:30:0e:
                    ce:1e:a7:e6:30:1c:1e:59:e9:28:90:dd:03:a3:3e:a8:
                    c4:33:ff:cd:14:81:f5:d0:69:13:04:0f:e8:53:db:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:5e:12:ff:81:73:17:6a:65:5a:92:bd:6b:f0:f2:4a:
        2c:3f:7b:67:1f:17:1c:21:ed:fb:5e:77:e3:35:79:5d:
        51:f7:e1:5d:64:2b:a5:81:88:66:3b:52:90:b2:aa:51:
        1d:cb:1d:fe:de:32:8b:1e:36:bb:81:35:d4:ec:54:59:
        6c:9b:39:52:62:5c:b8:1e:79:2c:75:dd:99:36:86:c3:
        5f:3a:51:b7:0c:00:22:19:63:5f:bb:68:ae:9a:7a:4e:
        23:e9:06:f5:61:30:d2:5d:b1:17:54:57:c8:f7:1f:1b:
        ce:63:b2:a3:17:68:a6:40:db:5d:9c:f9:d8:1e:c6:40:
        da:62:2a:72:0f:63:15:53:6f:56:ed:aa:b2:74:40:0d:
        1c:27:aa:19:b5:79:65:38:be:72:e3:27:3d:2c:43:00:
        28:34:e4:30:95:b0:cb:6c:04:66:58:3a:88:1f:7c:39:
        74:96:fd:49:22:ef:ca:8b:3d:61:b8:47:ab:b3:e5:ab:
        57:5d:a2:6f:a8:72:28:ff:59:cd:3f:50:8e:ea:68:7b:
        04:37:f6:a0:c2:55:f9:cf:61:7a:9d:5d:b1:22:09:e6:
        27:02:6b:50:22:6f:a9:f6:26:75:5c:ff:97:67:9c:c5:
        89:f9:1e:be:73:a4:24:bd:a7:f2:f4:29:3e:ff:ff:7c
    Fingerprint (SHA-256):
        ED:8F:DF:DE:A3:EC:1D:99:71:6E:FA:28:3C:89:3D:4F:68:58:F4:F7:1E:CA:99:8D:B7:15:5E:C0:4A:08:36:F9
    Fingerprint (SHA1):
        33:97:7E:0B:FF:16:EB:E1:97:DB:E3:4B:22:11:0F:BF:B4:CA:58:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3359: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154179 (0x1dee43c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:43:04 2017
            Not After : Mon May 02 15:43:04 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:0c:82:41:e6:0a:ca:01:c9:d0:42:79:48:8b:af:62:
                    91:49:7e:70:ba:42:da:07:2e:6f:e1:18:d6:65:ca:7d:
                    a3:54:67:d7:7d:8d:d9:7e:a6:a0:a3:2b:e0:f4:af:b0:
                    d6:40:42:6f:9f:65:62:28:c2:8a:00:a2:9f:46:21:d1:
                    ed:08:f9:3c:69:87:67:4d:d9:99:fb:77:d2:16:cb:f9:
                    74:7c:90:65:47:14:48:1e:ef:36:9f:89:63:21:6b:78:
                    60:17:f0:70:b3:d9:22:2a:0b:24:3f:91:16:f8:fd:da:
                    a2:ec:d6:5e:ab:b2:9b:0a:31:f8:fb:19:5e:d6:9a:d3:
                    a0:98:21:d7:68:96:11:22:03:57:9d:4d:c4:c7:a5:d3:
                    12:dc:3f:d8:5b:55:33:02:d3:0b:b6:06:79:e9:05:68:
                    c7:3f:14:b7:54:fa:d9:98:eb:cc:e5:7c:8a:b8:f9:e4:
                    7e:5e:0c:41:b8:2a:36:e6:16:1d:5d:2f:d1:3a:e5:a5:
                    fc:c1:7a:1a:4b:d1:44:86:bd:4e:e4:ca:be:87:fd:85:
                    59:2f:7c:bb:a5:6e:8e:60:2a:d0:35:53:ef:d9:cc:2e:
                    d6:94:4f:da:08:bd:c3:9f:97:16:00:30:da:44:f3:f4:
                    ce:6b:da:8e:7d:90:a8:f8:f1:77:7f:25:e0:3b:8a:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:15:bf:07:6a:de:0b:ce:bc:88:be:87:7e:30:6e:36:
        c0:4f:4e:0d:b5:57:7b:f5:43:2c:c5:c8:d2:f5:b6:40:
        b5:42:eb:b5:70:0c:23:e9:e2:2a:2e:ef:3c:7c:8a:60:
        5c:b5:ce:3d:78:a5:06:b0:5a:0c:bf:75:5a:0f:80:48:
        9e:e0:04:5b:34:0b:75:dd:3a:e4:b3:15:c1:96:7e:5e:
        6a:f7:3f:6e:21:b0:1e:7b:3a:d0:e3:7d:32:8a:1c:1c:
        8d:c5:ea:ae:65:a6:db:d6:fc:04:cd:82:2b:c7:29:b1:
        61:a5:8c:c7:cc:0f:a3:56:1e:c9:8f:9f:b2:b2:84:55:
        4d:76:de:7d:92:68:f6:2c:83:8f:00:b7:3c:e1:be:4d:
        af:22:53:1e:2c:71:f6:b6:5b:3c:b0:5f:a8:60:02:92:
        26:df:6b:51:9c:99:52:54:59:4e:05:32:93:57:00:36:
        a1:f3:e1:33:3d:4b:f6:8e:ff:5b:c2:d3:49:81:08:62:
        bd:f8:a0:16:d8:0b:97:0b:4f:bf:f8:ef:1e:5d:43:2e:
        69:c7:eb:0f:d3:f4:ec:84:08:06:d1:fc:4b:48:80:b4:
        e9:13:f7:21:e3:bb:2e:0d:78:fc:a2:e2:c0:f2:60:07:
        79:3f:f1:c9:3a:74:cb:76:df:c6:06:82:4e:4d:fa:81
    Fingerprint (SHA-256):
        D5:0A:B8:DE:31:DC:77:A7:95:40:A1:7A:B6:BB:F8:83:10:C8:A8:2D:6E:63:FA:94:44:86:DF:13:BE:65:F9:1D
    Fingerprint (SHA1):
        EF:37:C3:B3:7C:61:ED:B2:B8:E2:F7:58:D5:B3:62:BA:58:C8:BC:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3360: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154177 (0x1dee43c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:03 2017
            Not After : Mon May 02 15:43:03 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:8b:b8:40:4e:5d:2b:10:2a:4d:91:7b:cb:31:4b:5b:
                    1d:8f:d5:7c:08:7c:fe:07:f1:c7:f4:ab:20:d7:03:fb:
                    6b:42:5e:94:4d:e0:20:1a:15:bc:c4:b5:40:12:70:5b:
                    c2:14:02:6e:f2:19:9d:d5:58:42:f0:86:cc:f3:1e:8e:
                    17:f4:25:d1:1a:f6:31:ea:ce:51:b3:1b:32:87:ef:65:
                    23:6a:b0:0c:04:d7:8f:6e:78:25:c6:5d:91:8e:70:20:
                    45:42:8b:b6:74:01:b1:0e:b4:13:df:54:cf:d1:5b:d6:
                    92:87:56:08:c4:59:7d:ea:f2:f3:25:26:87:42:aa:65:
                    d8:f5:7e:13:45:cf:0d:cb:c9:76:4b:62:c4:98:aa:bf:
                    cb:c6:88:e3:01:0e:84:c7:39:21:50:af:8f:e9:f0:2f:
                    2b:68:f0:02:8b:7e:51:46:38:2a:11:f3:06:4c:7b:4b:
                    9b:39:25:d4:15:e1:34:8f:9a:5c:e5:9e:04:c9:47:c1:
                    ec:53:7b:42:63:b6:32:ce:a2:12:26:82:03:6f:67:1c:
                    b4:1a:69:36:12:a0:45:7f:63:ca:32:31:60:f7:30:0e:
                    ce:1e:a7:e6:30:1c:1e:59:e9:28:90:dd:03:a3:3e:a8:
                    c4:33:ff:cd:14:81:f5:d0:69:13:04:0f:e8:53:db:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:5e:12:ff:81:73:17:6a:65:5a:92:bd:6b:f0:f2:4a:
        2c:3f:7b:67:1f:17:1c:21:ed:fb:5e:77:e3:35:79:5d:
        51:f7:e1:5d:64:2b:a5:81:88:66:3b:52:90:b2:aa:51:
        1d:cb:1d:fe:de:32:8b:1e:36:bb:81:35:d4:ec:54:59:
        6c:9b:39:52:62:5c:b8:1e:79:2c:75:dd:99:36:86:c3:
        5f:3a:51:b7:0c:00:22:19:63:5f:bb:68:ae:9a:7a:4e:
        23:e9:06:f5:61:30:d2:5d:b1:17:54:57:c8:f7:1f:1b:
        ce:63:b2:a3:17:68:a6:40:db:5d:9c:f9:d8:1e:c6:40:
        da:62:2a:72:0f:63:15:53:6f:56:ed:aa:b2:74:40:0d:
        1c:27:aa:19:b5:79:65:38:be:72:e3:27:3d:2c:43:00:
        28:34:e4:30:95:b0:cb:6c:04:66:58:3a:88:1f:7c:39:
        74:96:fd:49:22:ef:ca:8b:3d:61:b8:47:ab:b3:e5:ab:
        57:5d:a2:6f:a8:72:28:ff:59:cd:3f:50:8e:ea:68:7b:
        04:37:f6:a0:c2:55:f9:cf:61:7a:9d:5d:b1:22:09:e6:
        27:02:6b:50:22:6f:a9:f6:26:75:5c:ff:97:67:9c:c5:
        89:f9:1e:be:73:a4:24:bd:a7:f2:f4:29:3e:ff:ff:7c
    Fingerprint (SHA-256):
        ED:8F:DF:DE:A3:EC:1D:99:71:6E:FA:28:3C:89:3D:4F:68:58:F4:F7:1E:CA:99:8D:B7:15:5E:C0:4A:08:36:F9
    Fingerprint (SHA1):
        33:97:7E:0B:FF:16:EB:E1:97:DB:E3:4B:22:11:0F:BF:B4:CA:58:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3361: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #3362: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154177 (0x1dee43c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:03 2017
            Not After : Mon May 02 15:43:03 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:8b:b8:40:4e:5d:2b:10:2a:4d:91:7b:cb:31:4b:5b:
                    1d:8f:d5:7c:08:7c:fe:07:f1:c7:f4:ab:20:d7:03:fb:
                    6b:42:5e:94:4d:e0:20:1a:15:bc:c4:b5:40:12:70:5b:
                    c2:14:02:6e:f2:19:9d:d5:58:42:f0:86:cc:f3:1e:8e:
                    17:f4:25:d1:1a:f6:31:ea:ce:51:b3:1b:32:87:ef:65:
                    23:6a:b0:0c:04:d7:8f:6e:78:25:c6:5d:91:8e:70:20:
                    45:42:8b:b6:74:01:b1:0e:b4:13:df:54:cf:d1:5b:d6:
                    92:87:56:08:c4:59:7d:ea:f2:f3:25:26:87:42:aa:65:
                    d8:f5:7e:13:45:cf:0d:cb:c9:76:4b:62:c4:98:aa:bf:
                    cb:c6:88:e3:01:0e:84:c7:39:21:50:af:8f:e9:f0:2f:
                    2b:68:f0:02:8b:7e:51:46:38:2a:11:f3:06:4c:7b:4b:
                    9b:39:25:d4:15:e1:34:8f:9a:5c:e5:9e:04:c9:47:c1:
                    ec:53:7b:42:63:b6:32:ce:a2:12:26:82:03:6f:67:1c:
                    b4:1a:69:36:12:a0:45:7f:63:ca:32:31:60:f7:30:0e:
                    ce:1e:a7:e6:30:1c:1e:59:e9:28:90:dd:03:a3:3e:a8:
                    c4:33:ff:cd:14:81:f5:d0:69:13:04:0f:e8:53:db:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:5e:12:ff:81:73:17:6a:65:5a:92:bd:6b:f0:f2:4a:
        2c:3f:7b:67:1f:17:1c:21:ed:fb:5e:77:e3:35:79:5d:
        51:f7:e1:5d:64:2b:a5:81:88:66:3b:52:90:b2:aa:51:
        1d:cb:1d:fe:de:32:8b:1e:36:bb:81:35:d4:ec:54:59:
        6c:9b:39:52:62:5c:b8:1e:79:2c:75:dd:99:36:86:c3:
        5f:3a:51:b7:0c:00:22:19:63:5f:bb:68:ae:9a:7a:4e:
        23:e9:06:f5:61:30:d2:5d:b1:17:54:57:c8:f7:1f:1b:
        ce:63:b2:a3:17:68:a6:40:db:5d:9c:f9:d8:1e:c6:40:
        da:62:2a:72:0f:63:15:53:6f:56:ed:aa:b2:74:40:0d:
        1c:27:aa:19:b5:79:65:38:be:72:e3:27:3d:2c:43:00:
        28:34:e4:30:95:b0:cb:6c:04:66:58:3a:88:1f:7c:39:
        74:96:fd:49:22:ef:ca:8b:3d:61:b8:47:ab:b3:e5:ab:
        57:5d:a2:6f:a8:72:28:ff:59:cd:3f:50:8e:ea:68:7b:
        04:37:f6:a0:c2:55:f9:cf:61:7a:9d:5d:b1:22:09:e6:
        27:02:6b:50:22:6f:a9:f6:26:75:5c:ff:97:67:9c:c5:
        89:f9:1e:be:73:a4:24:bd:a7:f2:f4:29:3e:ff:ff:7c
    Fingerprint (SHA-256):
        ED:8F:DF:DE:A3:EC:1D:99:71:6E:FA:28:3C:89:3D:4F:68:58:F4:F7:1E:CA:99:8D:B7:15:5E:C0:4A:08:36:F9
    Fingerprint (SHA1):
        33:97:7E:0B:FF:16:EB:E1:97:DB:E3:4B:22:11:0F:BF:B4:CA:58:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3363: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154179 (0x1dee43c3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:43:04 2017
            Not After : Mon May 02 15:43:04 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:0c:82:41:e6:0a:ca:01:c9:d0:42:79:48:8b:af:62:
                    91:49:7e:70:ba:42:da:07:2e:6f:e1:18:d6:65:ca:7d:
                    a3:54:67:d7:7d:8d:d9:7e:a6:a0:a3:2b:e0:f4:af:b0:
                    d6:40:42:6f:9f:65:62:28:c2:8a:00:a2:9f:46:21:d1:
                    ed:08:f9:3c:69:87:67:4d:d9:99:fb:77:d2:16:cb:f9:
                    74:7c:90:65:47:14:48:1e:ef:36:9f:89:63:21:6b:78:
                    60:17:f0:70:b3:d9:22:2a:0b:24:3f:91:16:f8:fd:da:
                    a2:ec:d6:5e:ab:b2:9b:0a:31:f8:fb:19:5e:d6:9a:d3:
                    a0:98:21:d7:68:96:11:22:03:57:9d:4d:c4:c7:a5:d3:
                    12:dc:3f:d8:5b:55:33:02:d3:0b:b6:06:79:e9:05:68:
                    c7:3f:14:b7:54:fa:d9:98:eb:cc:e5:7c:8a:b8:f9:e4:
                    7e:5e:0c:41:b8:2a:36:e6:16:1d:5d:2f:d1:3a:e5:a5:
                    fc:c1:7a:1a:4b:d1:44:86:bd:4e:e4:ca:be:87:fd:85:
                    59:2f:7c:bb:a5:6e:8e:60:2a:d0:35:53:ef:d9:cc:2e:
                    d6:94:4f:da:08:bd:c3:9f:97:16:00:30:da:44:f3:f4:
                    ce:6b:da:8e:7d:90:a8:f8:f1:77:7f:25:e0:3b:8a:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:15:bf:07:6a:de:0b:ce:bc:88:be:87:7e:30:6e:36:
        c0:4f:4e:0d:b5:57:7b:f5:43:2c:c5:c8:d2:f5:b6:40:
        b5:42:eb:b5:70:0c:23:e9:e2:2a:2e:ef:3c:7c:8a:60:
        5c:b5:ce:3d:78:a5:06:b0:5a:0c:bf:75:5a:0f:80:48:
        9e:e0:04:5b:34:0b:75:dd:3a:e4:b3:15:c1:96:7e:5e:
        6a:f7:3f:6e:21:b0:1e:7b:3a:d0:e3:7d:32:8a:1c:1c:
        8d:c5:ea:ae:65:a6:db:d6:fc:04:cd:82:2b:c7:29:b1:
        61:a5:8c:c7:cc:0f:a3:56:1e:c9:8f:9f:b2:b2:84:55:
        4d:76:de:7d:92:68:f6:2c:83:8f:00:b7:3c:e1:be:4d:
        af:22:53:1e:2c:71:f6:b6:5b:3c:b0:5f:a8:60:02:92:
        26:df:6b:51:9c:99:52:54:59:4e:05:32:93:57:00:36:
        a1:f3:e1:33:3d:4b:f6:8e:ff:5b:c2:d3:49:81:08:62:
        bd:f8:a0:16:d8:0b:97:0b:4f:bf:f8:ef:1e:5d:43:2e:
        69:c7:eb:0f:d3:f4:ec:84:08:06:d1:fc:4b:48:80:b4:
        e9:13:f7:21:e3:bb:2e:0d:78:fc:a2:e2:c0:f2:60:07:
        79:3f:f1:c9:3a:74:cb:76:df:c6:06:82:4e:4d:fa:81
    Fingerprint (SHA-256):
        D5:0A:B8:DE:31:DC:77:A7:95:40:A1:7A:B6:BB:F8:83:10:C8:A8:2D:6E:63:FA:94:44:86:DF:13:BE:65:F9:1D
    Fingerprint (SHA1):
        EF:37:C3:B3:7C:61:ED:B2:B8:E2:F7:58:D5:B3:62:BA:58:C8:BC:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3364: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #3365: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #3366: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #3367: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154177 (0x1dee43c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:03 2017
            Not After : Mon May 02 15:43:03 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:8b:b8:40:4e:5d:2b:10:2a:4d:91:7b:cb:31:4b:5b:
                    1d:8f:d5:7c:08:7c:fe:07:f1:c7:f4:ab:20:d7:03:fb:
                    6b:42:5e:94:4d:e0:20:1a:15:bc:c4:b5:40:12:70:5b:
                    c2:14:02:6e:f2:19:9d:d5:58:42:f0:86:cc:f3:1e:8e:
                    17:f4:25:d1:1a:f6:31:ea:ce:51:b3:1b:32:87:ef:65:
                    23:6a:b0:0c:04:d7:8f:6e:78:25:c6:5d:91:8e:70:20:
                    45:42:8b:b6:74:01:b1:0e:b4:13:df:54:cf:d1:5b:d6:
                    92:87:56:08:c4:59:7d:ea:f2:f3:25:26:87:42:aa:65:
                    d8:f5:7e:13:45:cf:0d:cb:c9:76:4b:62:c4:98:aa:bf:
                    cb:c6:88:e3:01:0e:84:c7:39:21:50:af:8f:e9:f0:2f:
                    2b:68:f0:02:8b:7e:51:46:38:2a:11:f3:06:4c:7b:4b:
                    9b:39:25:d4:15:e1:34:8f:9a:5c:e5:9e:04:c9:47:c1:
                    ec:53:7b:42:63:b6:32:ce:a2:12:26:82:03:6f:67:1c:
                    b4:1a:69:36:12:a0:45:7f:63:ca:32:31:60:f7:30:0e:
                    ce:1e:a7:e6:30:1c:1e:59:e9:28:90:dd:03:a3:3e:a8:
                    c4:33:ff:cd:14:81:f5:d0:69:13:04:0f:e8:53:db:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:5e:12:ff:81:73:17:6a:65:5a:92:bd:6b:f0:f2:4a:
        2c:3f:7b:67:1f:17:1c:21:ed:fb:5e:77:e3:35:79:5d:
        51:f7:e1:5d:64:2b:a5:81:88:66:3b:52:90:b2:aa:51:
        1d:cb:1d:fe:de:32:8b:1e:36:bb:81:35:d4:ec:54:59:
        6c:9b:39:52:62:5c:b8:1e:79:2c:75:dd:99:36:86:c3:
        5f:3a:51:b7:0c:00:22:19:63:5f:bb:68:ae:9a:7a:4e:
        23:e9:06:f5:61:30:d2:5d:b1:17:54:57:c8:f7:1f:1b:
        ce:63:b2:a3:17:68:a6:40:db:5d:9c:f9:d8:1e:c6:40:
        da:62:2a:72:0f:63:15:53:6f:56:ed:aa:b2:74:40:0d:
        1c:27:aa:19:b5:79:65:38:be:72:e3:27:3d:2c:43:00:
        28:34:e4:30:95:b0:cb:6c:04:66:58:3a:88:1f:7c:39:
        74:96:fd:49:22:ef:ca:8b:3d:61:b8:47:ab:b3:e5:ab:
        57:5d:a2:6f:a8:72:28:ff:59:cd:3f:50:8e:ea:68:7b:
        04:37:f6:a0:c2:55:f9:cf:61:7a:9d:5d:b1:22:09:e6:
        27:02:6b:50:22:6f:a9:f6:26:75:5c:ff:97:67:9c:c5:
        89:f9:1e:be:73:a4:24:bd:a7:f2:f4:29:3e:ff:ff:7c
    Fingerprint (SHA-256):
        ED:8F:DF:DE:A3:EC:1D:99:71:6E:FA:28:3C:89:3D:4F:68:58:F4:F7:1E:CA:99:8D:B7:15:5E:C0:4A:08:36:F9
    Fingerprint (SHA1):
        33:97:7E:0B:FF:16:EB:E1:97:DB:E3:4B:22:11:0F:BF:B4:CA:58:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3368: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154181 (0x1dee43c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:43:05 2017
            Not After : Mon May 02 15:43:05 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:60:28:dc:86:cc:d6:e1:c6:8b:5e:1f:6b:bb:57:ce:
                    4f:a0:8f:db:9a:57:6e:24:08:f0:7e:bf:5b:3a:c8:b1:
                    82:e7:26:d8:d6:af:6c:a9:5e:59:d6:84:d5:bd:a5:f6:
                    d3:e8:58:35:7a:b3:40:46:25:2b:3e:56:21:e4:c7:7b:
                    6d:6e:a5:09:10:d1:fd:bb:2b:32:c9:0b:9e:04:a5:b8:
                    15:22:6f:39:83:be:8e:a1:df:b2:45:c1:33:30:1c:7e:
                    64:67:ae:7d:8d:32:d2:1e:26:4f:c4:fe:c7:4b:79:fa:
                    c0:dc:6c:7c:50:3a:b3:c3:00:68:ac:76:4f:c8:be:41:
                    6c:90:2b:4d:27:e3:e2:e2:e9:85:ed:a8:a1:2a:c3:ad:
                    2c:04:7b:9e:b6:73:8a:28:14:a6:32:63:ba:fb:dc:73:
                    2f:22:f4:8e:60:40:f1:a5:f7:a5:13:01:c3:f0:64:85:
                    45:2a:97:a8:21:98:de:43:81:84:47:6b:5c:2a:a3:34:
                    6f:68:e6:d3:76:76:ee:3c:40:74:98:de:cd:f3:76:bf:
                    97:5a:fd:0a:47:c7:93:ee:47:78:84:aa:5a:58:5d:22:
                    6d:7c:ce:4a:40:ce:da:97:e6:ff:5e:fd:3c:c3:72:74:
                    2b:49:a1:73:39:61:b6:24:9b:b3:ee:92:c7:b4:18:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:45:44:4d:52:77:72:1f:40:14:4f:cf:c9:75:8c:ac:
        34:c2:c8:b7:35:03:3c:12:7b:e6:31:15:39:23:53:d5:
        ea:82:62:1c:a7:35:7d:c9:37:05:b4:1d:24:1d:ee:1a:
        0d:9d:fc:e3:b7:61:64:10:22:c8:3e:09:55:cc:0e:6a:
        0e:d7:7a:91:15:a0:d6:2d:23:2f:ae:05:5a:15:67:30:
        18:af:d5:41:21:03:17:2d:e0:3c:b9:b7:96:0a:ed:ed:
        df:66:5e:66:38:be:01:e7:b9:c7:44:22:f2:a2:04:2e:
        42:c9:58:7e:2a:60:4e:b0:85:e8:e4:5d:2c:10:f1:61:
        e0:27:b6:15:9c:0a:2c:c5:fe:31:c1:ef:8d:9c:ca:81:
        64:08:4f:49:08:c9:c7:97:50:e0:f6:f0:fa:d6:7f:4e:
        76:0e:08:c8:ee:cc:1c:db:ad:58:30:6b:9c:d6:e3:ab:
        47:2f:22:98:3e:a3:a5:86:69:89:ff:69:08:be:cd:4e:
        d3:43:09:a9:43:1b:4f:ea:bd:64:66:a3:be:43:b9:61:
        86:e3:ad:3e:09:97:7c:7d:52:cc:fd:83:05:4a:19:0d:
        fd:92:e3:6b:2a:8e:45:75:6a:c9:61:a0:a4:36:39:5f:
        8a:f2:42:ad:0f:24:a4:22:4c:74:ac:ca:18:c8:a4:9a
    Fingerprint (SHA-256):
        94:9A:1A:9A:16:F7:97:BE:D5:14:FF:90:2D:79:24:35:2A:0E:8B:79:89:1E:D0:34:C5:EC:B3:96:71:CB:C3:13
    Fingerprint (SHA1):
        3F:28:86:83:80:F3:09:01:4A:05:71:60:C3:8F:C0:D9:6E:D3:E7:31
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #3369: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154177 (0x1dee43c1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:03 2017
            Not After : Mon May 02 15:43:03 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:8b:b8:40:4e:5d:2b:10:2a:4d:91:7b:cb:31:4b:5b:
                    1d:8f:d5:7c:08:7c:fe:07:f1:c7:f4:ab:20:d7:03:fb:
                    6b:42:5e:94:4d:e0:20:1a:15:bc:c4:b5:40:12:70:5b:
                    c2:14:02:6e:f2:19:9d:d5:58:42:f0:86:cc:f3:1e:8e:
                    17:f4:25:d1:1a:f6:31:ea:ce:51:b3:1b:32:87:ef:65:
                    23:6a:b0:0c:04:d7:8f:6e:78:25:c6:5d:91:8e:70:20:
                    45:42:8b:b6:74:01:b1:0e:b4:13:df:54:cf:d1:5b:d6:
                    92:87:56:08:c4:59:7d:ea:f2:f3:25:26:87:42:aa:65:
                    d8:f5:7e:13:45:cf:0d:cb:c9:76:4b:62:c4:98:aa:bf:
                    cb:c6:88:e3:01:0e:84:c7:39:21:50:af:8f:e9:f0:2f:
                    2b:68:f0:02:8b:7e:51:46:38:2a:11:f3:06:4c:7b:4b:
                    9b:39:25:d4:15:e1:34:8f:9a:5c:e5:9e:04:c9:47:c1:
                    ec:53:7b:42:63:b6:32:ce:a2:12:26:82:03:6f:67:1c:
                    b4:1a:69:36:12:a0:45:7f:63:ca:32:31:60:f7:30:0e:
                    ce:1e:a7:e6:30:1c:1e:59:e9:28:90:dd:03:a3:3e:a8:
                    c4:33:ff:cd:14:81:f5:d0:69:13:04:0f:e8:53:db:49
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:5e:12:ff:81:73:17:6a:65:5a:92:bd:6b:f0:f2:4a:
        2c:3f:7b:67:1f:17:1c:21:ed:fb:5e:77:e3:35:79:5d:
        51:f7:e1:5d:64:2b:a5:81:88:66:3b:52:90:b2:aa:51:
        1d:cb:1d:fe:de:32:8b:1e:36:bb:81:35:d4:ec:54:59:
        6c:9b:39:52:62:5c:b8:1e:79:2c:75:dd:99:36:86:c3:
        5f:3a:51:b7:0c:00:22:19:63:5f:bb:68:ae:9a:7a:4e:
        23:e9:06:f5:61:30:d2:5d:b1:17:54:57:c8:f7:1f:1b:
        ce:63:b2:a3:17:68:a6:40:db:5d:9c:f9:d8:1e:c6:40:
        da:62:2a:72:0f:63:15:53:6f:56:ed:aa:b2:74:40:0d:
        1c:27:aa:19:b5:79:65:38:be:72:e3:27:3d:2c:43:00:
        28:34:e4:30:95:b0:cb:6c:04:66:58:3a:88:1f:7c:39:
        74:96:fd:49:22:ef:ca:8b:3d:61:b8:47:ab:b3:e5:ab:
        57:5d:a2:6f:a8:72:28:ff:59:cd:3f:50:8e:ea:68:7b:
        04:37:f6:a0:c2:55:f9:cf:61:7a:9d:5d:b1:22:09:e6:
        27:02:6b:50:22:6f:a9:f6:26:75:5c:ff:97:67:9c:c5:
        89:f9:1e:be:73:a4:24:bd:a7:f2:f4:29:3e:ff:ff:7c
    Fingerprint (SHA-256):
        ED:8F:DF:DE:A3:EC:1D:99:71:6E:FA:28:3C:89:3D:4F:68:58:F4:F7:1E:CA:99:8D:B7:15:5E:C0:4A:08:36:F9
    Fingerprint (SHA1):
        33:97:7E:0B:FF:16:EB:E1:97:DB:E3:4B:22:11:0F:BF:B4:CA:58:4A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3370: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #3371: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #3372: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #3373: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #3374: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #3375: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154182 (0x1dee43c6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:43:06 2017
            Not After : Mon May 02 15:43:06 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:0e:3c:0e:a1:42:38:ab:7a:f1:a0:35:03:9b:45:52:
                    75:8f:c2:75:be:9a:13:af:13:73:8b:cd:2e:63:e8:53:
                    53:7d:8c:b8:61:bc:97:ce:af:40:42:3c:0b:e3:46:75:
                    74:a3:83:c4:bf:1a:93:bb:c3:27:fc:53:44:86:d9:3a:
                    45:e5:b0:73:12:7a:b3:10:6f:4a:bd:08:fa:6b:24:1f:
                    0a:f0:c3:e6:eb:13:85:08:b6:16:98:2e:a3:f9:31:56:
                    65:c7:ec:b8:bb:21:01:e7:96:0c:3d:94:2a:ce:6e:bb:
                    57:ab:f5:7b:b6:f7:ad:2f:88:9e:ca:49:5a:30:06:bc:
                    4b:f5:f8:1a:b4:8d:0b:59:bc:7e:11:58:26:73:95:24:
                    fd:f4:6b:9b:de:ff:c6:bb:53:6b:d6:0d:79:f1:83:5d:
                    a2:6b:35:25:cf:2e:cd:09:a8:a6:c6:cb:55:3b:3f:6b:
                    80:ef:61:c2:b8:d1:69:bc:fb:a1:31:ae:0c:44:79:4d:
                    8a:36:60:1c:46:18:83:f1:ef:1a:2e:1e:64:09:ae:64:
                    8c:8a:25:26:f8:b1:6e:1e:c7:2c:c3:75:fe:15:04:1c:
                    7c:38:1c:5b:2f:5b:44:c3:59:df:fd:a3:bb:de:a0:9e:
                    0c:a2:b6:47:15:ef:70:93:a9:c8:7b:b3:99:14:ac:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        bd:11:7d:47:c9:08:32:3f:8f:76:54:52:48:93:f9:92:
        5e:87:02:52:a6:6d:c3:96:10:6d:f4:a3:42:32:85:2e:
        35:47:6f:e4:be:cb:9a:63:a7:d9:ca:e8:9a:ce:46:fb:
        de:ef:41:61:72:a1:04:0d:61:2e:bf:12:3b:43:90:6d:
        e4:99:54:23:d1:bd:f5:e8:2f:6e:9e:51:b1:2b:22:a5:
        b5:10:74:f5:f9:d9:f5:a9:66:a7:46:84:b2:e7:e1:b9:
        a1:75:19:df:7c:cc:04:a8:e8:e9:ee:d6:56:8d:9f:ac:
        62:4e:72:84:1e:18:c9:63:50:3f:0f:4e:71:62:52:2a:
        d1:a1:4a:9b:3c:6c:69:86:fc:c7:95:77:c1:e7:2c:66:
        c8:69:15:5c:6b:dd:3f:f4:bf:7a:85:71:2e:6a:2b:e4:
        fa:ff:f6:80:7b:64:c5:47:a3:d8:37:42:8d:29:b1:38:
        35:8a:e1:0e:e9:46:3c:f0:8d:ca:a1:ad:d9:af:9c:83:
        7f:18:84:08:f1:e0:95:f0:c7:b2:6a:79:8e:ba:d6:96:
        0b:88:32:a4:4b:f0:65:98:c7:67:b8:e8:91:75:de:5d:
        1b:e9:81:f9:ef:09:c2:03:05:be:0a:2c:87:5e:de:ba:
        25:33:9c:c8:0d:04:78:4b:8e:46:3d:6a:65:af:b1:40
    Fingerprint (SHA-256):
        0A:FB:B3:13:D4:40:6F:8E:DB:91:21:6E:6D:DE:B3:F2:72:33:30:81:BF:16:32:84:50:1E:B9:22:F4:82:68:75
    Fingerprint (SHA1):
        9A:E5:CF:84:2D:4D:CA:2B:1D:1E:09:1E:AF:A0:F0:F9:89:AD:90:78
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3376: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #3377: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #3378: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #3379: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #3380: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3381: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3382: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3383: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3384: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3385: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3386: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3387: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3388: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3389: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3390: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #3391: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3392: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #3393: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3394: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #3395: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3396: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3397: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #3398: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3399: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 25217 at Tue May  2 15:43:10 UTC 2017
kill -USR1 25217
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 25217 killed at Tue May  2 15:43:10 UTC 2017
httpserv starting at Tue May  2 15:43:10 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 15:43:10 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 8259 >/dev/null 2>/dev/null
httpserv with PID 8259 found at Tue May  2 15:43:10 UTC 2017
httpserv with PID 8259 started at Tue May  2 15:43:10 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3400: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154184 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3401: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3402: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3403: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154185 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3404: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3405: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3406: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3407: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154186 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3408: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3409: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154187 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3410: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3411: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3412: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3413: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3414: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502154188   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3415: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3416: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3417: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #3418: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #3419: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154185 (0x1dee43c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:43:12 2017
            Not After : Mon May 02 15:43:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:11:d0:40:59:27:e1:51:25:e7:a6:0a:2e:2e:c1:dc:
                    7c:09:96:19:50:39:4c:d2:5e:76:f9:41:62:08:45:fb:
                    63:10:7c:e0:c1:20:b9:fb:2c:64:b2:ee:f4:3e:eb:eb:
                    b9:fd:bb:1e:0f:6f:35:5e:40:4d:ca:db:09:b5:08:6b:
                    fd:12:0f:0c:e1:6e:58:b5:55:ea:19:8b:0b:40:98:26:
                    58:a7:c5:72:5f:ad:07:1f:92:9c:db:a4:01:25:b1:8f:
                    68:31:0e:f9:56:d3:62:07:2d:3a:95:7c:25:27:d4:31:
                    57:ac:8c:6d:86:53:e4:c3:5b:94:04:e1:58:5a:91:87:
                    19:4b:8f:09:95:e8:bc:6b:ca:ec:9d:10:c0:1f:13:91:
                    60:17:f8:4b:50:cf:95:af:00:26:47:03:83:4c:56:08:
                    a4:5d:d8:3d:89:c1:90:98:60:6e:04:31:5d:7d:cd:80:
                    f0:6b:12:22:46:d6:cd:98:c2:86:96:73:51:63:e1:d2:
                    c2:ed:81:84:0a:b9:40:10:a7:cd:a6:bb:28:5c:94:b4:
                    ae:d9:98:f0:52:66:20:bd:3f:c2:80:52:af:21:56:32:
                    06:53:1a:99:15:23:49:d1:63:db:36:08:05:ea:85:78:
                    ec:d9:08:86:f3:3b:63:10:79:9e:b7:f1:f6:62:50:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:90:fb:a1:ff:0f:ca:25:5f:d0:9a:cb:5a:45:ce:1b:
        53:02:25:8d:c0:0b:f2:81:93:74:26:33:7f:7c:6e:6b:
        48:53:5b:41:70:60:8e:ff:4e:5a:2a:c7:80:a5:2d:f1:
        a9:f6:d6:86:76:2b:c1:76:93:c8:a3:00:0b:50:a5:4a:
        6b:d4:2f:b4:fd:1a:8f:fe:4f:06:5d:30:1e:5b:a8:40:
        eb:f8:69:03:e8:fa:e0:5a:b8:33:e0:ab:58:39:d5:94:
        f9:cc:4c:f4:eb:0d:fc:09:a4:0c:cb:af:c7:99:3d:cb:
        4c:3d:86:d1:a8:b7:42:b7:28:57:68:e7:34:f0:74:14:
        cb:68:e6:95:b8:be:80:68:b4:b4:8f:77:77:89:44:99:
        ff:e9:b8:01:03:6e:f1:2f:a6:64:d0:5a:72:7a:cb:33:
        2f:9f:04:ec:9f:bb:56:e8:4c:f7:b4:22:4d:1b:37:26:
        cb:b7:8d:32:1c:67:d6:76:f2:28:bd:1d:07:ea:b4:1b:
        72:f1:40:57:65:43:32:23:14:b7:85:3f:1c:63:f5:55:
        d4:84:d4:39:23:27:13:26:4b:b0:0e:1d:6d:11:39:60:
        b4:64:4e:c4:16:af:94:26:ff:02:5c:34:3b:09:6f:04:
        fb:60:a7:03:93:7f:31:88:e6:61:60:c7:63:ca:eb:8d
    Fingerprint (SHA-256):
        9E:4C:4E:93:9B:BE:4F:5E:04:0C:41:DA:12:5C:F8:93:72:CB:CD:FB:8C:17:A6:90:22:48:32:39:8E:12:8A:9C
    Fingerprint (SHA1):
        E3:9B:DF:B5:B0:D5:4A:AD:6D:1D:C6:00:6C:36:29:DF:0B:41:99:F5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3420: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154184 (0x1dee43c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:43:11 2017
            Not After : Mon May 02 15:43:11 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:4b:ef:c6:fe:54:14:c4:1d:eb:9b:05:3a:60:e4:b4:
                    f5:4f:07:46:5b:35:50:f3:5e:bb:65:5e:5f:16:da:4f:
                    72:44:48:2d:92:df:2d:cf:94:ff:12:d8:f4:82:83:a8:
                    96:f1:36:42:e6:b7:0c:7a:80:a7:8a:14:a7:55:4e:90:
                    9e:c9:1e:5b:a9:29:bd:ff:80:57:2e:5e:fa:d7:7e:35:
                    77:27:59:39:0d:88:41:c6:a0:84:7a:1a:a8:43:a8:4d:
                    52:fc:b4:28:fd:7e:dc:14:c6:ff:5f:95:2b:8c:a3:ca:
                    af:ef:e1:16:29:8c:16:32:c7:d8:1c:68:d7:41:a9:c9:
                    c1:6e:f5:57:4b:bb:5a:5b:28:a8:5d:29:bd:ed:e7:07:
                    68:25:93:fd:d3:77:0a:9f:51:f7:d1:9b:a7:40:70:ac:
                    4b:18:07:51:21:68:94:b7:40:82:4f:d4:6e:54:d0:10:
                    c0:af:b8:dd:88:ee:88:f6:fa:6e:b6:16:89:77:95:81:
                    11:36:ec:5f:af:9d:72:a2:e8:1a:f5:eb:45:df:14:fc:
                    55:68:f0:98:58:ef:cb:9c:20:7d:11:ce:21:ee:7a:ca:
                    e7:c6:77:5d:6a:ed:89:28:8e:65:ec:13:33:f3:2e:ea:
                    b7:36:4e:01:64:81:c8:c8:d0:dc:17:3a:c9:3a:5c:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:02:31:bb:94:30:ed:1c:80:ef:09:c6:f2:42:d4:d6:
        85:85:84:03:1a:54:80:94:9a:8b:25:f6:44:66:ac:17:
        34:70:a6:b8:b0:93:4f:6d:ed:c1:26:da:cd:ed:e5:b8:
        a9:9e:57:3b:45:bb:fd:15:3e:a4:a9:79:f1:f3:aa:95:
        c4:9c:8c:8f:c5:b0:f4:d4:20:84:d1:3e:22:86:e3:1d:
        45:01:86:b0:89:74:fa:09:2b:78:64:ad:a4:fa:5b:d0:
        99:ef:3e:d2:25:0f:62:1c:e4:ad:10:23:6c:47:e5:09:
        b1:0e:89:eb:c1:c5:d5:79:e1:b5:f4:f7:da:aa:52:fb:
        bf:b0:b0:b5:be:8c:2d:f5:f9:a8:fd:be:28:25:2b:4f:
        cf:29:8e:ed:28:2d:8c:1c:3c:96:b7:3e:39:35:67:ea:
        29:de:b6:48:fc:e4:14:dd:75:85:04:63:68:fb:6c:25:
        f0:dc:11:28:47:d7:7c:d7:f1:43:6b:58:e3:b5:98:93:
        18:55:9a:5b:79:38:e6:43:18:48:3e:df:f3:51:8d:d0:
        a4:96:df:41:db:cc:7c:82:b4:2b:21:86:0a:ba:82:8c:
        79:a6:fc:27:34:13:dc:93:ab:ba:b9:c7:7f:a5:ec:ca:
        87:5b:ee:b1:27:42:61:b5:40:2e:6b:88:4c:08:51:e7
    Fingerprint (SHA-256):
        0F:B9:74:9A:F6:26:AD:AF:64:1A:73:04:A2:FC:FA:B3:E6:FC:EC:D9:0F:A1:7A:31:D2:16:C4:A1:30:A2:91:2F
    Fingerprint (SHA1):
        A0:3F:6B:D7:4D:42:20:0F:7B:7E:89:2C:65:D9:D8:81:30:E8:61:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3421: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3422: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #3423: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #3424: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154184 (0x1dee43c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:43:11 2017
            Not After : Mon May 02 15:43:11 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:4b:ef:c6:fe:54:14:c4:1d:eb:9b:05:3a:60:e4:b4:
                    f5:4f:07:46:5b:35:50:f3:5e:bb:65:5e:5f:16:da:4f:
                    72:44:48:2d:92:df:2d:cf:94:ff:12:d8:f4:82:83:a8:
                    96:f1:36:42:e6:b7:0c:7a:80:a7:8a:14:a7:55:4e:90:
                    9e:c9:1e:5b:a9:29:bd:ff:80:57:2e:5e:fa:d7:7e:35:
                    77:27:59:39:0d:88:41:c6:a0:84:7a:1a:a8:43:a8:4d:
                    52:fc:b4:28:fd:7e:dc:14:c6:ff:5f:95:2b:8c:a3:ca:
                    af:ef:e1:16:29:8c:16:32:c7:d8:1c:68:d7:41:a9:c9:
                    c1:6e:f5:57:4b:bb:5a:5b:28:a8:5d:29:bd:ed:e7:07:
                    68:25:93:fd:d3:77:0a:9f:51:f7:d1:9b:a7:40:70:ac:
                    4b:18:07:51:21:68:94:b7:40:82:4f:d4:6e:54:d0:10:
                    c0:af:b8:dd:88:ee:88:f6:fa:6e:b6:16:89:77:95:81:
                    11:36:ec:5f:af:9d:72:a2:e8:1a:f5:eb:45:df:14:fc:
                    55:68:f0:98:58:ef:cb:9c:20:7d:11:ce:21:ee:7a:ca:
                    e7:c6:77:5d:6a:ed:89:28:8e:65:ec:13:33:f3:2e:ea:
                    b7:36:4e:01:64:81:c8:c8:d0:dc:17:3a:c9:3a:5c:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:02:31:bb:94:30:ed:1c:80:ef:09:c6:f2:42:d4:d6:
        85:85:84:03:1a:54:80:94:9a:8b:25:f6:44:66:ac:17:
        34:70:a6:b8:b0:93:4f:6d:ed:c1:26:da:cd:ed:e5:b8:
        a9:9e:57:3b:45:bb:fd:15:3e:a4:a9:79:f1:f3:aa:95:
        c4:9c:8c:8f:c5:b0:f4:d4:20:84:d1:3e:22:86:e3:1d:
        45:01:86:b0:89:74:fa:09:2b:78:64:ad:a4:fa:5b:d0:
        99:ef:3e:d2:25:0f:62:1c:e4:ad:10:23:6c:47:e5:09:
        b1:0e:89:eb:c1:c5:d5:79:e1:b5:f4:f7:da:aa:52:fb:
        bf:b0:b0:b5:be:8c:2d:f5:f9:a8:fd:be:28:25:2b:4f:
        cf:29:8e:ed:28:2d:8c:1c:3c:96:b7:3e:39:35:67:ea:
        29:de:b6:48:fc:e4:14:dd:75:85:04:63:68:fb:6c:25:
        f0:dc:11:28:47:d7:7c:d7:f1:43:6b:58:e3:b5:98:93:
        18:55:9a:5b:79:38:e6:43:18:48:3e:df:f3:51:8d:d0:
        a4:96:df:41:db:cc:7c:82:b4:2b:21:86:0a:ba:82:8c:
        79:a6:fc:27:34:13:dc:93:ab:ba:b9:c7:7f:a5:ec:ca:
        87:5b:ee:b1:27:42:61:b5:40:2e:6b:88:4c:08:51:e7
    Fingerprint (SHA-256):
        0F:B9:74:9A:F6:26:AD:AF:64:1A:73:04:A2:FC:FA:B3:E6:FC:EC:D9:0F:A1:7A:31:D2:16:C4:A1:30:A2:91:2F
    Fingerprint (SHA1):
        A0:3F:6B:D7:4D:42:20:0F:7B:7E:89:2C:65:D9:D8:81:30:E8:61:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3425: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154185 (0x1dee43c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:43:12 2017
            Not After : Mon May 02 15:43:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:11:d0:40:59:27:e1:51:25:e7:a6:0a:2e:2e:c1:dc:
                    7c:09:96:19:50:39:4c:d2:5e:76:f9:41:62:08:45:fb:
                    63:10:7c:e0:c1:20:b9:fb:2c:64:b2:ee:f4:3e:eb:eb:
                    b9:fd:bb:1e:0f:6f:35:5e:40:4d:ca:db:09:b5:08:6b:
                    fd:12:0f:0c:e1:6e:58:b5:55:ea:19:8b:0b:40:98:26:
                    58:a7:c5:72:5f:ad:07:1f:92:9c:db:a4:01:25:b1:8f:
                    68:31:0e:f9:56:d3:62:07:2d:3a:95:7c:25:27:d4:31:
                    57:ac:8c:6d:86:53:e4:c3:5b:94:04:e1:58:5a:91:87:
                    19:4b:8f:09:95:e8:bc:6b:ca:ec:9d:10:c0:1f:13:91:
                    60:17:f8:4b:50:cf:95:af:00:26:47:03:83:4c:56:08:
                    a4:5d:d8:3d:89:c1:90:98:60:6e:04:31:5d:7d:cd:80:
                    f0:6b:12:22:46:d6:cd:98:c2:86:96:73:51:63:e1:d2:
                    c2:ed:81:84:0a:b9:40:10:a7:cd:a6:bb:28:5c:94:b4:
                    ae:d9:98:f0:52:66:20:bd:3f:c2:80:52:af:21:56:32:
                    06:53:1a:99:15:23:49:d1:63:db:36:08:05:ea:85:78:
                    ec:d9:08:86:f3:3b:63:10:79:9e:b7:f1:f6:62:50:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:90:fb:a1:ff:0f:ca:25:5f:d0:9a:cb:5a:45:ce:1b:
        53:02:25:8d:c0:0b:f2:81:93:74:26:33:7f:7c:6e:6b:
        48:53:5b:41:70:60:8e:ff:4e:5a:2a:c7:80:a5:2d:f1:
        a9:f6:d6:86:76:2b:c1:76:93:c8:a3:00:0b:50:a5:4a:
        6b:d4:2f:b4:fd:1a:8f:fe:4f:06:5d:30:1e:5b:a8:40:
        eb:f8:69:03:e8:fa:e0:5a:b8:33:e0:ab:58:39:d5:94:
        f9:cc:4c:f4:eb:0d:fc:09:a4:0c:cb:af:c7:99:3d:cb:
        4c:3d:86:d1:a8:b7:42:b7:28:57:68:e7:34:f0:74:14:
        cb:68:e6:95:b8:be:80:68:b4:b4:8f:77:77:89:44:99:
        ff:e9:b8:01:03:6e:f1:2f:a6:64:d0:5a:72:7a:cb:33:
        2f:9f:04:ec:9f:bb:56:e8:4c:f7:b4:22:4d:1b:37:26:
        cb:b7:8d:32:1c:67:d6:76:f2:28:bd:1d:07:ea:b4:1b:
        72:f1:40:57:65:43:32:23:14:b7:85:3f:1c:63:f5:55:
        d4:84:d4:39:23:27:13:26:4b:b0:0e:1d:6d:11:39:60:
        b4:64:4e:c4:16:af:94:26:ff:02:5c:34:3b:09:6f:04:
        fb:60:a7:03:93:7f:31:88:e6:61:60:c7:63:ca:eb:8d
    Fingerprint (SHA-256):
        9E:4C:4E:93:9B:BE:4F:5E:04:0C:41:DA:12:5C:F8:93:72:CB:CD:FB:8C:17:A6:90:22:48:32:39:8E:12:8A:9C
    Fingerprint (SHA1):
        E3:9B:DF:B5:B0:D5:4A:AD:6D:1D:C6:00:6C:36:29:DF:0B:41:99:F5
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3426: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #3427: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #3428: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3429: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3430: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3431: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154185 (0x1dee43c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:43:12 2017
            Not After : Mon May 02 15:43:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:11:d0:40:59:27:e1:51:25:e7:a6:0a:2e:2e:c1:dc:
                    7c:09:96:19:50:39:4c:d2:5e:76:f9:41:62:08:45:fb:
                    63:10:7c:e0:c1:20:b9:fb:2c:64:b2:ee:f4:3e:eb:eb:
                    b9:fd:bb:1e:0f:6f:35:5e:40:4d:ca:db:09:b5:08:6b:
                    fd:12:0f:0c:e1:6e:58:b5:55:ea:19:8b:0b:40:98:26:
                    58:a7:c5:72:5f:ad:07:1f:92:9c:db:a4:01:25:b1:8f:
                    68:31:0e:f9:56:d3:62:07:2d:3a:95:7c:25:27:d4:31:
                    57:ac:8c:6d:86:53:e4:c3:5b:94:04:e1:58:5a:91:87:
                    19:4b:8f:09:95:e8:bc:6b:ca:ec:9d:10:c0:1f:13:91:
                    60:17:f8:4b:50:cf:95:af:00:26:47:03:83:4c:56:08:
                    a4:5d:d8:3d:89:c1:90:98:60:6e:04:31:5d:7d:cd:80:
                    f0:6b:12:22:46:d6:cd:98:c2:86:96:73:51:63:e1:d2:
                    c2:ed:81:84:0a:b9:40:10:a7:cd:a6:bb:28:5c:94:b4:
                    ae:d9:98:f0:52:66:20:bd:3f:c2:80:52:af:21:56:32:
                    06:53:1a:99:15:23:49:d1:63:db:36:08:05:ea:85:78:
                    ec:d9:08:86:f3:3b:63:10:79:9e:b7:f1:f6:62:50:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:90:fb:a1:ff:0f:ca:25:5f:d0:9a:cb:5a:45:ce:1b:
        53:02:25:8d:c0:0b:f2:81:93:74:26:33:7f:7c:6e:6b:
        48:53:5b:41:70:60:8e:ff:4e:5a:2a:c7:80:a5:2d:f1:
        a9:f6:d6:86:76:2b:c1:76:93:c8:a3:00:0b:50:a5:4a:
        6b:d4:2f:b4:fd:1a:8f:fe:4f:06:5d:30:1e:5b:a8:40:
        eb:f8:69:03:e8:fa:e0:5a:b8:33:e0:ab:58:39:d5:94:
        f9:cc:4c:f4:eb:0d:fc:09:a4:0c:cb:af:c7:99:3d:cb:
        4c:3d:86:d1:a8:b7:42:b7:28:57:68:e7:34:f0:74:14:
        cb:68:e6:95:b8:be:80:68:b4:b4:8f:77:77:89:44:99:
        ff:e9:b8:01:03:6e:f1:2f:a6:64:d0:5a:72:7a:cb:33:
        2f:9f:04:ec:9f:bb:56:e8:4c:f7:b4:22:4d:1b:37:26:
        cb:b7:8d:32:1c:67:d6:76:f2:28:bd:1d:07:ea:b4:1b:
        72:f1:40:57:65:43:32:23:14:b7:85:3f:1c:63:f5:55:
        d4:84:d4:39:23:27:13:26:4b:b0:0e:1d:6d:11:39:60:
        b4:64:4e:c4:16:af:94:26:ff:02:5c:34:3b:09:6f:04:
        fb:60:a7:03:93:7f:31:88:e6:61:60:c7:63:ca:eb:8d
    Fingerprint (SHA-256):
        9E:4C:4E:93:9B:BE:4F:5E:04:0C:41:DA:12:5C:F8:93:72:CB:CD:FB:8C:17:A6:90:22:48:32:39:8E:12:8A:9C
    Fingerprint (SHA1):
        E3:9B:DF:B5:B0:D5:4A:AD:6D:1D:C6:00:6C:36:29:DF:0B:41:99:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3432: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154185 (0x1dee43c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:43:12 2017
            Not After : Mon May 02 15:43:12 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:11:d0:40:59:27:e1:51:25:e7:a6:0a:2e:2e:c1:dc:
                    7c:09:96:19:50:39:4c:d2:5e:76:f9:41:62:08:45:fb:
                    63:10:7c:e0:c1:20:b9:fb:2c:64:b2:ee:f4:3e:eb:eb:
                    b9:fd:bb:1e:0f:6f:35:5e:40:4d:ca:db:09:b5:08:6b:
                    fd:12:0f:0c:e1:6e:58:b5:55:ea:19:8b:0b:40:98:26:
                    58:a7:c5:72:5f:ad:07:1f:92:9c:db:a4:01:25:b1:8f:
                    68:31:0e:f9:56:d3:62:07:2d:3a:95:7c:25:27:d4:31:
                    57:ac:8c:6d:86:53:e4:c3:5b:94:04:e1:58:5a:91:87:
                    19:4b:8f:09:95:e8:bc:6b:ca:ec:9d:10:c0:1f:13:91:
                    60:17:f8:4b:50:cf:95:af:00:26:47:03:83:4c:56:08:
                    a4:5d:d8:3d:89:c1:90:98:60:6e:04:31:5d:7d:cd:80:
                    f0:6b:12:22:46:d6:cd:98:c2:86:96:73:51:63:e1:d2:
                    c2:ed:81:84:0a:b9:40:10:a7:cd:a6:bb:28:5c:94:b4:
                    ae:d9:98:f0:52:66:20:bd:3f:c2:80:52:af:21:56:32:
                    06:53:1a:99:15:23:49:d1:63:db:36:08:05:ea:85:78:
                    ec:d9:08:86:f3:3b:63:10:79:9e:b7:f1:f6:62:50:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:90:fb:a1:ff:0f:ca:25:5f:d0:9a:cb:5a:45:ce:1b:
        53:02:25:8d:c0:0b:f2:81:93:74:26:33:7f:7c:6e:6b:
        48:53:5b:41:70:60:8e:ff:4e:5a:2a:c7:80:a5:2d:f1:
        a9:f6:d6:86:76:2b:c1:76:93:c8:a3:00:0b:50:a5:4a:
        6b:d4:2f:b4:fd:1a:8f:fe:4f:06:5d:30:1e:5b:a8:40:
        eb:f8:69:03:e8:fa:e0:5a:b8:33:e0:ab:58:39:d5:94:
        f9:cc:4c:f4:eb:0d:fc:09:a4:0c:cb:af:c7:99:3d:cb:
        4c:3d:86:d1:a8:b7:42:b7:28:57:68:e7:34:f0:74:14:
        cb:68:e6:95:b8:be:80:68:b4:b4:8f:77:77:89:44:99:
        ff:e9:b8:01:03:6e:f1:2f:a6:64:d0:5a:72:7a:cb:33:
        2f:9f:04:ec:9f:bb:56:e8:4c:f7:b4:22:4d:1b:37:26:
        cb:b7:8d:32:1c:67:d6:76:f2:28:bd:1d:07:ea:b4:1b:
        72:f1:40:57:65:43:32:23:14:b7:85:3f:1c:63:f5:55:
        d4:84:d4:39:23:27:13:26:4b:b0:0e:1d:6d:11:39:60:
        b4:64:4e:c4:16:af:94:26:ff:02:5c:34:3b:09:6f:04:
        fb:60:a7:03:93:7f:31:88:e6:61:60:c7:63:ca:eb:8d
    Fingerprint (SHA-256):
        9E:4C:4E:93:9B:BE:4F:5E:04:0C:41:DA:12:5C:F8:93:72:CB:CD:FB:8C:17:A6:90:22:48:32:39:8E:12:8A:9C
    Fingerprint (SHA1):
        E3:9B:DF:B5:B0:D5:4A:AD:6D:1D:C6:00:6C:36:29:DF:0B:41:99:F5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3433: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #3434: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #3435: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3436: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3437: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #3438: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154184 (0x1dee43c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:43:11 2017
            Not After : Mon May 02 15:43:11 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:4b:ef:c6:fe:54:14:c4:1d:eb:9b:05:3a:60:e4:b4:
                    f5:4f:07:46:5b:35:50:f3:5e:bb:65:5e:5f:16:da:4f:
                    72:44:48:2d:92:df:2d:cf:94:ff:12:d8:f4:82:83:a8:
                    96:f1:36:42:e6:b7:0c:7a:80:a7:8a:14:a7:55:4e:90:
                    9e:c9:1e:5b:a9:29:bd:ff:80:57:2e:5e:fa:d7:7e:35:
                    77:27:59:39:0d:88:41:c6:a0:84:7a:1a:a8:43:a8:4d:
                    52:fc:b4:28:fd:7e:dc:14:c6:ff:5f:95:2b:8c:a3:ca:
                    af:ef:e1:16:29:8c:16:32:c7:d8:1c:68:d7:41:a9:c9:
                    c1:6e:f5:57:4b:bb:5a:5b:28:a8:5d:29:bd:ed:e7:07:
                    68:25:93:fd:d3:77:0a:9f:51:f7:d1:9b:a7:40:70:ac:
                    4b:18:07:51:21:68:94:b7:40:82:4f:d4:6e:54:d0:10:
                    c0:af:b8:dd:88:ee:88:f6:fa:6e:b6:16:89:77:95:81:
                    11:36:ec:5f:af:9d:72:a2:e8:1a:f5:eb:45:df:14:fc:
                    55:68:f0:98:58:ef:cb:9c:20:7d:11:ce:21:ee:7a:ca:
                    e7:c6:77:5d:6a:ed:89:28:8e:65:ec:13:33:f3:2e:ea:
                    b7:36:4e:01:64:81:c8:c8:d0:dc:17:3a:c9:3a:5c:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:02:31:bb:94:30:ed:1c:80:ef:09:c6:f2:42:d4:d6:
        85:85:84:03:1a:54:80:94:9a:8b:25:f6:44:66:ac:17:
        34:70:a6:b8:b0:93:4f:6d:ed:c1:26:da:cd:ed:e5:b8:
        a9:9e:57:3b:45:bb:fd:15:3e:a4:a9:79:f1:f3:aa:95:
        c4:9c:8c:8f:c5:b0:f4:d4:20:84:d1:3e:22:86:e3:1d:
        45:01:86:b0:89:74:fa:09:2b:78:64:ad:a4:fa:5b:d0:
        99:ef:3e:d2:25:0f:62:1c:e4:ad:10:23:6c:47:e5:09:
        b1:0e:89:eb:c1:c5:d5:79:e1:b5:f4:f7:da:aa:52:fb:
        bf:b0:b0:b5:be:8c:2d:f5:f9:a8:fd:be:28:25:2b:4f:
        cf:29:8e:ed:28:2d:8c:1c:3c:96:b7:3e:39:35:67:ea:
        29:de:b6:48:fc:e4:14:dd:75:85:04:63:68:fb:6c:25:
        f0:dc:11:28:47:d7:7c:d7:f1:43:6b:58:e3:b5:98:93:
        18:55:9a:5b:79:38:e6:43:18:48:3e:df:f3:51:8d:d0:
        a4:96:df:41:db:cc:7c:82:b4:2b:21:86:0a:ba:82:8c:
        79:a6:fc:27:34:13:dc:93:ab:ba:b9:c7:7f:a5:ec:ca:
        87:5b:ee:b1:27:42:61:b5:40:2e:6b:88:4c:08:51:e7
    Fingerprint (SHA-256):
        0F:B9:74:9A:F6:26:AD:AF:64:1A:73:04:A2:FC:FA:B3:E6:FC:EC:D9:0F:A1:7A:31:D2:16:C4:A1:30:A2:91:2F
    Fingerprint (SHA1):
        A0:3F:6B:D7:4D:42:20:0F:7B:7E:89:2C:65:D9:D8:81:30:E8:61:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3439: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154184 (0x1dee43c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:43:11 2017
            Not After : Mon May 02 15:43:11 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:4b:ef:c6:fe:54:14:c4:1d:eb:9b:05:3a:60:e4:b4:
                    f5:4f:07:46:5b:35:50:f3:5e:bb:65:5e:5f:16:da:4f:
                    72:44:48:2d:92:df:2d:cf:94:ff:12:d8:f4:82:83:a8:
                    96:f1:36:42:e6:b7:0c:7a:80:a7:8a:14:a7:55:4e:90:
                    9e:c9:1e:5b:a9:29:bd:ff:80:57:2e:5e:fa:d7:7e:35:
                    77:27:59:39:0d:88:41:c6:a0:84:7a:1a:a8:43:a8:4d:
                    52:fc:b4:28:fd:7e:dc:14:c6:ff:5f:95:2b:8c:a3:ca:
                    af:ef:e1:16:29:8c:16:32:c7:d8:1c:68:d7:41:a9:c9:
                    c1:6e:f5:57:4b:bb:5a:5b:28:a8:5d:29:bd:ed:e7:07:
                    68:25:93:fd:d3:77:0a:9f:51:f7:d1:9b:a7:40:70:ac:
                    4b:18:07:51:21:68:94:b7:40:82:4f:d4:6e:54:d0:10:
                    c0:af:b8:dd:88:ee:88:f6:fa:6e:b6:16:89:77:95:81:
                    11:36:ec:5f:af:9d:72:a2:e8:1a:f5:eb:45:df:14:fc:
                    55:68:f0:98:58:ef:cb:9c:20:7d:11:ce:21:ee:7a:ca:
                    e7:c6:77:5d:6a:ed:89:28:8e:65:ec:13:33:f3:2e:ea:
                    b7:36:4e:01:64:81:c8:c8:d0:dc:17:3a:c9:3a:5c:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:02:31:bb:94:30:ed:1c:80:ef:09:c6:f2:42:d4:d6:
        85:85:84:03:1a:54:80:94:9a:8b:25:f6:44:66:ac:17:
        34:70:a6:b8:b0:93:4f:6d:ed:c1:26:da:cd:ed:e5:b8:
        a9:9e:57:3b:45:bb:fd:15:3e:a4:a9:79:f1:f3:aa:95:
        c4:9c:8c:8f:c5:b0:f4:d4:20:84:d1:3e:22:86:e3:1d:
        45:01:86:b0:89:74:fa:09:2b:78:64:ad:a4:fa:5b:d0:
        99:ef:3e:d2:25:0f:62:1c:e4:ad:10:23:6c:47:e5:09:
        b1:0e:89:eb:c1:c5:d5:79:e1:b5:f4:f7:da:aa:52:fb:
        bf:b0:b0:b5:be:8c:2d:f5:f9:a8:fd:be:28:25:2b:4f:
        cf:29:8e:ed:28:2d:8c:1c:3c:96:b7:3e:39:35:67:ea:
        29:de:b6:48:fc:e4:14:dd:75:85:04:63:68:fb:6c:25:
        f0:dc:11:28:47:d7:7c:d7:f1:43:6b:58:e3:b5:98:93:
        18:55:9a:5b:79:38:e6:43:18:48:3e:df:f3:51:8d:d0:
        a4:96:df:41:db:cc:7c:82:b4:2b:21:86:0a:ba:82:8c:
        79:a6:fc:27:34:13:dc:93:ab:ba:b9:c7:7f:a5:ec:ca:
        87:5b:ee:b1:27:42:61:b5:40:2e:6b:88:4c:08:51:e7
    Fingerprint (SHA-256):
        0F:B9:74:9A:F6:26:AD:AF:64:1A:73:04:A2:FC:FA:B3:E6:FC:EC:D9:0F:A1:7A:31:D2:16:C4:A1:30:A2:91:2F
    Fingerprint (SHA1):
        A0:3F:6B:D7:4D:42:20:0F:7B:7E:89:2C:65:D9:D8:81:30:E8:61:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3440: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #3441: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154189 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3442: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #3443: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #3444: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154190 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3445: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #3446: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #3447: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154191 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3448: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #3449: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #3450: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154192 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3451: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #3452: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #3453: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154193 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3454: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #3455: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #3456: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154194 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3457: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #3458: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #3459: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154195 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3460: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #3461: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #3462: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154196 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3463: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #3464: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #3465: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154197 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3466: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #3467: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #3468: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3469: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502154198 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3470: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3471: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502154199 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3472: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3473: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502154200 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3474: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3475: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #3476: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #3477: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3478: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502154201 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3479: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3480: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502154202 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3481: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3482: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502154203 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3483: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3484: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #3485: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #3486: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3487: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502154204 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3488: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3489: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502154205 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3490: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3491: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502154206 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3492: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3493: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #3494: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #3495: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3496: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502154207 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3497: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3498: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502154208 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3499: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3500: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502154209 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3501: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3502: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #3503: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3504: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3505: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502154210   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3506: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3507: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3508: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3509: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154211   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3510: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3511: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154189 (0x1dee43cd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:43:16 2017
            Not After : Mon May 02 15:43:16 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    98:3b:ff:27:c5:29:57:11:eb:65:e8:53:43:f4:be:2a:
                    9e:48:27:e8:aa:59:de:b1:66:e9:dc:c7:22:2a:94:68:
                    b8:43:26:47:3c:1e:dd:3c:82:5f:b4:f3:0b:03:b4:d2:
                    a0:8f:a8:02:bf:77:43:c4:cb:b2:30:9d:f3:ef:09:84:
                    15:e5:5b:9d:56:5a:ea:78:7c:34:99:ec:c3:6b:54:96:
                    6e:8f:2b:8a:d7:86:f2:86:30:8c:ff:3e:de:a0:ea:fe:
                    74:e7:e4:da:fa:00:d6:43:f1:a5:0f:b0:3a:d2:81:b1:
                    64:26:73:81:52:d3:0a:b2:33:d8:09:19:70:8c:09:91:
                    da:69:a3:3a:8b:67:80:2b:5e:fd:0f:4b:e5:3e:c1:30:
                    73:0f:bf:8a:0d:ff:a8:10:67:3e:73:24:79:cd:1c:9a:
                    ee:31:83:9a:48:2c:5d:d1:04:87:b8:62:dc:9a:9e:24:
                    96:33:91:ef:db:27:60:7b:b0:43:3e:a0:f5:1d:33:71:
                    a9:9a:de:55:ee:de:f5:f2:63:fb:42:42:32:c9:3a:16:
                    29:c1:f9:7f:ff:e7:38:e7:07:34:a2:47:54:f9:88:5f:
                    98:c0:68:54:3a:7a:8b:4f:d4:6a:74:12:39:5f:e0:90:
                    74:94:4b:97:a2:18:84:11:c2:20:9b:6f:4d:88:e3:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:2d:71:1f:23:3a:22:7b:e2:e8:59:1d:00:ef:56:a3:
        d4:30:da:59:55:20:7d:89:6b:3d:01:f4:46:97:52:31:
        ef:f5:f9:d5:19:21:7e:7a:16:3e:69:72:25:d2:08:66:
        5e:4c:03:88:db:70:42:89:8b:f7:94:36:79:65:95:1c:
        02:17:c4:f0:13:6f:f4:7d:4a:74:b6:f2:1b:7e:7e:55:
        3b:86:88:f6:3a:0b:68:1b:3c:ce:42:48:29:85:47:5a:
        4b:3b:f4:f7:38:da:af:43:5c:67:d9:d9:cf:c4:09:92:
        95:c4:0f:86:06:ec:c3:fd:3a:7f:bd:b8:29:11:c2:78:
        56:bc:f3:12:4d:f5:ce:ee:6f:a1:84:d7:d2:99:7b:a8:
        79:b7:b2:dd:cf:8c:0c:63:a0:e9:91:10:ed:41:2f:1d:
        8c:1d:82:8f:9d:de:52:10:21:6d:27:27:06:b4:9d:22:
        b3:04:71:10:3d:28:3e:81:fe:9b:32:75:65:7e:93:22:
        3c:17:5a:e4:d9:1d:a4:29:51:0a:7e:7f:61:bc:24:60:
        5f:84:0a:c0:73:34:d2:e6:a1:88:b1:af:13:94:8a:20:
        80:63:9f:68:bb:81:92:24:2b:08:f8:9c:3e:4d:aa:de:
        72:bd:05:ee:9f:b1:b5:6a:96:af:c8:ab:b8:34:45:c2
    Fingerprint (SHA-256):
        70:E2:21:F8:55:0F:D1:9B:9F:37:6C:4F:15:FB:B3:2A:41:D3:E7:92:53:F0:A3:36:49:3F:BE:2E:26:7B:8B:9B
    Fingerprint (SHA1):
        21:04:59:A2:FB:FC:C5:93:A6:F4:EE:21:B9:75:83:DF:00:34:01:60
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3512: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154190 (0x1dee43ce)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:43:17 2017
            Not After : Mon May 02 15:43:17 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:54:3e:3d:dc:c5:70:61:ba:81:0d:03:84:9a:c0:9b:
                    8a:7f:ae:4c:18:b5:1a:1b:44:ee:f8:9a:a7:bb:0e:e9:
                    a9:8a:09:00:ba:be:9c:90:44:b2:26:5f:81:fb:8f:30:
                    d2:53:31:f8:7a:6b:3e:87:b9:d0:5c:23:fb:f0:16:74:
                    18:7c:e6:0a:2a:44:1f:2a:b7:11:1c:ed:09:65:42:1f:
                    de:85:15:1c:bd:58:73:f2:19:86:d0:a5:1f:b9:be:31:
                    77:ed:90:27:94:d7:7f:07:54:9c:7b:a7:39:c2:53:bc:
                    60:08:7b:07:32:80:3a:e1:81:af:07:72:5d:b6:d3:91:
                    55:88:ff:5e:58:37:47:04:11:cf:e8:9d:03:20:7f:7f:
                    32:5a:34:29:f7:74:1f:b9:c9:35:fe:7b:ae:24:28:2c:
                    1d:36:ba:7d:a9:72:0b:8b:b9:cf:bb:5e:6b:69:00:95:
                    8c:7e:c6:45:1f:8c:1e:bb:a3:17:f3:62:35:cb:22:c9:
                    dd:f5:6c:43:8f:a9:38:f5:9d:e2:d7:0f:bf:f5:77:0b:
                    50:4a:17:62:f7:48:fb:84:a1:ec:ab:52:11:1c:99:6e:
                    ec:82:be:a1:eb:a9:a8:f8:32:79:a9:4c:22:cb:9a:d8:
                    ae:77:e6:31:6e:d4:c2:2a:7f:2e:23:ee:1c:4c:ae:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a8:ed:a4:c7:85:6c:4d:84:a4:a3:ff:01:0e:97:ba:b6:
        cc:14:86:dc:a2:44:89:65:fb:1b:54:5b:1d:1b:b6:a0:
        9b:15:6a:ca:5e:6d:9a:ad:db:31:de:68:ad:e5:9c:7c:
        7f:c4:5b:37:03:2c:42:26:c4:69:5c:e4:a6:b1:aa:44:
        f2:5b:05:af:cf:ae:c0:ef:9d:4c:6d:a7:be:8b:d8:7c:
        a1:4d:a7:8b:e7:25:3d:2a:cf:47:4e:a7:a8:fe:97:97:
        30:c0:ae:06:7c:7a:82:92:6e:c2:f9:ab:5d:95:cd:22:
        93:b3:50:bf:0e:16:ee:0a:1a:c3:c2:d0:5e:03:dc:a9:
        d9:ab:64:79:39:84:86:d7:3c:c7:18:48:e0:20:38:b5:
        1f:7e:6c:dd:7a:fc:e4:76:5d:12:d8:9d:67:cb:36:be:
        22:b6:fc:97:19:33:73:d6:8b:10:0e:8c:20:17:ec:e3:
        70:7e:98:c0:c4:dc:bd:b7:d4:38:2c:52:a5:64:8e:cd:
        08:c6:3c:c2:98:6d:54:cf:eb:b5:60:ee:d6:b8:da:08:
        81:c4:0b:a2:aa:c2:88:96:09:31:4c:17:0e:f6:d9:14:
        91:f7:2c:a9:1b:02:f6:f6:83:21:a2:1d:1c:46:9e:13:
        30:c3:be:36:aa:fe:10:c5:85:80:70:75:c5:41:3a:7a
    Fingerprint (SHA-256):
        9F:21:1C:C7:D7:C7:C3:23:0A:84:AE:CA:1E:D3:DE:EC:A3:70:73:1B:53:8D:C4:4D:1B:8A:0D:22:BA:58:E9:E8
    Fingerprint (SHA1):
        E1:F5:A6:2C:8A:43:3D:B3:9C:E3:A6:4C:B3:07:11:F9:0C:14:61:E4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3513: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154191 (0x1dee43cf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:43:18 2017
            Not After : Mon May 02 15:43:18 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:a7:ff:62:50:59:a3:02:5e:c0:46:39:b5:d6:bd:1b:
                    3d:c3:5c:c0:1e:aa:e5:4d:ef:1a:5e:47:79:5e:e4:c9:
                    9b:69:84:7f:3d:9c:d0:25:22:eb:0b:85:5a:a4:1b:c0:
                    aa:f2:6c:ae:6d:30:8e:80:f4:ed:d1:82:46:50:2b:73:
                    17:a7:a0:91:27:57:09:71:be:51:18:17:31:77:7a:aa:
                    b0:d1:2a:a7:1a:42:c9:75:a9:fc:62:70:d6:c3:99:91:
                    e8:6b:3e:b4:8e:9a:29:2d:80:b4:ed:57:ed:15:b9:cf:
                    60:8a:79:65:c9:b4:c4:74:39:e1:eb:23:42:3d:ea:d3:
                    40:8d:ef:76:69:1c:ca:76:26:26:6f:4a:90:d8:bf:ef:
                    0e:50:a4:44:74:fb:bd:ed:5f:b3:45:7e:c1:7f:c6:8c:
                    b2:bc:1e:c0:52:67:79:54:e0:1d:44:36:c0:18:80:26:
                    8c:88:49:95:91:c2:66:07:8f:45:d0:d3:1b:f9:5e:6a:
                    4d:d1:50:9d:29:14:c0:e1:75:a6:8e:80:b8:83:59:c8:
                    42:aa:15:6a:70:8a:60:8e:89:24:ec:cc:f3:f9:d0:d5:
                    81:80:9d:6c:76:23:77:0f:90:70:a1:0e:71:c5:8a:f3:
                    5f:84:79:1e:e5:58:e6:63:d3:87:58:db:04:fe:ec:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:47:89:8b:2a:d3:30:ef:3a:14:fb:81:99:13:d9:b9:
        bb:d7:e5:d3:d5:5a:19:5b:4f:b4:9e:fe:ba:c6:f3:ad:
        42:3d:22:53:69:04:f7:40:c2:db:ff:57:ae:67:61:06:
        09:ba:df:1f:e3:ca:6e:f4:cc:2f:65:12:32:d5:fd:73:
        7d:3e:5e:c3:6b:2c:99:cd:4b:c4:5c:fa:49:f7:83:61:
        90:2e:a8:99:72:44:aa:2e:a7:0c:37:e3:d6:5d:fb:ec:
        bd:65:7b:01:9e:af:82:03:4f:ef:11:cf:da:03:b3:37:
        c6:02:dd:ed:98:d2:4e:c1:b2:e4:9f:f7:e2:31:4d:d6:
        03:69:5b:75:cc:89:87:fb:03:81:78:fa:0f:a4:45:8d:
        62:72:a1:e3:bd:00:8b:0e:cd:c5:7e:c8:38:fe:2e:91:
        7d:7e:71:a8:99:23:c4:98:cb:75:21:94:e7:f6:77:c3:
        5d:3e:19:ce:c8:3b:5c:9d:ec:15:2b:2f:6e:52:0d:d3:
        eb:31:9f:9c:10:06:a0:a5:31:68:a3:93:11:f1:f1:6d:
        2b:4f:1e:68:e6:85:4b:12:b5:74:76:5a:73:b0:6f:ac:
        28:07:2b:cc:dd:b3:d1:c9:38:9c:16:f3:a2:73:4c:85:
        2a:0a:97:9f:b9:c2:0a:08:81:5d:e9:3f:1a:a0:f6:40
    Fingerprint (SHA-256):
        46:C8:89:B3:EF:3E:67:69:0E:DB:C2:1D:F7:D7:13:8C:6B:CC:E0:78:89:F1:D0:FD:18:2E:C9:53:44:1C:F2:0C
    Fingerprint (SHA1):
        0E:9D:93:31:A3:75:59:C7:15:34:C0:58:79:E7:FA:D4:04:DB:11:5B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #3514: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154192 (0x1dee43d0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:43:19 2017
            Not After : Mon May 02 15:43:19 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:ec:25:c2:63:2d:4e:e4:56:5c:97:03:2f:6f:dd:c6:
                    fa:2d:3c:d4:45:52:41:ae:a5:c6:76:99:91:f4:25:31:
                    be:14:ba:f3:22:43:28:57:27:55:e5:39:40:8c:71:20:
                    ec:93:d2:d5:50:08:c7:b5:a5:95:ed:f4:80:62:01:12:
                    95:26:3b:4d:18:64:a1:72:d8:59:1f:89:95:26:75:53:
                    3a:1a:fd:e1:84:e6:8a:7d:1a:20:c2:9d:8b:6f:6d:c7:
                    4c:da:f0:9f:38:ed:7a:ea:c4:2a:f9:1a:68:d4:fc:df:
                    27:c1:3b:16:6c:fb:23:7e:65:4f:6a:74:9a:e9:cc:9f:
                    18:be:2b:ad:b9:93:d6:50:92:00:f0:f4:38:22:34:ad:
                    f4:b1:75:60:c6:b5:a3:37:0e:c4:cf:ba:f1:d6:c2:94:
                    0b:b7:6e:d8:80:9e:3b:49:2e:3f:7d:c3:0a:59:fa:53:
                    00:6c:98:2c:20:24:52:a8:f0:fc:57:72:bb:79:7a:d8:
                    30:b3:a4:f1:6d:4c:02:ae:18:a3:22:6e:cf:31:b3:d5:
                    94:55:95:aa:ac:2c:a0:cb:68:63:2e:17:01:b5:9f:68:
                    a4:a3:16:cb:e8:aa:b1:4e:5c:a7:b8:00:16:3a:58:90:
                    01:6a:5d:3c:57:fa:d5:0d:71:51:54:19:fd:8e:39:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        94:4e:9e:42:5b:ab:73:79:26:65:c8:fd:1f:57:43:56:
        74:50:5c:61:e5:34:e7:58:22:3e:63:9f:e8:d0:be:73:
        48:54:7b:0a:67:74:31:71:ef:0b:a6:04:8f:05:5b:53:
        b2:8a:1f:98:72:af:ec:85:45:69:52:e3:cb:00:41:64:
        af:b3:c6:b1:36:70:d6:35:3f:e6:0b:e0:97:d6:49:39:
        74:94:e1:03:eb:c3:8d:a6:63:93:60:a4:9d:54:79:60:
        d8:77:72:94:c9:f0:26:5d:e8:28:0d:73:9f:1c:14:78:
        4b:df:f4:85:12:8b:bf:dc:58:e0:d8:09:c1:a8:58:3f:
        64:b2:8d:1d:af:b1:d0:11:c7:dd:98:81:df:67:b0:8b:
        81:8a:c0:5e:9b:1b:e6:84:b8:e1:9f:72:5a:2a:95:f2:
        55:31:74:d9:ef:ef:a0:91:ca:ab:40:57:5e:43:71:0d:
        bb:63:7c:de:fa:ec:53:19:3e:6f:f8:69:e8:31:00:6e:
        1a:ff:d9:36:fc:51:31:a6:44:2c:b7:50:12:a0:1b:8b:
        b9:5a:5a:aa:09:0c:aa:a3:dd:6d:78:8b:53:9b:9b:51:
        b4:e6:0e:c8:b9:36:71:0a:67:44:68:41:22:81:8d:da:
        56:19:d5:63:a4:75:bf:6f:e5:a5:9e:86:af:84:9b:c1
    Fingerprint (SHA-256):
        F6:42:86:70:7B:D1:D7:D4:02:DB:97:89:62:C6:BD:07:37:C5:E6:F0:6B:1A:F3:29:B5:71:FB:9C:02:5F:89:C3
    Fingerprint (SHA1):
        10:6F:1F:FB:37:0D:9A:42:1B:FC:D5:D2:F4:2C:0C:BD:CE:43:30:11
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3515: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154193 (0x1dee43d1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:43:20 2017
            Not After : Mon May 02 15:43:20 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:91:11:fe:d7:85:74:45:12:67:de:23:dc:5e:f5:b2:
                    5f:3f:08:5e:d6:6d:be:5c:11:78:7f:2b:bb:5c:df:ce:
                    6e:f4:3f:2c:e4:50:33:04:8b:d6:09:c9:a0:2b:e2:72:
                    03:9b:9e:08:92:fe:a1:f0:25:33:d6:47:85:99:87:e9:
                    07:fb:4e:80:91:a8:30:18:37:1c:be:c8:23:e3:b3:c0:
                    c7:32:eb:52:13:c7:6a:5a:33:5b:e7:fb:2f:a0:9c:9b:
                    72:97:6a:46:ea:1f:bd:d0:d2:78:62:11:aa:f8:c6:22:
                    31:4e:00:a4:29:2f:5a:1d:fa:6d:d1:b1:47:bd:04:1d:
                    0d:28:83:8b:91:0e:e6:38:f5:67:85:bb:d7:15:29:a8:
                    7a:99:98:0b:0b:84:c2:8e:76:dd:0d:bf:04:77:d0:d1:
                    82:9b:af:c6:a2:0b:fd:34:e6:56:72:8d:62:3b:05:95:
                    26:99:b9:7c:f2:83:bd:57:50:8b:a6:5e:9d:10:fb:f6:
                    17:f7:1e:65:58:b9:cb:3c:b6:f7:0c:1d:6d:4e:ce:5f:
                    ad:6a:3a:46:7b:d1:1f:43:91:45:f8:0d:fb:75:3f:d3:
                    ab:6e:e4:0d:f2:57:a5:19:76:a6:52:a4:b5:85:18:41:
                    b5:94:86:25:b5:0f:38:b9:aa:ee:7e:f4:20:a7:64:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:46:52:61:25:23:56:27:ff:3c:aa:2f:3d:88:42:40:
        45:23:a6:f0:a2:89:e9:b4:e3:17:96:c4:54:3e:68:33:
        14:7b:b5:07:23:df:eb:a4:e4:c9:47:94:11:06:0a:bc:
        c7:fc:64:5a:2f:7f:70:ef:07:de:0a:73:49:b6:eb:fd:
        26:13:0a:e0:50:14:4d:f0:0b:60:b9:b2:08:57:da:54:
        66:cc:7c:96:9a:e7:4a:a4:32:5d:8a:40:29:42:be:17:
        b0:44:91:c0:e6:47:a7:dd:66:65:38:ae:7f:4c:24:46:
        d1:a8:ca:60:47:c3:50:01:5c:7f:1d:73:db:af:72:d7:
        95:83:bb:31:07:95:5d:c7:e8:d0:0c:16:eb:bd:b9:c6:
        e3:e2:57:a2:f6:11:3a:e1:0d:0f:dd:05:b2:58:90:9c:
        b3:01:1e:23:03:13:6e:ad:e1:42:82:7c:37:ac:5c:2a:
        9f:6b:f5:95:ca:8d:95:67:6e:24:22:a3:09:ba:eb:1f:
        dc:48:ca:07:25:02:0c:11:94:46:45:ba:aa:e5:9f:96:
        f2:e1:95:42:37:ac:87:f9:96:ce:a0:97:c6:14:62:a0:
        33:bb:dd:21:2f:ca:eb:72:02:46:51:20:cb:59:a6:4c:
        57:1c:c9:98:26:1a:42:16:dd:52:3d:6d:f2:d6:6a:15
    Fingerprint (SHA-256):
        86:79:EB:E2:80:F0:76:5E:F6:82:3F:E5:B9:DA:FC:51:21:87:33:0F:D6:DE:7E:75:D7:58:5D:85:24:B8:32:8F
    Fingerprint (SHA1):
        D8:54:72:DA:F6:1E:8D:CD:18:2D:4C:74:AD:D2:A9:C6:10:8E:A8:55
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3516: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154194 (0x1dee43d2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:43:21 2017
            Not After : Mon May 02 15:43:21 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:8c:ec:20:29:87:c9:0b:60:87:64:32:71:04:38:96:
                    ec:2c:2a:da:52:97:2d:1d:b8:b8:6b:18:be:02:3f:68:
                    a4:30:17:7e:67:b7:ab:ea:af:52:d7:96:b5:a1:e8:af:
                    ea:d5:cf:23:e4:12:f5:c4:0e:55:c8:d1:88:c2:30:d4:
                    02:3d:80:ac:75:36:cb:e3:7b:24:2b:99:b4:8d:1d:d5:
                    b7:41:c7:17:af:77:fe:42:f4:26:73:86:7e:2f:1f:13:
                    cb:98:f8:0e:4c:8c:c6:8f:d9:5f:ab:ba:47:39:87:61:
                    63:e1:5d:b3:36:52:07:44:37:43:28:88:7d:af:dd:b5:
                    8f:65:8f:6f:6e:b8:ad:48:73:42:ba:ee:f8:74:ad:85:
                    a5:f8:d4:2c:66:0e:3a:22:b6:37:7c:2a:fb:df:47:14:
                    67:85:ca:c2:9f:23:33:60:cd:cf:41:93:91:bb:95:b6:
                    61:2a:ca:bb:99:18:8e:a0:71:2e:f2:aa:1c:47:e0:c1:
                    0b:ff:65:15:7e:84:ec:a5:fb:29:93:e0:28:8c:fa:e2:
                    07:db:54:86:2e:11:c8:05:9b:d6:bb:54:c7:25:32:5c:
                    b5:6d:ad:4b:9e:5c:fd:cf:6f:6a:04:18:bc:84:87:82:
                    9d:41:f5:1c:66:9f:03:ea:3f:b6:98:77:79:39:a1:73
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:6c:0c:19:21:e0:13:13:73:60:e1:56:20:d6:81:92:
        ce:89:19:ef:7f:60:9c:39:1d:8a:73:a3:4d:4b:10:10:
        d8:b9:2e:e7:0a:04:4c:f2:a9:ce:c5:f1:51:b8:95:69:
        ba:b1:24:6d:7f:75:56:3e:93:1e:24:58:40:a7:5f:13:
        30:c4:5f:8b:b4:36:4b:ff:93:de:34:e7:07:ee:63:2d:
        3d:90:72:f5:fe:ca:5c:ce:2f:2e:48:b2:09:c5:2b:25:
        fc:a3:35:0b:fe:2b:c0:2a:96:e5:78:ba:b5:19:cc:76:
        d4:b7:93:ba:6f:8b:2b:a8:5f:99:79:47:62:42:b0:1f:
        f9:82:98:63:8b:91:85:74:47:6e:ad:a7:a5:48:04:9b:
        55:ee:c1:ec:6d:f5:f6:09:33:e7:3d:6e:72:c8:e9:c3:
        91:6e:4c:9f:83:b6:71:bc:09:50:90:1f:fc:e8:18:cb:
        11:2f:88:a5:ad:88:96:ac:3c:ea:b9:3b:8d:72:22:2c:
        4f:e7:0d:57:03:b3:9e:95:2d:46:40:42:e9:9d:8c:62:
        8a:fb:e9:80:2f:1e:94:29:b6:a1:a6:c4:2a:0a:08:b8:
        98:7a:d6:c7:2b:44:ba:dd:9b:30:23:3b:1f:e1:78:6f:
        9d:00:be:6a:06:83:1a:7a:2b:bb:b8:ef:cc:59:8a:e2
    Fingerprint (SHA-256):
        1E:EF:60:1E:0D:06:07:66:06:47:06:4B:C0:5C:36:85:05:F2:67:DE:AC:05:19:6C:43:E5:D4:FD:6F:C5:33:A7
    Fingerprint (SHA1):
        04:A7:46:64:BD:C7:2C:A1:AA:9B:71:85:48:EE:3D:6F:80:5E:CA:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #3517: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154195 (0x1dee43d3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:43:21 2017
            Not After : Mon May 02 15:43:21 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:7d:0c:b0:84:0d:ee:5a:d0:4c:8a:8b:2b:bc:fa:77:
                    e8:22:89:db:f5:4a:79:53:f7:d1:ec:e2:90:1e:9e:78:
                    0e:3f:ed:b1:04:ef:25:58:97:05:7b:3b:d8:93:ff:09:
                    a3:1b:04:7f:cd:cb:12:db:bc:98:e8:b3:72:cf:da:5e:
                    17:0e:59:f3:45:02:09:04:c7:92:4a:bd:ad:c0:c4:95:
                    58:2a:e3:ed:37:aa:5a:9d:5a:8b:39:41:bf:6e:fc:65:
                    6d:c9:bc:18:e7:9f:4f:7c:22:f6:f7:78:01:39:1c:8f:
                    09:3a:bc:d9:f2:f1:50:df:47:53:23:d1:51:ff:e7:1d:
                    31:63:88:20:23:f4:45:30:48:00:e2:bb:3d:fd:fa:79:
                    9d:96:62:02:4b:56:17:e5:ba:70:54:40:03:8b:28:ce:
                    ee:68:68:21:1e:17:46:c4:61:0c:cf:29:d9:b0:e5:30:
                    27:77:9b:f3:b9:f0:18:d6:2d:8e:45:87:50:e5:3e:a4:
                    75:03:65:ed:eb:a0:43:58:32:53:26:6d:39:96:67:de:
                    88:5a:b6:2e:e4:3e:7f:fc:b5:7c:db:71:f2:a7:fb:e6:
                    1a:b3:75:df:9f:23:b4:1e:b6:cd:b5:7e:ae:e1:dd:1c:
                    60:46:1f:3c:8b:83:79:fa:c3:0f:5d:f9:97:d5:5b:ad
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cf:76:ae:a5:54:a8:1c:3c:bf:ed:6f:90:71:8b:ac:04:
        01:cc:dd:6a:60:ae:29:65:10:f7:22:dc:0b:c3:e7:dc:
        0e:6d:fa:47:56:08:da:b4:8b:bf:65:b7:31:ce:08:57:
        b1:04:f9:67:01:cd:32:7d:3f:83:d8:8b:16:66:6d:ea:
        00:48:b3:7f:f0:11:d1:34:06:9b:a3:a5:d8:48:75:4a:
        77:73:66:b0:92:30:7e:37:81:60:28:10:62:73:96:56:
        56:bc:f9:17:29:ff:11:ec:c6:00:06:25:6f:51:97:b6:
        4c:3e:71:6d:4f:ea:4e:19:56:6d:5c:b3:d1:0e:dc:7d:
        3e:c2:cf:94:10:50:82:a3:98:62:0b:59:7a:63:55:28:
        6f:fa:26:24:e0:5a:b6:1d:c4:f2:8c:f9:b0:bd:e8:06:
        e0:f0:e6:bd:a3:a9:96:1f:90:64:28:f3:ed:84:c5:3a:
        3a:bc:7b:c0:76:64:0c:51:d4:ba:7e:c3:74:ef:0b:8a:
        7e:a9:d8:b2:36:2f:61:5f:b0:f5:31:5e:bb:3d:64:58:
        ea:a2:93:fa:f0:6e:db:be:52:64:39:a6:a1:e5:49:eb:
        f6:e2:03:c2:10:db:cd:5c:81:f5:6f:ed:55:00:ef:62:
        25:b9:80:cb:ad:44:64:d9:50:5c:2c:80:37:02:69:32
    Fingerprint (SHA-256):
        4C:35:FE:5C:38:7D:8E:AC:FA:9A:B1:22:DA:4E:16:5F:6A:BB:4B:B4:C9:F3:4B:A4:16:F9:06:8A:6F:F2:B7:6F
    Fingerprint (SHA1):
        88:EB:39:E7:B2:62:25:28:B8:5F:3D:13:AA:6F:E9:D2:45:74:B6:6A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3518: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154196 (0x1dee43d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:43:22 2017
            Not After : Mon May 02 15:43:22 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:a0:1e:d0:d0:c2:64:4f:53:81:f8:ab:6c:59:bf:4f:
                    3a:22:aa:86:30:3d:82:fe:47:5e:da:29:09:6f:01:46:
                    59:b0:21:f0:9c:96:6c:c0:54:6c:06:32:cc:05:ba:6d:
                    12:80:aa:3d:3d:22:5b:57:73:bd:01:d1:ac:b2:58:e3:
                    b0:ec:44:64:67:ba:7f:fd:62:e6:0f:08:fb:9d:f7:a4:
                    f4:be:07:e1:b9:d4:9e:c9:d1:42:96:2a:15:e1:33:22:
                    44:f2:b6:c1:38:fa:f4:15:57:00:d9:d5:f0:71:e8:58:
                    5f:84:05:e7:37:e3:ee:25:cd:17:4c:e9:a4:3c:6d:72:
                    72:f9:e5:a7:0d:50:ea:2a:c6:e4:65:b5:a9:13:85:d5:
                    0a:2d:ea:69:a7:a1:4f:89:d5:c9:c3:30:ab:74:03:77:
                    00:49:66:5c:29:ca:53:09:28:05:6f:b9:3b:d7:b7:fc:
                    48:2c:e2:f8:c7:ce:1a:74:12:ca:e9:1b:6a:98:97:f4:
                    58:b9:6c:09:f6:55:c0:c1:0a:08:29:1b:fe:ce:d5:26:
                    98:d4:48:70:a0:fb:2b:01:8b:39:b3:ee:b2:ef:0a:cd:
                    e0:cd:1c:dd:6a:e4:92:74:a7:92:38:1e:af:c7:f2:90:
                    3b:88:33:62:15:7c:1e:32:d7:ac:9d:23:fe:19:8a:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:79:99:87:6a:8c:22:3a:46:99:72:4e:7c:60:57:db:
        1d:64:d4:40:32:9b:b6:75:38:e0:e5:0d:66:f1:82:5f:
        b8:9b:ea:e0:0a:4c:ee:14:6b:08:de:a1:ac:e8:8f:99:
        f5:30:37:88:3c:77:1f:2b:f6:18:29:ce:6d:38:79:57:
        b4:2f:28:e2:1f:9e:36:7a:0e:bb:9b:55:ab:6f:36:c9:
        73:21:49:09:84:9f:53:9e:82:e3:d6:23:7c:9f:3e:f7:
        a0:3a:50:4a:52:3f:d8:73:a3:59:0a:38:3b:49:8e:10:
        35:17:e8:b8:ba:e6:55:1b:11:b9:f4:8f:ba:18:c7:fb:
        55:2d:bd:cf:f7:4f:b4:e7:6c:94:0c:ff:0e:c4:2a:77:
        ed:37:ca:fd:d8:19:cb:bb:99:36:50:e7:41:c6:3c:02:
        21:e1:6d:a5:79:c4:e7:35:8c:3b:d3:10:2b:21:fe:91:
        b7:f7:e0:90:14:78:6a:68:c5:66:f9:b5:78:6f:c8:59:
        eb:0a:ef:00:3d:0a:58:d0:48:42:51:b6:02:7b:dd:68:
        7f:1f:ce:a8:ec:92:77:f1:48:62:a9:46:6b:4c:33:03:
        39:cd:d0:38:c4:8e:7a:2b:41:76:2f:75:d3:b5:1c:77:
        6a:d6:b4:d2:fd:33:99:70:17:f8:64:dc:4c:5e:8a:ee
    Fingerprint (SHA-256):
        D2:B7:BC:C4:67:4D:A0:26:04:11:AE:49:1E:3A:E1:87:1B:11:29:B9:BF:EB:6D:E8:37:0E:34:7F:69:45:22:3A
    Fingerprint (SHA1):
        E0:BB:8F:0D:05:49:1E:3F:E1:BD:2B:A6:D0:DC:2C:65:61:2C:F0:7B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3519: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154197 (0x1dee43d5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:43:23 2017
            Not After : Mon May 02 15:43:23 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e0:bd:24:d7:6e:98:3f:af:cb:c2:87:59:21:7a:41:1d:
                    ef:cd:23:1d:d3:48:b7:5e:bb:a3:cc:9b:02:36:53:25:
                    e5:86:f6:ce:05:9e:85:af:76:b7:d7:49:32:ba:62:e3:
                    42:b8:5a:98:a0:40:36:06:cd:98:05:74:d2:c6:4a:dc:
                    6e:08:b0:5c:90:46:d9:62:43:b7:14:46:c6:3f:d7:e3:
                    76:50:60:09:be:fb:61:68:84:d7:e3:c8:bf:f8:40:8d:
                    50:61:bd:0b:f4:49:aa:43:b7:16:37:b8:f6:27:50:01:
                    ad:7d:ba:c2:76:07:b3:47:38:76:2c:95:48:13:10:6b:
                    54:50:43:cc:d6:83:96:7a:ab:b4:f8:39:e9:8e:a7:95:
                    fb:f1:fd:c3:60:8d:ec:ab:55:6f:68:74:1b:60:2d:51:
                    ea:04:eb:01:dd:2a:98:7e:0a:2b:0a:7d:31:7b:59:d4:
                    c0:77:6f:16:21:23:23:11:75:27:d4:c8:37:63:ad:17:
                    f7:7a:1d:7d:7d:a0:c3:a1:04:15:f4:12:80:b3:bc:85:
                    fe:28:8e:cc:49:39:6c:8f:25:1f:85:ba:7d:fd:23:b4:
                    c0:1b:38:92:ed:3e:73:cc:9c:e8:fc:12:50:26:f8:05:
                    b3:31:41:a4:a2:c7:11:98:9c:68:38:3a:98:3f:fd:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cd:9e:0e:e8:70:15:1e:6b:5a:3c:d0:30:94:33:d6:a6:
        0d:7a:0c:a0:78:68:7a:99:cb:15:ac:fb:8b:91:59:c2:
        f8:bc:84:bd:43:10:76:ff:9d:0f:d9:19:83:a4:ee:58:
        f6:fd:1b:64:fd:03:60:4d:31:39:7b:e3:84:6f:92:51:
        0c:23:6c:a3:91:68:98:e0:fe:7a:ad:7c:6d:a2:3b:37:
        39:7c:87:4f:01:27:cc:6f:3b:c7:6c:10:aa:47:e3:e8:
        6d:62:84:ff:a4:8e:5c:ba:7c:ee:95:6b:aa:0e:94:c4:
        3d:eb:7e:1c:b2:85:3b:74:c6:5a:5a:12:8d:97:6a:0e:
        1e:62:c8:a0:c0:74:54:78:4a:7d:6f:00:8f:b9:79:1e:
        e5:3f:0e:01:05:bc:55:4c:82:ce:76:f4:d3:ff:fa:fa:
        35:11:44:3e:c5:ff:6b:a7:1a:1b:30:37:49:6c:d2:e7:
        7f:48:55:7a:db:04:8c:ca:ad:c9:12:1e:65:15:84:b4:
        f5:91:99:e8:0d:5b:85:dc:25:03:81:72:0d:36:e2:25:
        22:dd:50:27:c8:06:c8:49:aa:28:ac:d1:62:9f:f8:f9:
        c3:ac:59:4c:9f:6a:03:d8:0d:c3:82:7e:b3:62:8a:3e:
        df:24:2b:5c:67:c9:cc:46:0d:ae:30:f9:43:98:d5:a3
    Fingerprint (SHA-256):
        64:D8:D0:F0:50:A4:7C:B5:0B:D2:CE:A6:D1:4A:19:13:E4:D9:3D:09:53:CE:6E:8D:8D:1A:8E:59:D6:03:87:B4
    Fingerprint (SHA1):
        E3:03:B3:1E:26:91:FD:80:C4:D2:D9:F0:02:4F:E7:76:F4:47:C7:C5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #3520: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3521: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154212 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3522: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3523: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3524: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3525: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154213   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3526: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3527: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3528: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3529: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154214   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3530: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3531: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3532: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3533: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154215   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3534: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3535: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3536: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154212 (0x1dee43e4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:29 2017
            Not After : Mon May 02 15:43:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:38:d0:94:8e:a5:9d:7e:e0:74:ae:fa:63:19:8a:ec:
                    92:6f:07:e5:b7:27:6f:97:9c:e5:3a:97:e8:80:c1:81:
                    fa:05:db:8e:62:29:83:05:93:c9:6f:e6:d6:e7:6f:36:
                    0f:5e:d0:d0:f2:84:03:ea:5f:19:85:7f:e7:6d:88:d7:
                    75:15:98:10:e4:a8:00:b4:39:7d:81:54:9d:09:e6:9f:
                    9d:ce:11:4b:34:97:a3:79:00:6f:f5:9a:a8:0f:27:e2:
                    d5:ee:43:7c:fe:f0:b1:2d:3a:43:77:07:f4:06:d2:fb:
                    34:83:93:eb:96:27:bd:8a:a5:88:28:56:f3:9e:99:96:
                    b7:f7:30:fe:4d:09:f6:a3:cb:0a:db:15:df:43:47:26:
                    92:38:44:a4:d9:5d:3f:8e:79:47:57:72:f2:4b:71:6d:
                    a2:ce:eb:36:4e:e4:fe:90:1b:ac:31:3f:47:1d:eb:40:
                    3a:5e:c7:d1:56:ab:ed:6b:ac:f6:08:a2:6a:d2:0d:40:
                    59:7d:3a:7e:49:0e:b0:f7:f0:6a:37:59:d0:de:2a:13:
                    dc:3a:09:21:8b:db:c4:ea:bb:fc:25:aa:44:99:b7:35:
                    66:56:6f:16:f6:0f:61:8a:90:fd:9a:b3:dc:4b:74:8f:
                    84:5c:d9:81:c1:a9:7f:0c:a9:8a:06:3a:b3:1b:c4:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:b6:67:87:1c:ae:9c:f2:71:14:d1:78:91:a9:3b:95:
        f0:3f:80:5d:a3:79:8e:dd:74:57:b3:03:f2:6a:d7:a8:
        1a:8d:24:5f:d0:3b:64:88:56:91:0b:f2:7e:a4:97:11:
        43:f8:a1:e1:1b:88:53:16:36:70:30:76:65:68:0e:86:
        05:6f:b0:00:da:ca:23:8d:70:9a:bd:a8:35:dc:20:19:
        fd:5f:40:5d:a4:db:4d:11:5c:3e:83:26:22:de:dd:36:
        8a:8c:87:af:b6:2e:4c:e9:b7:33:7d:13:67:26:bf:80:
        a7:34:54:91:1c:63:b8:3f:e2:a3:45:c9:0d:50:f2:ce:
        bc:b4:1e:ed:e8:df:f4:c1:b5:0f:19:7e:e8:6b:0c:6f:
        89:ba:72:c6:9f:b3:56:c8:16:e7:58:bd:79:9c:d7:7c:
        c4:c2:08:12:4a:77:c7:96:9d:3e:4a:80:35:53:14:33:
        ef:e6:1d:c9:ba:45:b2:8c:50:09:ea:f1:60:93:98:6d:
        90:87:9b:39:08:b9:9c:61:57:9b:80:94:44:bd:de:e4:
        16:55:bf:55:bd:b6:22:45:dd:5a:22:c1:3b:e0:f1:0c:
        72:f0:a0:ce:9d:91:15:a2:95:8e:e0:b9:d2:24:db:ad:
        55:1d:59:c3:23:12:07:cc:e4:d1:36:74:12:9e:19:7d
    Fingerprint (SHA-256):
        76:F5:B1:F4:16:1F:CD:14:E6:B9:EC:C7:5A:61:3F:EE:B5:93:4E:1A:A6:DA:19:FC:F9:F6:85:CE:F2:0C:78:31
    Fingerprint (SHA1):
        FE:FF:11:96:34:98:DA:5B:F2:56:42:A6:0F:FD:3E:3E:D1:B8:7D:F8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3537: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3538: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154213 (0x1dee43e5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:30 2017
            Not After : Mon May 02 15:43:30 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:3a:a6:00:23:14:fc:bc:aa:68:03:6d:d2:ae:95:52:
                    9a:55:e7:f8:fa:84:3a:f7:44:22:22:d9:43:51:ca:9f:
                    7d:d4:65:3f:fc:8d:60:9a:9f:aa:8b:df:f6:92:cb:11:
                    06:c1:34:3d:a8:b2:57:5e:12:4b:bd:0b:dc:35:3a:f1:
                    7f:c2:ee:66:b3:49:84:55:0d:8c:e8:a0:48:9a:85:33:
                    9a:3e:4a:dd:c7:38:f1:ce:91:84:7a:a3:5a:b6:0c:21:
                    45:94:c5:31:bc:43:13:57:1e:f7:b0:a1:81:3c:dd:4f:
                    88:52:af:18:40:b5:26:de:11:e1:35:75:2a:26:f5:b7:
                    e5:4c:ce:ed:2c:12:e4:0f:0a:f0:c9:31:52:30:e1:00:
                    48:ff:f0:c4:b0:8a:5f:11:ba:8d:87:47:0d:1d:07:34:
                    9c:23:b6:3e:45:fc:d7:19:24:d8:3e:2f:91:58:6f:ce:
                    93:60:75:a6:80:88:4e:42:e1:e2:cc:4c:bc:5c:29:e2:
                    8c:9c:dd:4f:1e:4e:1d:fb:b7:55:7a:53:38:6a:c3:14:
                    61:7c:70:9a:e3:c3:62:d5:d7:47:61:8f:38:3f:bd:89:
                    cf:15:c9:4d:bc:4a:e3:b4:ac:05:1f:d1:c0:ec:cf:95:
                    bb:ad:2b:8c:1a:c0:87:77:8d:e9:5e:ff:43:0a:24:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:fb:4a:8d:d6:d7:d6:a7:5c:60:2e:63:35:2a:b6:5c:
        df:5b:89:df:54:01:a3:aa:28:5d:4c:4d:2a:27:4a:0f:
        93:09:e3:7d:d8:1d:5b:c4:3d:1f:c2:00:ae:9b:87:dd:
        c0:77:6f:e0:18:e7:3d:ec:fd:09:58:b1:68:56:17:23:
        6e:dc:47:b1:17:25:10:63:b6:00:54:a3:6d:9d:65:5a:
        f3:03:83:94:d7:59:99:a1:4d:32:16:49:8d:ed:57:4f:
        43:1c:af:4f:31:d6:d4:df:e1:53:d5:94:8d:cc:78:64:
        8f:6c:d8:dc:ec:47:fa:93:06:e7:70:ef:61:72:bf:be:
        24:80:e2:36:64:51:a9:e7:d2:33:a2:60:29:09:f4:0b:
        09:64:75:51:43:81:49:57:16:3f:cf:bb:e7:1a:8a:d5:
        a0:9a:aa:f0:dd:b5:ee:5d:cb:68:98:f1:6b:da:d5:23:
        0a:b4:c5:37:e9:8c:2e:b5:6c:c8:88:19:0a:e4:ec:18:
        cf:1c:5f:ae:43:40:fb:ce:65:31:a2:28:c0:d1:9d:cc:
        9a:ea:41:8c:83:b4:44:66:fb:38:44:1e:cf:df:bf:58:
        70:fe:1d:f5:ee:52:c3:19:05:83:9e:88:13:2e:aa:da:
        46:f2:b7:9d:ca:b4:3d:77:95:92:05:0c:5d:04:ba:e9
    Fingerprint (SHA-256):
        82:BC:1C:B4:E7:1F:14:22:84:50:84:41:48:8F:49:D1:5D:16:93:0A:AA:43:C4:96:BC:11:28:95:E7:79:C7:EF
    Fingerprint (SHA1):
        EF:43:F6:C6:E1:43:3D:66:E1:0F:A8:A0:A7:A0:92:36:5D:05:51:D7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3539: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3540: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154214 (0x1dee43e6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:43:30 2017
            Not After : Mon May 02 15:43:30 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:0f:a6:b0:00:e1:61:9b:7f:bf:d1:0d:23:5c:94:7d:
                    48:0f:7e:95:ce:ab:75:11:03:3d:45:65:05:42:95:b5:
                    61:53:84:4d:c2:c5:41:1f:95:ea:d5:81:84:8f:37:80:
                    01:6c:d4:68:a2:a3:9d:72:05:6d:57:c3:47:2a:21:cc:
                    10:c9:1d:01:1e:a8:ae:2a:4d:bd:2a:b2:86:0c:2c:02:
                    90:6a:b0:af:13:bc:40:31:ad:0b:78:12:78:d8:a9:b0:
                    f1:b4:a3:49:cd:d4:80:8c:04:5c:7b:60:08:c9:c9:0b:
                    1c:4e:1c:7b:52:5a:58:68:68:cf:c2:37:7d:c6:ce:63:
                    4e:14:2c:d2:ed:e3:28:8e:90:b0:31:f1:31:78:e0:a0:
                    24:4f:80:22:9a:bf:24:b0:ad:52:51:15:75:98:7b:5d:
                    a1:ed:07:93:d6:1d:df:b3:77:8e:43:c1:f6:b0:fa:aa:
                    90:14:47:c6:9a:4a:ed:82:a2:3d:1d:36:0f:dc:28:30:
                    ea:9c:83:9b:3f:6d:e4:a6:3b:f9:61:b1:25:6d:f7:b9:
                    2a:d4:f5:fa:92:6c:c3:64:31:40:e5:18:b3:e8:5a:ad:
                    9e:cd:52:0b:fd:67:cb:69:b7:63:54:b0:da:31:cb:c4:
                    97:ed:b3:e0:90:3a:a1:aa:63:a8:09:93:8e:8b:7d:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:08:31:c8:49:b5:6f:80:49:ec:f5:ab:cd:e1:45:f7:
        8c:51:68:e5:48:ad:f3:7c:f8:63:78:9a:e1:c9:34:85:
        36:f5:ad:d1:ed:9d:23:e0:c9:fe:e7:aa:1a:3d:fa:74:
        c7:47:6f:15:2b:d1:77:28:17:c0:d9:ad:d7:47:4f:d2:
        6f:e3:2c:40:25:62:1b:03:92:7c:d8:50:2b:78:a8:60:
        f2:32:c2:4d:70:16:a5:0f:04:5a:f2:b8:83:3c:16:48:
        f5:eb:70:62:18:ba:10:6c:f0:36:84:3f:f8:84:00:57:
        71:42:80:80:d8:46:08:c5:af:0b:ad:a2:e2:5a:54:78:
        ae:e9:c7:46:5f:a7:6d:d5:e9:79:0e:bc:6c:e5:66:0f:
        5c:ab:c4:d1:20:b2:1e:36:61:e7:a2:26:4c:79:3a:40:
        6b:d6:ff:04:93:e5:a3:be:ec:a2:63:fe:fa:46:6a:1b:
        13:4e:fe:18:6a:5e:1d:c1:6d:3b:51:52:06:a2:e9:bc:
        6c:26:db:5e:e6:d0:93:6c:1c:76:c6:ea:ce:30:69:a6:
        54:80:73:0e:6a:7a:89:b1:5a:f6:03:98:6e:dd:45:19:
        e6:a0:85:fc:d2:c8:97:c4:d4:f9:34:da:20:3f:d1:45:
        e3:14:83:61:b6:8f:b6:0b:1f:82:cc:5e:20:4d:c1:7a
    Fingerprint (SHA-256):
        3E:8E:62:33:2B:3C:DE:69:CA:F1:C9:AD:17:74:B3:63:59:0C:5B:FA:61:A2:62:A3:CC:D8:B3:AA:16:FB:5B:FD
    Fingerprint (SHA1):
        DC:D5:5D:89:CF:A1:2B:A2:EB:70:A9:BA:8E:32:43:DB:D5:08:C9:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3541: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3542: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3543: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3544: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3545: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154212 (0x1dee43e4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:29 2017
            Not After : Mon May 02 15:43:29 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:38:d0:94:8e:a5:9d:7e:e0:74:ae:fa:63:19:8a:ec:
                    92:6f:07:e5:b7:27:6f:97:9c:e5:3a:97:e8:80:c1:81:
                    fa:05:db:8e:62:29:83:05:93:c9:6f:e6:d6:e7:6f:36:
                    0f:5e:d0:d0:f2:84:03:ea:5f:19:85:7f:e7:6d:88:d7:
                    75:15:98:10:e4:a8:00:b4:39:7d:81:54:9d:09:e6:9f:
                    9d:ce:11:4b:34:97:a3:79:00:6f:f5:9a:a8:0f:27:e2:
                    d5:ee:43:7c:fe:f0:b1:2d:3a:43:77:07:f4:06:d2:fb:
                    34:83:93:eb:96:27:bd:8a:a5:88:28:56:f3:9e:99:96:
                    b7:f7:30:fe:4d:09:f6:a3:cb:0a:db:15:df:43:47:26:
                    92:38:44:a4:d9:5d:3f:8e:79:47:57:72:f2:4b:71:6d:
                    a2:ce:eb:36:4e:e4:fe:90:1b:ac:31:3f:47:1d:eb:40:
                    3a:5e:c7:d1:56:ab:ed:6b:ac:f6:08:a2:6a:d2:0d:40:
                    59:7d:3a:7e:49:0e:b0:f7:f0:6a:37:59:d0:de:2a:13:
                    dc:3a:09:21:8b:db:c4:ea:bb:fc:25:aa:44:99:b7:35:
                    66:56:6f:16:f6:0f:61:8a:90:fd:9a:b3:dc:4b:74:8f:
                    84:5c:d9:81:c1:a9:7f:0c:a9:8a:06:3a:b3:1b:c4:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:b6:67:87:1c:ae:9c:f2:71:14:d1:78:91:a9:3b:95:
        f0:3f:80:5d:a3:79:8e:dd:74:57:b3:03:f2:6a:d7:a8:
        1a:8d:24:5f:d0:3b:64:88:56:91:0b:f2:7e:a4:97:11:
        43:f8:a1:e1:1b:88:53:16:36:70:30:76:65:68:0e:86:
        05:6f:b0:00:da:ca:23:8d:70:9a:bd:a8:35:dc:20:19:
        fd:5f:40:5d:a4:db:4d:11:5c:3e:83:26:22:de:dd:36:
        8a:8c:87:af:b6:2e:4c:e9:b7:33:7d:13:67:26:bf:80:
        a7:34:54:91:1c:63:b8:3f:e2:a3:45:c9:0d:50:f2:ce:
        bc:b4:1e:ed:e8:df:f4:c1:b5:0f:19:7e:e8:6b:0c:6f:
        89:ba:72:c6:9f:b3:56:c8:16:e7:58:bd:79:9c:d7:7c:
        c4:c2:08:12:4a:77:c7:96:9d:3e:4a:80:35:53:14:33:
        ef:e6:1d:c9:ba:45:b2:8c:50:09:ea:f1:60:93:98:6d:
        90:87:9b:39:08:b9:9c:61:57:9b:80:94:44:bd:de:e4:
        16:55:bf:55:bd:b6:22:45:dd:5a:22:c1:3b:e0:f1:0c:
        72:f0:a0:ce:9d:91:15:a2:95:8e:e0:b9:d2:24:db:ad:
        55:1d:59:c3:23:12:07:cc:e4:d1:36:74:12:9e:19:7d
    Fingerprint (SHA-256):
        76:F5:B1:F4:16:1F:CD:14:E6:B9:EC:C7:5A:61:3F:EE:B5:93:4E:1A:A6:DA:19:FC:F9:F6:85:CE:F2:0C:78:31
    Fingerprint (SHA1):
        FE:FF:11:96:34:98:DA:5B:F2:56:42:A6:0F:FD:3E:3E:D1:B8:7D:F8
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3546: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3547: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154213 (0x1dee43e5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:30 2017
            Not After : Mon May 02 15:43:30 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:3a:a6:00:23:14:fc:bc:aa:68:03:6d:d2:ae:95:52:
                    9a:55:e7:f8:fa:84:3a:f7:44:22:22:d9:43:51:ca:9f:
                    7d:d4:65:3f:fc:8d:60:9a:9f:aa:8b:df:f6:92:cb:11:
                    06:c1:34:3d:a8:b2:57:5e:12:4b:bd:0b:dc:35:3a:f1:
                    7f:c2:ee:66:b3:49:84:55:0d:8c:e8:a0:48:9a:85:33:
                    9a:3e:4a:dd:c7:38:f1:ce:91:84:7a:a3:5a:b6:0c:21:
                    45:94:c5:31:bc:43:13:57:1e:f7:b0:a1:81:3c:dd:4f:
                    88:52:af:18:40:b5:26:de:11:e1:35:75:2a:26:f5:b7:
                    e5:4c:ce:ed:2c:12:e4:0f:0a:f0:c9:31:52:30:e1:00:
                    48:ff:f0:c4:b0:8a:5f:11:ba:8d:87:47:0d:1d:07:34:
                    9c:23:b6:3e:45:fc:d7:19:24:d8:3e:2f:91:58:6f:ce:
                    93:60:75:a6:80:88:4e:42:e1:e2:cc:4c:bc:5c:29:e2:
                    8c:9c:dd:4f:1e:4e:1d:fb:b7:55:7a:53:38:6a:c3:14:
                    61:7c:70:9a:e3:c3:62:d5:d7:47:61:8f:38:3f:bd:89:
                    cf:15:c9:4d:bc:4a:e3:b4:ac:05:1f:d1:c0:ec:cf:95:
                    bb:ad:2b:8c:1a:c0:87:77:8d:e9:5e:ff:43:0a:24:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        95:fb:4a:8d:d6:d7:d6:a7:5c:60:2e:63:35:2a:b6:5c:
        df:5b:89:df:54:01:a3:aa:28:5d:4c:4d:2a:27:4a:0f:
        93:09:e3:7d:d8:1d:5b:c4:3d:1f:c2:00:ae:9b:87:dd:
        c0:77:6f:e0:18:e7:3d:ec:fd:09:58:b1:68:56:17:23:
        6e:dc:47:b1:17:25:10:63:b6:00:54:a3:6d:9d:65:5a:
        f3:03:83:94:d7:59:99:a1:4d:32:16:49:8d:ed:57:4f:
        43:1c:af:4f:31:d6:d4:df:e1:53:d5:94:8d:cc:78:64:
        8f:6c:d8:dc:ec:47:fa:93:06:e7:70:ef:61:72:bf:be:
        24:80:e2:36:64:51:a9:e7:d2:33:a2:60:29:09:f4:0b:
        09:64:75:51:43:81:49:57:16:3f:cf:bb:e7:1a:8a:d5:
        a0:9a:aa:f0:dd:b5:ee:5d:cb:68:98:f1:6b:da:d5:23:
        0a:b4:c5:37:e9:8c:2e:b5:6c:c8:88:19:0a:e4:ec:18:
        cf:1c:5f:ae:43:40:fb:ce:65:31:a2:28:c0:d1:9d:cc:
        9a:ea:41:8c:83:b4:44:66:fb:38:44:1e:cf:df:bf:58:
        70:fe:1d:f5:ee:52:c3:19:05:83:9e:88:13:2e:aa:da:
        46:f2:b7:9d:ca:b4:3d:77:95:92:05:0c:5d:04:ba:e9
    Fingerprint (SHA-256):
        82:BC:1C:B4:E7:1F:14:22:84:50:84:41:48:8F:49:D1:5D:16:93:0A:AA:43:C4:96:BC:11:28:95:E7:79:C7:EF
    Fingerprint (SHA1):
        EF:43:F6:C6:E1:43:3D:66:E1:0F:A8:A0:A7:A0:92:36:5D:05:51:D7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3548: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3549: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154214 (0x1dee43e6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:43:30 2017
            Not After : Mon May 02 15:43:30 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:0f:a6:b0:00:e1:61:9b:7f:bf:d1:0d:23:5c:94:7d:
                    48:0f:7e:95:ce:ab:75:11:03:3d:45:65:05:42:95:b5:
                    61:53:84:4d:c2:c5:41:1f:95:ea:d5:81:84:8f:37:80:
                    01:6c:d4:68:a2:a3:9d:72:05:6d:57:c3:47:2a:21:cc:
                    10:c9:1d:01:1e:a8:ae:2a:4d:bd:2a:b2:86:0c:2c:02:
                    90:6a:b0:af:13:bc:40:31:ad:0b:78:12:78:d8:a9:b0:
                    f1:b4:a3:49:cd:d4:80:8c:04:5c:7b:60:08:c9:c9:0b:
                    1c:4e:1c:7b:52:5a:58:68:68:cf:c2:37:7d:c6:ce:63:
                    4e:14:2c:d2:ed:e3:28:8e:90:b0:31:f1:31:78:e0:a0:
                    24:4f:80:22:9a:bf:24:b0:ad:52:51:15:75:98:7b:5d:
                    a1:ed:07:93:d6:1d:df:b3:77:8e:43:c1:f6:b0:fa:aa:
                    90:14:47:c6:9a:4a:ed:82:a2:3d:1d:36:0f:dc:28:30:
                    ea:9c:83:9b:3f:6d:e4:a6:3b:f9:61:b1:25:6d:f7:b9:
                    2a:d4:f5:fa:92:6c:c3:64:31:40:e5:18:b3:e8:5a:ad:
                    9e:cd:52:0b:fd:67:cb:69:b7:63:54:b0:da:31:cb:c4:
                    97:ed:b3:e0:90:3a:a1:aa:63:a8:09:93:8e:8b:7d:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2e:08:31:c8:49:b5:6f:80:49:ec:f5:ab:cd:e1:45:f7:
        8c:51:68:e5:48:ad:f3:7c:f8:63:78:9a:e1:c9:34:85:
        36:f5:ad:d1:ed:9d:23:e0:c9:fe:e7:aa:1a:3d:fa:74:
        c7:47:6f:15:2b:d1:77:28:17:c0:d9:ad:d7:47:4f:d2:
        6f:e3:2c:40:25:62:1b:03:92:7c:d8:50:2b:78:a8:60:
        f2:32:c2:4d:70:16:a5:0f:04:5a:f2:b8:83:3c:16:48:
        f5:eb:70:62:18:ba:10:6c:f0:36:84:3f:f8:84:00:57:
        71:42:80:80:d8:46:08:c5:af:0b:ad:a2:e2:5a:54:78:
        ae:e9:c7:46:5f:a7:6d:d5:e9:79:0e:bc:6c:e5:66:0f:
        5c:ab:c4:d1:20:b2:1e:36:61:e7:a2:26:4c:79:3a:40:
        6b:d6:ff:04:93:e5:a3:be:ec:a2:63:fe:fa:46:6a:1b:
        13:4e:fe:18:6a:5e:1d:c1:6d:3b:51:52:06:a2:e9:bc:
        6c:26:db:5e:e6:d0:93:6c:1c:76:c6:ea:ce:30:69:a6:
        54:80:73:0e:6a:7a:89:b1:5a:f6:03:98:6e:dd:45:19:
        e6:a0:85:fc:d2:c8:97:c4:d4:f9:34:da:20:3f:d1:45:
        e3:14:83:61:b6:8f:b6:0b:1f:82:cc:5e:20:4d:c1:7a
    Fingerprint (SHA-256):
        3E:8E:62:33:2B:3C:DE:69:CA:F1:C9:AD:17:74:B3:63:59:0C:5B:FA:61:A2:62:A3:CC:D8:B3:AA:16:FB:5B:FD
    Fingerprint (SHA1):
        DC:D5:5D:89:CF:A1:2B:A2:EB:70:A9:BA:8E:32:43:DB:D5:08:C9:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3550: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3551: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3552: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154216 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3553: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3554: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3555: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3556: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154217   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3557: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3558: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3559: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3560: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154218   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3561: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3562: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3563: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3564: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502154219   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3565: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3566: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3567: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3568: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502154220   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3569: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3570: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3571: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154216 (0x1dee43e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:33 2017
            Not After : Mon May 02 15:43:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:50:ec:76:c9:d0:5b:c0:3a:0b:af:d8:93:9e:51:77:
                    ab:b7:c9:d7:6a:4e:80:04:60:d4:46:f4:28:c4:c2:bd:
                    6e:a6:a6:80:b5:f9:b0:2d:20:39:b0:3d:47:aa:b8:4a:
                    be:e2:e6:1a:5c:34:63:db:49:24:d5:cf:5e:22:4c:7c:
                    a4:07:50:38:b5:6c:95:b4:74:ea:f1:fc:53:d3:92:2e:
                    7b:b5:3a:95:48:bd:29:f4:8e:72:01:1f:4e:e3:63:23:
                    f3:45:90:47:01:37:4d:70:e4:5e:44:cf:bb:9b:96:59:
                    1a:99:d7:c9:b7:b0:78:86:44:d0:4a:8b:6e:f5:cb:f3:
                    fa:5b:8c:ea:ab:05:25:8d:69:b2:86:f5:55:2f:d8:6b:
                    64:fc:51:54:3b:6d:af:fb:65:56:cd:d4:1a:f9:ad:59:
                    04:34:d1:17:7a:7d:10:c4:00:b8:bb:99:df:36:73:c3:
                    fe:70:66:fb:a1:62:92:8b:78:7d:22:ff:cd:22:87:fa:
                    00:34:31:dd:b3:3e:a9:73:73:87:e0:d9:6f:b4:82:64:
                    e7:3b:db:5d:dd:6a:58:4e:ca:05:50:61:bd:90:26:fb:
                    eb:0f:49:ed:df:d7:aa:74:92:af:2a:57:29:86:1d:8b:
                    fa:fb:75:e3:be:68:a1:37:99:f5:f7:92:c5:3c:c0:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:30:bd:d1:13:e4:58:7b:6c:8f:27:4c:ef:89:4a:47:
        7c:e8:66:97:14:cc:91:52:fe:63:ca:47:5e:14:0e:44:
        03:09:6b:02:5b:cb:7f:62:8f:9a:17:9e:9a:1a:4a:34:
        8d:78:c7:ea:2b:6c:0e:55:8e:27:04:6a:10:40:df:c8:
        51:3b:7d:b9:cc:6e:73:82:14:42:c2:c3:03:70:fd:4c:
        a2:9d:c3:ba:e3:de:f4:be:07:8d:68:01:f5:c1:a4:fb:
        6b:29:f5:f8:be:07:06:80:ff:22:99:f3:dc:56:2b:73:
        e9:e2:18:e7:5e:4f:d6:1f:f7:09:2e:fd:49:60:23:69:
        05:f3:d0:b8:8e:73:78:7d:b3:ac:13:82:7b:2b:da:00:
        0d:de:97:0c:35:c3:ac:bf:c1:12:8b:4d:de:f6:a8:8c:
        8c:d4:93:d2:40:b7:c9:1f:38:fd:d8:8b:22:79:65:2f:
        6b:ae:5f:4f:17:a1:2b:21:83:d4:bd:94:1d:96:79:30:
        8f:6e:1e:98:b4:96:ef:f7:eb:0a:36:b0:84:cc:8b:ac:
        6d:cd:88:3f:36:65:00:d7:1f:5a:71:1e:c5:59:ec:2c:
        0d:7d:b2:0d:62:73:ab:fd:74:77:5d:a3:a1:06:ff:5c:
        b8:cc:af:27:bc:aa:f6:b1:68:12:81:2a:02:31:6b:ef
    Fingerprint (SHA-256):
        43:F6:B7:5E:12:4E:E0:44:A0:31:6B:B6:14:C9:4E:F7:D1:03:2B:BC:B0:34:57:58:71:B5:6C:43:7E:B8:95:CD
    Fingerprint (SHA1):
        82:CD:9C:A4:27:43:80:52:CA:5F:8D:DF:52:DB:2C:DA:50:46:54:8A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3572: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3573: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154217 (0x1dee43e9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:33 2017
            Not After : Mon May 02 15:43:33 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:26:4a:e4:61:83:f2:7f:b8:51:e0:70:1d:fc:8a:f4:
                    16:80:79:af:d1:d4:b8:12:87:84:5c:16:e5:3a:20:3a:
                    30:d1:69:95:d2:3e:dc:1b:e1:a7:52:95:2c:84:52:37:
                    ae:ac:91:12:f9:73:c6:5d:d3:e8:a2:49:2a:6f:ae:58:
                    1a:e2:88:ca:47:e0:c3:34:8d:e4:4c:78:fc:3c:ab:f9:
                    0f:92:eb:cf:87:48:32:6e:13:03:aa:76:39:28:8b:b6:
                    b8:18:a2:9f:b1:2c:8c:63:dd:34:38:a8:eb:0d:2d:2d:
                    a0:42:6a:35:0c:9b:4d:9f:c3:8b:3c:59:54:9c:be:1f:
                    4b:b6:2c:26:04:1b:4a:ce:06:ec:7e:e3:a7:44:55:bb:
                    b8:73:bc:29:f5:cd:a4:41:36:a2:a9:71:9d:49:40:6d:
                    f5:c4:58:3c:85:5e:f0:fc:b2:f0:86:4a:2e:a6:23:24:
                    c9:f7:dc:85:52:4d:00:a6:0a:b7:05:1c:b2:b8:d0:16:
                    6a:4e:1d:d1:25:ea:23:e9:e5:89:e9:35:06:18:0e:08:
                    cc:a6:a9:39:a9:b1:0b:cb:bc:24:5d:10:b3:3c:36:6d:
                    f7:80:25:a6:bd:91:b0:9c:32:f9:a3:8d:54:6e:b2:60:
                    05:93:dd:00:bc:9a:b8:2f:c6:21:bd:06:19:36:2c:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        df:0a:21:13:71:e5:c0:f2:94:c1:dc:8f:d8:d8:e4:db:
        19:5a:61:b4:66:d3:50:ae:a2:bc:e4:0a:4b:d9:86:19:
        40:9c:90:a6:00:b9:f4:40:39:c7:c2:e6:b3:12:42:19:
        31:4b:87:4f:0e:77:4d:29:c5:63:e8:f8:5c:98:3a:3b:
        fc:13:53:f0:b6:e5:42:02:65:14:03:3c:59:81:16:0b:
        8e:f4:06:7f:82:e9:e9:ff:9b:fe:74:60:f7:bb:dc:2e:
        df:4d:94:92:6e:36:5c:9d:10:2b:52:f7:c6:96:1c:a6:
        ff:df:de:d4:54:ff:5b:53:74:f9:1d:e2:e7:70:a2:07:
        a3:f0:75:eb:31:81:c4:89:df:7e:0a:fe:e5:5b:3c:20:
        bc:9c:67:66:eb:13:a5:35:06:e1:66:71:b0:59:40:c4:
        0e:35:71:09:3b:61:b8:79:b0:f1:7b:26:68:88:12:5c:
        9f:b7:18:00:7e:7a:f0:85:fd:37:e7:91:db:c7:1a:ec:
        5d:a5:0c:0b:34:d9:42:12:0f:79:51:17:14:0d:08:05:
        29:f3:8c:98:bd:0d:a0:8a:5e:ba:5e:91:15:16:d7:ac:
        2c:55:81:e2:f5:40:84:ea:b5:d8:cf:67:93:a5:d3:4e:
        1d:1e:f5:41:c4:ad:0e:30:ed:6e:c7:09:38:6b:d2:2f
    Fingerprint (SHA-256):
        45:68:E2:53:F0:61:7D:7C:37:7C:AE:AC:71:80:01:31:98:AC:98:DC:55:09:07:CF:09:2E:C3:67:75:FB:B3:AF
    Fingerprint (SHA1):
        29:D2:3B:A5:2E:AB:0C:60:91:07:79:B3:89:11:86:B7:2B:B0:5B:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3574: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3575: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154218 (0x1dee43ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:43:34 2017
            Not After : Mon May 02 15:43:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:56:22:e7:37:25:58:1c:89:04:a5:7b:7d:e1:50:2c:
                    0d:56:bf:56:16:7d:ac:ef:75:cf:6c:15:ff:be:25:3a:
                    2f:7a:77:fd:0a:f2:ed:8a:90:f5:25:59:d7:44:53:d7:
                    b7:3d:a8:4e:b6:3a:57:1e:01:72:83:97:a4:48:7c:f4:
                    98:0b:04:2e:5b:f3:64:c9:12:df:3d:7b:34:a3:9c:dd:
                    23:de:dd:0e:19:27:b6:ad:da:d5:c8:cc:a2:41:3a:47:
                    57:96:2b:4e:f5:8b:5d:9b:f1:c7:a2:c4:06:2d:c5:c6:
                    ec:fb:a0:6c:14:5d:52:36:ce:fd:1b:18:f7:f8:e0:8c:
                    3e:e5:31:a7:e4:9d:7f:83:5c:2c:95:61:f1:ae:f8:45:
                    b1:de:c8:0f:27:11:55:66:32:2c:c0:64:92:b7:94:09:
                    ee:98:fb:1b:66:88:e6:52:0c:12:c5:b8:5b:4a:65:bf:
                    0f:e1:7e:f5:05:f8:09:98:ec:10:b0:79:d4:0e:4e:e0:
                    c5:fc:bb:82:8d:f2:03:da:f1:06:72:c5:de:7d:78:b3:
                    42:ef:b7:dd:f5:1c:61:ad:85:5d:b1:5d:b3:f5:55:6f:
                    7b:dd:ca:4f:ea:23:94:7f:94:bc:d9:4f:25:5c:63:74:
                    96:96:f8:97:f2:a6:bb:c7:ff:81:e8:68:b8:8f:7e:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:64:26:18:9a:0b:98:be:87:2c:0b:55:91:8f:21:d6:
        7d:bd:a1:70:4a:32:85:52:f7:a3:1b:e5:93:69:67:ce:
        d3:7c:65:0a:95:0d:bb:a6:e1:d1:7c:1e:78:29:60:8d:
        78:a6:75:62:58:a4:5c:cc:f9:f3:5c:8d:50:e4:b4:c8:
        d4:c1:e4:64:66:9e:cc:19:a6:f0:72:3e:12:bb:a7:91:
        67:47:4f:ce:f1:12:36:c0:dd:8c:2c:2e:6e:19:f5:25:
        1d:3d:db:13:96:1f:4a:39:04:b2:a9:e6:6f:0c:1a:f8:
        22:5b:75:c4:dc:47:90:b7:7c:d9:34:17:00:c2:55:8e:
        16:9a:71:84:0a:d5:c2:d1:e8:37:b0:3e:df:d3:29:47:
        96:c1:64:2f:f3:9c:bf:4a:72:98:12:f3:04:ac:ad:6f:
        9f:55:5f:0b:fb:b2:34:ec:4c:ea:d2:3e:5a:6a:46:72:
        2f:77:82:96:76:0c:08:8e:92:72:fd:58:5f:6f:49:10:
        98:a8:51:7b:78:e4:e5:fb:d1:71:49:5b:83:e4:b3:e9:
        48:7a:fc:aa:e8:cd:b2:38:9e:76:30:fb:b8:af:b1:0a:
        6b:4b:47:83:90:16:3c:4f:ac:3b:96:72:0c:1f:ac:f7:
        23:39:b9:36:c1:21:01:5f:56:c5:ef:1a:bc:2e:d3:b9
    Fingerprint (SHA-256):
        B5:58:E2:9F:D8:81:15:B8:90:B1:8C:71:C8:F9:54:7C:EF:55:19:C9:4A:11:C9:EA:9F:60:74:49:51:44:5C:65
    Fingerprint (SHA1):
        C6:2A:67:C7:A7:83:00:5D:21:0E:D4:0A:37:9C:6B:F9:6F:8F:8E:8D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3576: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3577: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3578: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3579: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3580: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154216 (0x1dee43e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:33 2017
            Not After : Mon May 02 15:43:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:50:ec:76:c9:d0:5b:c0:3a:0b:af:d8:93:9e:51:77:
                    ab:b7:c9:d7:6a:4e:80:04:60:d4:46:f4:28:c4:c2:bd:
                    6e:a6:a6:80:b5:f9:b0:2d:20:39:b0:3d:47:aa:b8:4a:
                    be:e2:e6:1a:5c:34:63:db:49:24:d5:cf:5e:22:4c:7c:
                    a4:07:50:38:b5:6c:95:b4:74:ea:f1:fc:53:d3:92:2e:
                    7b:b5:3a:95:48:bd:29:f4:8e:72:01:1f:4e:e3:63:23:
                    f3:45:90:47:01:37:4d:70:e4:5e:44:cf:bb:9b:96:59:
                    1a:99:d7:c9:b7:b0:78:86:44:d0:4a:8b:6e:f5:cb:f3:
                    fa:5b:8c:ea:ab:05:25:8d:69:b2:86:f5:55:2f:d8:6b:
                    64:fc:51:54:3b:6d:af:fb:65:56:cd:d4:1a:f9:ad:59:
                    04:34:d1:17:7a:7d:10:c4:00:b8:bb:99:df:36:73:c3:
                    fe:70:66:fb:a1:62:92:8b:78:7d:22:ff:cd:22:87:fa:
                    00:34:31:dd:b3:3e:a9:73:73:87:e0:d9:6f:b4:82:64:
                    e7:3b:db:5d:dd:6a:58:4e:ca:05:50:61:bd:90:26:fb:
                    eb:0f:49:ed:df:d7:aa:74:92:af:2a:57:29:86:1d:8b:
                    fa:fb:75:e3:be:68:a1:37:99:f5:f7:92:c5:3c:c0:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:30:bd:d1:13:e4:58:7b:6c:8f:27:4c:ef:89:4a:47:
        7c:e8:66:97:14:cc:91:52:fe:63:ca:47:5e:14:0e:44:
        03:09:6b:02:5b:cb:7f:62:8f:9a:17:9e:9a:1a:4a:34:
        8d:78:c7:ea:2b:6c:0e:55:8e:27:04:6a:10:40:df:c8:
        51:3b:7d:b9:cc:6e:73:82:14:42:c2:c3:03:70:fd:4c:
        a2:9d:c3:ba:e3:de:f4:be:07:8d:68:01:f5:c1:a4:fb:
        6b:29:f5:f8:be:07:06:80:ff:22:99:f3:dc:56:2b:73:
        e9:e2:18:e7:5e:4f:d6:1f:f7:09:2e:fd:49:60:23:69:
        05:f3:d0:b8:8e:73:78:7d:b3:ac:13:82:7b:2b:da:00:
        0d:de:97:0c:35:c3:ac:bf:c1:12:8b:4d:de:f6:a8:8c:
        8c:d4:93:d2:40:b7:c9:1f:38:fd:d8:8b:22:79:65:2f:
        6b:ae:5f:4f:17:a1:2b:21:83:d4:bd:94:1d:96:79:30:
        8f:6e:1e:98:b4:96:ef:f7:eb:0a:36:b0:84:cc:8b:ac:
        6d:cd:88:3f:36:65:00:d7:1f:5a:71:1e:c5:59:ec:2c:
        0d:7d:b2:0d:62:73:ab:fd:74:77:5d:a3:a1:06:ff:5c:
        b8:cc:af:27:bc:aa:f6:b1:68:12:81:2a:02:31:6b:ef
    Fingerprint (SHA-256):
        43:F6:B7:5E:12:4E:E0:44:A0:31:6B:B6:14:C9:4E:F7:D1:03:2B:BC:B0:34:57:58:71:B5:6C:43:7E:B8:95:CD
    Fingerprint (SHA1):
        82:CD:9C:A4:27:43:80:52:CA:5F:8D:DF:52:DB:2C:DA:50:46:54:8A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3581: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3582: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154217 (0x1dee43e9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:33 2017
            Not After : Mon May 02 15:43:33 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:26:4a:e4:61:83:f2:7f:b8:51:e0:70:1d:fc:8a:f4:
                    16:80:79:af:d1:d4:b8:12:87:84:5c:16:e5:3a:20:3a:
                    30:d1:69:95:d2:3e:dc:1b:e1:a7:52:95:2c:84:52:37:
                    ae:ac:91:12:f9:73:c6:5d:d3:e8:a2:49:2a:6f:ae:58:
                    1a:e2:88:ca:47:e0:c3:34:8d:e4:4c:78:fc:3c:ab:f9:
                    0f:92:eb:cf:87:48:32:6e:13:03:aa:76:39:28:8b:b6:
                    b8:18:a2:9f:b1:2c:8c:63:dd:34:38:a8:eb:0d:2d:2d:
                    a0:42:6a:35:0c:9b:4d:9f:c3:8b:3c:59:54:9c:be:1f:
                    4b:b6:2c:26:04:1b:4a:ce:06:ec:7e:e3:a7:44:55:bb:
                    b8:73:bc:29:f5:cd:a4:41:36:a2:a9:71:9d:49:40:6d:
                    f5:c4:58:3c:85:5e:f0:fc:b2:f0:86:4a:2e:a6:23:24:
                    c9:f7:dc:85:52:4d:00:a6:0a:b7:05:1c:b2:b8:d0:16:
                    6a:4e:1d:d1:25:ea:23:e9:e5:89:e9:35:06:18:0e:08:
                    cc:a6:a9:39:a9:b1:0b:cb:bc:24:5d:10:b3:3c:36:6d:
                    f7:80:25:a6:bd:91:b0:9c:32:f9:a3:8d:54:6e:b2:60:
                    05:93:dd:00:bc:9a:b8:2f:c6:21:bd:06:19:36:2c:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        df:0a:21:13:71:e5:c0:f2:94:c1:dc:8f:d8:d8:e4:db:
        19:5a:61:b4:66:d3:50:ae:a2:bc:e4:0a:4b:d9:86:19:
        40:9c:90:a6:00:b9:f4:40:39:c7:c2:e6:b3:12:42:19:
        31:4b:87:4f:0e:77:4d:29:c5:63:e8:f8:5c:98:3a:3b:
        fc:13:53:f0:b6:e5:42:02:65:14:03:3c:59:81:16:0b:
        8e:f4:06:7f:82:e9:e9:ff:9b:fe:74:60:f7:bb:dc:2e:
        df:4d:94:92:6e:36:5c:9d:10:2b:52:f7:c6:96:1c:a6:
        ff:df:de:d4:54:ff:5b:53:74:f9:1d:e2:e7:70:a2:07:
        a3:f0:75:eb:31:81:c4:89:df:7e:0a:fe:e5:5b:3c:20:
        bc:9c:67:66:eb:13:a5:35:06:e1:66:71:b0:59:40:c4:
        0e:35:71:09:3b:61:b8:79:b0:f1:7b:26:68:88:12:5c:
        9f:b7:18:00:7e:7a:f0:85:fd:37:e7:91:db:c7:1a:ec:
        5d:a5:0c:0b:34:d9:42:12:0f:79:51:17:14:0d:08:05:
        29:f3:8c:98:bd:0d:a0:8a:5e:ba:5e:91:15:16:d7:ac:
        2c:55:81:e2:f5:40:84:ea:b5:d8:cf:67:93:a5:d3:4e:
        1d:1e:f5:41:c4:ad:0e:30:ed:6e:c7:09:38:6b:d2:2f
    Fingerprint (SHA-256):
        45:68:E2:53:F0:61:7D:7C:37:7C:AE:AC:71:80:01:31:98:AC:98:DC:55:09:07:CF:09:2E:C3:67:75:FB:B3:AF
    Fingerprint (SHA1):
        29:D2:3B:A5:2E:AB:0C:60:91:07:79:B3:89:11:86:B7:2B:B0:5B:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3583: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3584: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154218 (0x1dee43ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:43:34 2017
            Not After : Mon May 02 15:43:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:56:22:e7:37:25:58:1c:89:04:a5:7b:7d:e1:50:2c:
                    0d:56:bf:56:16:7d:ac:ef:75:cf:6c:15:ff:be:25:3a:
                    2f:7a:77:fd:0a:f2:ed:8a:90:f5:25:59:d7:44:53:d7:
                    b7:3d:a8:4e:b6:3a:57:1e:01:72:83:97:a4:48:7c:f4:
                    98:0b:04:2e:5b:f3:64:c9:12:df:3d:7b:34:a3:9c:dd:
                    23:de:dd:0e:19:27:b6:ad:da:d5:c8:cc:a2:41:3a:47:
                    57:96:2b:4e:f5:8b:5d:9b:f1:c7:a2:c4:06:2d:c5:c6:
                    ec:fb:a0:6c:14:5d:52:36:ce:fd:1b:18:f7:f8:e0:8c:
                    3e:e5:31:a7:e4:9d:7f:83:5c:2c:95:61:f1:ae:f8:45:
                    b1:de:c8:0f:27:11:55:66:32:2c:c0:64:92:b7:94:09:
                    ee:98:fb:1b:66:88:e6:52:0c:12:c5:b8:5b:4a:65:bf:
                    0f:e1:7e:f5:05:f8:09:98:ec:10:b0:79:d4:0e:4e:e0:
                    c5:fc:bb:82:8d:f2:03:da:f1:06:72:c5:de:7d:78:b3:
                    42:ef:b7:dd:f5:1c:61:ad:85:5d:b1:5d:b3:f5:55:6f:
                    7b:dd:ca:4f:ea:23:94:7f:94:bc:d9:4f:25:5c:63:74:
                    96:96:f8:97:f2:a6:bb:c7:ff:81:e8:68:b8:8f:7e:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:64:26:18:9a:0b:98:be:87:2c:0b:55:91:8f:21:d6:
        7d:bd:a1:70:4a:32:85:52:f7:a3:1b:e5:93:69:67:ce:
        d3:7c:65:0a:95:0d:bb:a6:e1:d1:7c:1e:78:29:60:8d:
        78:a6:75:62:58:a4:5c:cc:f9:f3:5c:8d:50:e4:b4:c8:
        d4:c1:e4:64:66:9e:cc:19:a6:f0:72:3e:12:bb:a7:91:
        67:47:4f:ce:f1:12:36:c0:dd:8c:2c:2e:6e:19:f5:25:
        1d:3d:db:13:96:1f:4a:39:04:b2:a9:e6:6f:0c:1a:f8:
        22:5b:75:c4:dc:47:90:b7:7c:d9:34:17:00:c2:55:8e:
        16:9a:71:84:0a:d5:c2:d1:e8:37:b0:3e:df:d3:29:47:
        96:c1:64:2f:f3:9c:bf:4a:72:98:12:f3:04:ac:ad:6f:
        9f:55:5f:0b:fb:b2:34:ec:4c:ea:d2:3e:5a:6a:46:72:
        2f:77:82:96:76:0c:08:8e:92:72:fd:58:5f:6f:49:10:
        98:a8:51:7b:78:e4:e5:fb:d1:71:49:5b:83:e4:b3:e9:
        48:7a:fc:aa:e8:cd:b2:38:9e:76:30:fb:b8:af:b1:0a:
        6b:4b:47:83:90:16:3c:4f:ac:3b:96:72:0c:1f:ac:f7:
        23:39:b9:36:c1:21:01:5f:56:c5:ef:1a:bc:2e:d3:b9
    Fingerprint (SHA-256):
        B5:58:E2:9F:D8:81:15:B8:90:B1:8C:71:C8:F9:54:7C:EF:55:19:C9:4A:11:C9:EA:9F:60:74:49:51:44:5C:65
    Fingerprint (SHA1):
        C6:2A:67:C7:A7:83:00:5D:21:0E:D4:0A:37:9C:6B:F9:6F:8F:8E:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3585: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3586: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154216 (0x1dee43e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:33 2017
            Not After : Mon May 02 15:43:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:50:ec:76:c9:d0:5b:c0:3a:0b:af:d8:93:9e:51:77:
                    ab:b7:c9:d7:6a:4e:80:04:60:d4:46:f4:28:c4:c2:bd:
                    6e:a6:a6:80:b5:f9:b0:2d:20:39:b0:3d:47:aa:b8:4a:
                    be:e2:e6:1a:5c:34:63:db:49:24:d5:cf:5e:22:4c:7c:
                    a4:07:50:38:b5:6c:95:b4:74:ea:f1:fc:53:d3:92:2e:
                    7b:b5:3a:95:48:bd:29:f4:8e:72:01:1f:4e:e3:63:23:
                    f3:45:90:47:01:37:4d:70:e4:5e:44:cf:bb:9b:96:59:
                    1a:99:d7:c9:b7:b0:78:86:44:d0:4a:8b:6e:f5:cb:f3:
                    fa:5b:8c:ea:ab:05:25:8d:69:b2:86:f5:55:2f:d8:6b:
                    64:fc:51:54:3b:6d:af:fb:65:56:cd:d4:1a:f9:ad:59:
                    04:34:d1:17:7a:7d:10:c4:00:b8:bb:99:df:36:73:c3:
                    fe:70:66:fb:a1:62:92:8b:78:7d:22:ff:cd:22:87:fa:
                    00:34:31:dd:b3:3e:a9:73:73:87:e0:d9:6f:b4:82:64:
                    e7:3b:db:5d:dd:6a:58:4e:ca:05:50:61:bd:90:26:fb:
                    eb:0f:49:ed:df:d7:aa:74:92:af:2a:57:29:86:1d:8b:
                    fa:fb:75:e3:be:68:a1:37:99:f5:f7:92:c5:3c:c0:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:30:bd:d1:13:e4:58:7b:6c:8f:27:4c:ef:89:4a:47:
        7c:e8:66:97:14:cc:91:52:fe:63:ca:47:5e:14:0e:44:
        03:09:6b:02:5b:cb:7f:62:8f:9a:17:9e:9a:1a:4a:34:
        8d:78:c7:ea:2b:6c:0e:55:8e:27:04:6a:10:40:df:c8:
        51:3b:7d:b9:cc:6e:73:82:14:42:c2:c3:03:70:fd:4c:
        a2:9d:c3:ba:e3:de:f4:be:07:8d:68:01:f5:c1:a4:fb:
        6b:29:f5:f8:be:07:06:80:ff:22:99:f3:dc:56:2b:73:
        e9:e2:18:e7:5e:4f:d6:1f:f7:09:2e:fd:49:60:23:69:
        05:f3:d0:b8:8e:73:78:7d:b3:ac:13:82:7b:2b:da:00:
        0d:de:97:0c:35:c3:ac:bf:c1:12:8b:4d:de:f6:a8:8c:
        8c:d4:93:d2:40:b7:c9:1f:38:fd:d8:8b:22:79:65:2f:
        6b:ae:5f:4f:17:a1:2b:21:83:d4:bd:94:1d:96:79:30:
        8f:6e:1e:98:b4:96:ef:f7:eb:0a:36:b0:84:cc:8b:ac:
        6d:cd:88:3f:36:65:00:d7:1f:5a:71:1e:c5:59:ec:2c:
        0d:7d:b2:0d:62:73:ab:fd:74:77:5d:a3:a1:06:ff:5c:
        b8:cc:af:27:bc:aa:f6:b1:68:12:81:2a:02:31:6b:ef
    Fingerprint (SHA-256):
        43:F6:B7:5E:12:4E:E0:44:A0:31:6B:B6:14:C9:4E:F7:D1:03:2B:BC:B0:34:57:58:71:B5:6C:43:7E:B8:95:CD
    Fingerprint (SHA1):
        82:CD:9C:A4:27:43:80:52:CA:5F:8D:DF:52:DB:2C:DA:50:46:54:8A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3587: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154216 (0x1dee43e8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:33 2017
            Not After : Mon May 02 15:43:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e7:50:ec:76:c9:d0:5b:c0:3a:0b:af:d8:93:9e:51:77:
                    ab:b7:c9:d7:6a:4e:80:04:60:d4:46:f4:28:c4:c2:bd:
                    6e:a6:a6:80:b5:f9:b0:2d:20:39:b0:3d:47:aa:b8:4a:
                    be:e2:e6:1a:5c:34:63:db:49:24:d5:cf:5e:22:4c:7c:
                    a4:07:50:38:b5:6c:95:b4:74:ea:f1:fc:53:d3:92:2e:
                    7b:b5:3a:95:48:bd:29:f4:8e:72:01:1f:4e:e3:63:23:
                    f3:45:90:47:01:37:4d:70:e4:5e:44:cf:bb:9b:96:59:
                    1a:99:d7:c9:b7:b0:78:86:44:d0:4a:8b:6e:f5:cb:f3:
                    fa:5b:8c:ea:ab:05:25:8d:69:b2:86:f5:55:2f:d8:6b:
                    64:fc:51:54:3b:6d:af:fb:65:56:cd:d4:1a:f9:ad:59:
                    04:34:d1:17:7a:7d:10:c4:00:b8:bb:99:df:36:73:c3:
                    fe:70:66:fb:a1:62:92:8b:78:7d:22:ff:cd:22:87:fa:
                    00:34:31:dd:b3:3e:a9:73:73:87:e0:d9:6f:b4:82:64:
                    e7:3b:db:5d:dd:6a:58:4e:ca:05:50:61:bd:90:26:fb:
                    eb:0f:49:ed:df:d7:aa:74:92:af:2a:57:29:86:1d:8b:
                    fa:fb:75:e3:be:68:a1:37:99:f5:f7:92:c5:3c:c0:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:30:bd:d1:13:e4:58:7b:6c:8f:27:4c:ef:89:4a:47:
        7c:e8:66:97:14:cc:91:52:fe:63:ca:47:5e:14:0e:44:
        03:09:6b:02:5b:cb:7f:62:8f:9a:17:9e:9a:1a:4a:34:
        8d:78:c7:ea:2b:6c:0e:55:8e:27:04:6a:10:40:df:c8:
        51:3b:7d:b9:cc:6e:73:82:14:42:c2:c3:03:70:fd:4c:
        a2:9d:c3:ba:e3:de:f4:be:07:8d:68:01:f5:c1:a4:fb:
        6b:29:f5:f8:be:07:06:80:ff:22:99:f3:dc:56:2b:73:
        e9:e2:18:e7:5e:4f:d6:1f:f7:09:2e:fd:49:60:23:69:
        05:f3:d0:b8:8e:73:78:7d:b3:ac:13:82:7b:2b:da:00:
        0d:de:97:0c:35:c3:ac:bf:c1:12:8b:4d:de:f6:a8:8c:
        8c:d4:93:d2:40:b7:c9:1f:38:fd:d8:8b:22:79:65:2f:
        6b:ae:5f:4f:17:a1:2b:21:83:d4:bd:94:1d:96:79:30:
        8f:6e:1e:98:b4:96:ef:f7:eb:0a:36:b0:84:cc:8b:ac:
        6d:cd:88:3f:36:65:00:d7:1f:5a:71:1e:c5:59:ec:2c:
        0d:7d:b2:0d:62:73:ab:fd:74:77:5d:a3:a1:06:ff:5c:
        b8:cc:af:27:bc:aa:f6:b1:68:12:81:2a:02:31:6b:ef
    Fingerprint (SHA-256):
        43:F6:B7:5E:12:4E:E0:44:A0:31:6B:B6:14:C9:4E:F7:D1:03:2B:BC:B0:34:57:58:71:B5:6C:43:7E:B8:95:CD
    Fingerprint (SHA1):
        82:CD:9C:A4:27:43:80:52:CA:5F:8D:DF:52:DB:2C:DA:50:46:54:8A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3588: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154217 (0x1dee43e9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:33 2017
            Not After : Mon May 02 15:43:33 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:26:4a:e4:61:83:f2:7f:b8:51:e0:70:1d:fc:8a:f4:
                    16:80:79:af:d1:d4:b8:12:87:84:5c:16:e5:3a:20:3a:
                    30:d1:69:95:d2:3e:dc:1b:e1:a7:52:95:2c:84:52:37:
                    ae:ac:91:12:f9:73:c6:5d:d3:e8:a2:49:2a:6f:ae:58:
                    1a:e2:88:ca:47:e0:c3:34:8d:e4:4c:78:fc:3c:ab:f9:
                    0f:92:eb:cf:87:48:32:6e:13:03:aa:76:39:28:8b:b6:
                    b8:18:a2:9f:b1:2c:8c:63:dd:34:38:a8:eb:0d:2d:2d:
                    a0:42:6a:35:0c:9b:4d:9f:c3:8b:3c:59:54:9c:be:1f:
                    4b:b6:2c:26:04:1b:4a:ce:06:ec:7e:e3:a7:44:55:bb:
                    b8:73:bc:29:f5:cd:a4:41:36:a2:a9:71:9d:49:40:6d:
                    f5:c4:58:3c:85:5e:f0:fc:b2:f0:86:4a:2e:a6:23:24:
                    c9:f7:dc:85:52:4d:00:a6:0a:b7:05:1c:b2:b8:d0:16:
                    6a:4e:1d:d1:25:ea:23:e9:e5:89:e9:35:06:18:0e:08:
                    cc:a6:a9:39:a9:b1:0b:cb:bc:24:5d:10:b3:3c:36:6d:
                    f7:80:25:a6:bd:91:b0:9c:32:f9:a3:8d:54:6e:b2:60:
                    05:93:dd:00:bc:9a:b8:2f:c6:21:bd:06:19:36:2c:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        df:0a:21:13:71:e5:c0:f2:94:c1:dc:8f:d8:d8:e4:db:
        19:5a:61:b4:66:d3:50:ae:a2:bc:e4:0a:4b:d9:86:19:
        40:9c:90:a6:00:b9:f4:40:39:c7:c2:e6:b3:12:42:19:
        31:4b:87:4f:0e:77:4d:29:c5:63:e8:f8:5c:98:3a:3b:
        fc:13:53:f0:b6:e5:42:02:65:14:03:3c:59:81:16:0b:
        8e:f4:06:7f:82:e9:e9:ff:9b:fe:74:60:f7:bb:dc:2e:
        df:4d:94:92:6e:36:5c:9d:10:2b:52:f7:c6:96:1c:a6:
        ff:df:de:d4:54:ff:5b:53:74:f9:1d:e2:e7:70:a2:07:
        a3:f0:75:eb:31:81:c4:89:df:7e:0a:fe:e5:5b:3c:20:
        bc:9c:67:66:eb:13:a5:35:06:e1:66:71:b0:59:40:c4:
        0e:35:71:09:3b:61:b8:79:b0:f1:7b:26:68:88:12:5c:
        9f:b7:18:00:7e:7a:f0:85:fd:37:e7:91:db:c7:1a:ec:
        5d:a5:0c:0b:34:d9:42:12:0f:79:51:17:14:0d:08:05:
        29:f3:8c:98:bd:0d:a0:8a:5e:ba:5e:91:15:16:d7:ac:
        2c:55:81:e2:f5:40:84:ea:b5:d8:cf:67:93:a5:d3:4e:
        1d:1e:f5:41:c4:ad:0e:30:ed:6e:c7:09:38:6b:d2:2f
    Fingerprint (SHA-256):
        45:68:E2:53:F0:61:7D:7C:37:7C:AE:AC:71:80:01:31:98:AC:98:DC:55:09:07:CF:09:2E:C3:67:75:FB:B3:AF
    Fingerprint (SHA1):
        29:D2:3B:A5:2E:AB:0C:60:91:07:79:B3:89:11:86:B7:2B:B0:5B:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3589: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154217 (0x1dee43e9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:43:33 2017
            Not After : Mon May 02 15:43:33 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:26:4a:e4:61:83:f2:7f:b8:51:e0:70:1d:fc:8a:f4:
                    16:80:79:af:d1:d4:b8:12:87:84:5c:16:e5:3a:20:3a:
                    30:d1:69:95:d2:3e:dc:1b:e1:a7:52:95:2c:84:52:37:
                    ae:ac:91:12:f9:73:c6:5d:d3:e8:a2:49:2a:6f:ae:58:
                    1a:e2:88:ca:47:e0:c3:34:8d:e4:4c:78:fc:3c:ab:f9:
                    0f:92:eb:cf:87:48:32:6e:13:03:aa:76:39:28:8b:b6:
                    b8:18:a2:9f:b1:2c:8c:63:dd:34:38:a8:eb:0d:2d:2d:
                    a0:42:6a:35:0c:9b:4d:9f:c3:8b:3c:59:54:9c:be:1f:
                    4b:b6:2c:26:04:1b:4a:ce:06:ec:7e:e3:a7:44:55:bb:
                    b8:73:bc:29:f5:cd:a4:41:36:a2:a9:71:9d:49:40:6d:
                    f5:c4:58:3c:85:5e:f0:fc:b2:f0:86:4a:2e:a6:23:24:
                    c9:f7:dc:85:52:4d:00:a6:0a:b7:05:1c:b2:b8:d0:16:
                    6a:4e:1d:d1:25:ea:23:e9:e5:89:e9:35:06:18:0e:08:
                    cc:a6:a9:39:a9:b1:0b:cb:bc:24:5d:10:b3:3c:36:6d:
                    f7:80:25:a6:bd:91:b0:9c:32:f9:a3:8d:54:6e:b2:60:
                    05:93:dd:00:bc:9a:b8:2f:c6:21:bd:06:19:36:2c:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        df:0a:21:13:71:e5:c0:f2:94:c1:dc:8f:d8:d8:e4:db:
        19:5a:61:b4:66:d3:50:ae:a2:bc:e4:0a:4b:d9:86:19:
        40:9c:90:a6:00:b9:f4:40:39:c7:c2:e6:b3:12:42:19:
        31:4b:87:4f:0e:77:4d:29:c5:63:e8:f8:5c:98:3a:3b:
        fc:13:53:f0:b6:e5:42:02:65:14:03:3c:59:81:16:0b:
        8e:f4:06:7f:82:e9:e9:ff:9b:fe:74:60:f7:bb:dc:2e:
        df:4d:94:92:6e:36:5c:9d:10:2b:52:f7:c6:96:1c:a6:
        ff:df:de:d4:54:ff:5b:53:74:f9:1d:e2:e7:70:a2:07:
        a3:f0:75:eb:31:81:c4:89:df:7e:0a:fe:e5:5b:3c:20:
        bc:9c:67:66:eb:13:a5:35:06:e1:66:71:b0:59:40:c4:
        0e:35:71:09:3b:61:b8:79:b0:f1:7b:26:68:88:12:5c:
        9f:b7:18:00:7e:7a:f0:85:fd:37:e7:91:db:c7:1a:ec:
        5d:a5:0c:0b:34:d9:42:12:0f:79:51:17:14:0d:08:05:
        29:f3:8c:98:bd:0d:a0:8a:5e:ba:5e:91:15:16:d7:ac:
        2c:55:81:e2:f5:40:84:ea:b5:d8:cf:67:93:a5:d3:4e:
        1d:1e:f5:41:c4:ad:0e:30:ed:6e:c7:09:38:6b:d2:2f
    Fingerprint (SHA-256):
        45:68:E2:53:F0:61:7D:7C:37:7C:AE:AC:71:80:01:31:98:AC:98:DC:55:09:07:CF:09:2E:C3:67:75:FB:B3:AF
    Fingerprint (SHA1):
        29:D2:3B:A5:2E:AB:0C:60:91:07:79:B3:89:11:86:B7:2B:B0:5B:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3590: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154218 (0x1dee43ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:43:34 2017
            Not After : Mon May 02 15:43:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:56:22:e7:37:25:58:1c:89:04:a5:7b:7d:e1:50:2c:
                    0d:56:bf:56:16:7d:ac:ef:75:cf:6c:15:ff:be:25:3a:
                    2f:7a:77:fd:0a:f2:ed:8a:90:f5:25:59:d7:44:53:d7:
                    b7:3d:a8:4e:b6:3a:57:1e:01:72:83:97:a4:48:7c:f4:
                    98:0b:04:2e:5b:f3:64:c9:12:df:3d:7b:34:a3:9c:dd:
                    23:de:dd:0e:19:27:b6:ad:da:d5:c8:cc:a2:41:3a:47:
                    57:96:2b:4e:f5:8b:5d:9b:f1:c7:a2:c4:06:2d:c5:c6:
                    ec:fb:a0:6c:14:5d:52:36:ce:fd:1b:18:f7:f8:e0:8c:
                    3e:e5:31:a7:e4:9d:7f:83:5c:2c:95:61:f1:ae:f8:45:
                    b1:de:c8:0f:27:11:55:66:32:2c:c0:64:92:b7:94:09:
                    ee:98:fb:1b:66:88:e6:52:0c:12:c5:b8:5b:4a:65:bf:
                    0f:e1:7e:f5:05:f8:09:98:ec:10:b0:79:d4:0e:4e:e0:
                    c5:fc:bb:82:8d:f2:03:da:f1:06:72:c5:de:7d:78:b3:
                    42:ef:b7:dd:f5:1c:61:ad:85:5d:b1:5d:b3:f5:55:6f:
                    7b:dd:ca:4f:ea:23:94:7f:94:bc:d9:4f:25:5c:63:74:
                    96:96:f8:97:f2:a6:bb:c7:ff:81:e8:68:b8:8f:7e:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:64:26:18:9a:0b:98:be:87:2c:0b:55:91:8f:21:d6:
        7d:bd:a1:70:4a:32:85:52:f7:a3:1b:e5:93:69:67:ce:
        d3:7c:65:0a:95:0d:bb:a6:e1:d1:7c:1e:78:29:60:8d:
        78:a6:75:62:58:a4:5c:cc:f9:f3:5c:8d:50:e4:b4:c8:
        d4:c1:e4:64:66:9e:cc:19:a6:f0:72:3e:12:bb:a7:91:
        67:47:4f:ce:f1:12:36:c0:dd:8c:2c:2e:6e:19:f5:25:
        1d:3d:db:13:96:1f:4a:39:04:b2:a9:e6:6f:0c:1a:f8:
        22:5b:75:c4:dc:47:90:b7:7c:d9:34:17:00:c2:55:8e:
        16:9a:71:84:0a:d5:c2:d1:e8:37:b0:3e:df:d3:29:47:
        96:c1:64:2f:f3:9c:bf:4a:72:98:12:f3:04:ac:ad:6f:
        9f:55:5f:0b:fb:b2:34:ec:4c:ea:d2:3e:5a:6a:46:72:
        2f:77:82:96:76:0c:08:8e:92:72:fd:58:5f:6f:49:10:
        98:a8:51:7b:78:e4:e5:fb:d1:71:49:5b:83:e4:b3:e9:
        48:7a:fc:aa:e8:cd:b2:38:9e:76:30:fb:b8:af:b1:0a:
        6b:4b:47:83:90:16:3c:4f:ac:3b:96:72:0c:1f:ac:f7:
        23:39:b9:36:c1:21:01:5f:56:c5:ef:1a:bc:2e:d3:b9
    Fingerprint (SHA-256):
        B5:58:E2:9F:D8:81:15:B8:90:B1:8C:71:C8:F9:54:7C:EF:55:19:C9:4A:11:C9:EA:9F:60:74:49:51:44:5C:65
    Fingerprint (SHA1):
        C6:2A:67:C7:A7:83:00:5D:21:0E:D4:0A:37:9C:6B:F9:6F:8F:8E:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3591: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154218 (0x1dee43ea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:43:34 2017
            Not After : Mon May 02 15:43:34 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:56:22:e7:37:25:58:1c:89:04:a5:7b:7d:e1:50:2c:
                    0d:56:bf:56:16:7d:ac:ef:75:cf:6c:15:ff:be:25:3a:
                    2f:7a:77:fd:0a:f2:ed:8a:90:f5:25:59:d7:44:53:d7:
                    b7:3d:a8:4e:b6:3a:57:1e:01:72:83:97:a4:48:7c:f4:
                    98:0b:04:2e:5b:f3:64:c9:12:df:3d:7b:34:a3:9c:dd:
                    23:de:dd:0e:19:27:b6:ad:da:d5:c8:cc:a2:41:3a:47:
                    57:96:2b:4e:f5:8b:5d:9b:f1:c7:a2:c4:06:2d:c5:c6:
                    ec:fb:a0:6c:14:5d:52:36:ce:fd:1b:18:f7:f8:e0:8c:
                    3e:e5:31:a7:e4:9d:7f:83:5c:2c:95:61:f1:ae:f8:45:
                    b1:de:c8:0f:27:11:55:66:32:2c:c0:64:92:b7:94:09:
                    ee:98:fb:1b:66:88:e6:52:0c:12:c5:b8:5b:4a:65:bf:
                    0f:e1:7e:f5:05:f8:09:98:ec:10:b0:79:d4:0e:4e:e0:
                    c5:fc:bb:82:8d:f2:03:da:f1:06:72:c5:de:7d:78:b3:
                    42:ef:b7:dd:f5:1c:61:ad:85:5d:b1:5d:b3:f5:55:6f:
                    7b:dd:ca:4f:ea:23:94:7f:94:bc:d9:4f:25:5c:63:74:
                    96:96:f8:97:f2:a6:bb:c7:ff:81:e8:68:b8:8f:7e:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:64:26:18:9a:0b:98:be:87:2c:0b:55:91:8f:21:d6:
        7d:bd:a1:70:4a:32:85:52:f7:a3:1b:e5:93:69:67:ce:
        d3:7c:65:0a:95:0d:bb:a6:e1:d1:7c:1e:78:29:60:8d:
        78:a6:75:62:58:a4:5c:cc:f9:f3:5c:8d:50:e4:b4:c8:
        d4:c1:e4:64:66:9e:cc:19:a6:f0:72:3e:12:bb:a7:91:
        67:47:4f:ce:f1:12:36:c0:dd:8c:2c:2e:6e:19:f5:25:
        1d:3d:db:13:96:1f:4a:39:04:b2:a9:e6:6f:0c:1a:f8:
        22:5b:75:c4:dc:47:90:b7:7c:d9:34:17:00:c2:55:8e:
        16:9a:71:84:0a:d5:c2:d1:e8:37:b0:3e:df:d3:29:47:
        96:c1:64:2f:f3:9c:bf:4a:72:98:12:f3:04:ac:ad:6f:
        9f:55:5f:0b:fb:b2:34:ec:4c:ea:d2:3e:5a:6a:46:72:
        2f:77:82:96:76:0c:08:8e:92:72:fd:58:5f:6f:49:10:
        98:a8:51:7b:78:e4:e5:fb:d1:71:49:5b:83:e4:b3:e9:
        48:7a:fc:aa:e8:cd:b2:38:9e:76:30:fb:b8:af:b1:0a:
        6b:4b:47:83:90:16:3c:4f:ac:3b:96:72:0c:1f:ac:f7:
        23:39:b9:36:c1:21:01:5f:56:c5:ef:1a:bc:2e:d3:b9
    Fingerprint (SHA-256):
        B5:58:E2:9F:D8:81:15:B8:90:B1:8C:71:C8:F9:54:7C:EF:55:19:C9:4A:11:C9:EA:9F:60:74:49:51:44:5C:65
    Fingerprint (SHA1):
        C6:2A:67:C7:A7:83:00:5D:21:0E:D4:0A:37:9C:6B:F9:6F:8F:8E:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3592: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3593: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154221 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3594: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3595: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3596: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3597: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154222   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3598: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3599: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3600: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3601: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154223   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3602: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3603: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3604: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3605: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502154224   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3606: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3607: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #3608: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3609: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502154225   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3610: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3611: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #3612: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3613: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502154226   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3614: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3615: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #3616: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3617: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502154227   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3618: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3619: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3620: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #3621: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #3622: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3623: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #3624: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154221 (0x1dee43ed)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:37 2017
            Not After : Mon May 02 15:43:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:bb:41:4c:36:01:66:65:61:c6:70:94:5b:50:5b:91:
                    f7:96:5d:75:54:83:4d:4d:8e:95:9b:c8:0d:d4:af:93:
                    f2:01:6a:81:17:73:c9:bf:7b:ff:e2:03:6c:71:d1:6b:
                    64:fc:b2:ad:e1:a7:e9:83:b7:c4:67:7a:02:a9:16:04:
                    6d:36:ba:d1:9c:0c:1f:93:1c:06:17:ef:fb:aa:a5:d7:
                    48:ac:70:c9:8e:8b:dc:67:14:59:57:20:0f:0a:74:cd:
                    18:a4:f9:64:45:43:ae:36:bd:c4:87:e2:be:80:f3:fc:
                    c2:f5:90:c9:95:5b:2a:41:7e:9a:93:bd:86:b2:aa:16:
                    98:db:b3:d7:a7:85:b2:bb:0c:a9:76:bb:c5:83:e1:e7:
                    8d:d0:35:a1:65:7e:79:04:0b:5c:6b:f4:39:83:5d:e7:
                    f8:f1:fc:05:d8:f6:72:01:31:d0:20:b5:67:6c:65:a2:
                    7b:fc:cf:61:da:9f:7f:d7:70:b3:b5:04:d0:8e:da:f4:
                    94:d6:b5:d8:f8:61:1a:7a:7b:fd:12:89:16:03:df:14:
                    08:53:85:75:91:2d:21:65:00:04:ba:23:db:8e:06:c8:
                    b5:91:88:75:24:0a:bf:68:09:8c:a6:ff:a0:a1:28:cf:
                    d8:95:e6:ef:33:17:e2:9b:cc:1a:f1:ae:50:49:ad:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:e9:22:53:f5:48:c9:eb:ef:91:87:86:37:67:2d:b5:
        21:92:96:70:15:cc:e2:ef:99:2b:3e:af:97:31:0d:40:
        18:56:5b:36:69:cc:1e:c4:e8:65:15:45:94:1d:98:74:
        e0:6e:ba:d5:ee:50:71:bb:2f:d9:0c:8e:28:19:3a:74:
        9c:f2:1d:d3:6b:8c:1b:35:c2:66:96:19:bc:ed:15:8b:
        56:15:55:7c:70:14:02:13:66:2d:6a:18:15:d8:58:5a:
        7f:0b:d8:77:3f:67:af:6d:32:5a:4e:93:e0:da:ff:00:
        2a:18:93:45:30:c6:94:da:e6:3f:00:9c:3b:27:29:b0:
        f0:f8:3c:2f:19:9a:17:fb:27:2d:b9:c7:68:ab:6d:5d:
        ed:92:7a:5b:7c:c6:ec:0e:06:83:aa:7b:e9:5b:78:cb:
        62:75:c9:a6:9e:6f:96:c0:91:8c:ff:bb:a9:57:25:42:
        a9:e4:68:75:63:31:82:19:b0:03:66:6b:66:36:5e:bc:
        84:07:0f:87:3e:7c:f9:1e:e1:3c:11:e4:80:e0:3f:4c:
        10:b3:db:b9:04:7e:60:2b:ad:e7:c6:e9:9c:7d:1a:f0:
        a3:92:f4:b6:7b:96:27:0e:e4:5f:0a:92:97:8e:f9:d1:
        af:96:68:54:ef:40:35:89:2a:82:eb:f0:72:da:40:d3
    Fingerprint (SHA-256):
        0E:19:3E:7E:75:07:04:0F:8A:EF:0B:5C:CA:BD:A0:7D:F8:0E:2B:86:F4:9B:75:A3:1A:43:2F:88:94:AE:46:CC
    Fingerprint (SHA1):
        ED:0E:5E:B7:F5:0F:BE:BF:66:26:50:7B:2F:CF:B8:AA:E2:88:F0:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3625: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3626: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3627: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3628: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154221 (0x1dee43ed)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:37 2017
            Not After : Mon May 02 15:43:37 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:bb:41:4c:36:01:66:65:61:c6:70:94:5b:50:5b:91:
                    f7:96:5d:75:54:83:4d:4d:8e:95:9b:c8:0d:d4:af:93:
                    f2:01:6a:81:17:73:c9:bf:7b:ff:e2:03:6c:71:d1:6b:
                    64:fc:b2:ad:e1:a7:e9:83:b7:c4:67:7a:02:a9:16:04:
                    6d:36:ba:d1:9c:0c:1f:93:1c:06:17:ef:fb:aa:a5:d7:
                    48:ac:70:c9:8e:8b:dc:67:14:59:57:20:0f:0a:74:cd:
                    18:a4:f9:64:45:43:ae:36:bd:c4:87:e2:be:80:f3:fc:
                    c2:f5:90:c9:95:5b:2a:41:7e:9a:93:bd:86:b2:aa:16:
                    98:db:b3:d7:a7:85:b2:bb:0c:a9:76:bb:c5:83:e1:e7:
                    8d:d0:35:a1:65:7e:79:04:0b:5c:6b:f4:39:83:5d:e7:
                    f8:f1:fc:05:d8:f6:72:01:31:d0:20:b5:67:6c:65:a2:
                    7b:fc:cf:61:da:9f:7f:d7:70:b3:b5:04:d0:8e:da:f4:
                    94:d6:b5:d8:f8:61:1a:7a:7b:fd:12:89:16:03:df:14:
                    08:53:85:75:91:2d:21:65:00:04:ba:23:db:8e:06:c8:
                    b5:91:88:75:24:0a:bf:68:09:8c:a6:ff:a0:a1:28:cf:
                    d8:95:e6:ef:33:17:e2:9b:cc:1a:f1:ae:50:49:ad:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:e9:22:53:f5:48:c9:eb:ef:91:87:86:37:67:2d:b5:
        21:92:96:70:15:cc:e2:ef:99:2b:3e:af:97:31:0d:40:
        18:56:5b:36:69:cc:1e:c4:e8:65:15:45:94:1d:98:74:
        e0:6e:ba:d5:ee:50:71:bb:2f:d9:0c:8e:28:19:3a:74:
        9c:f2:1d:d3:6b:8c:1b:35:c2:66:96:19:bc:ed:15:8b:
        56:15:55:7c:70:14:02:13:66:2d:6a:18:15:d8:58:5a:
        7f:0b:d8:77:3f:67:af:6d:32:5a:4e:93:e0:da:ff:00:
        2a:18:93:45:30:c6:94:da:e6:3f:00:9c:3b:27:29:b0:
        f0:f8:3c:2f:19:9a:17:fb:27:2d:b9:c7:68:ab:6d:5d:
        ed:92:7a:5b:7c:c6:ec:0e:06:83:aa:7b:e9:5b:78:cb:
        62:75:c9:a6:9e:6f:96:c0:91:8c:ff:bb:a9:57:25:42:
        a9:e4:68:75:63:31:82:19:b0:03:66:6b:66:36:5e:bc:
        84:07:0f:87:3e:7c:f9:1e:e1:3c:11:e4:80:e0:3f:4c:
        10:b3:db:b9:04:7e:60:2b:ad:e7:c6:e9:9c:7d:1a:f0:
        a3:92:f4:b6:7b:96:27:0e:e4:5f:0a:92:97:8e:f9:d1:
        af:96:68:54:ef:40:35:89:2a:82:eb:f0:72:da:40:d3
    Fingerprint (SHA-256):
        0E:19:3E:7E:75:07:04:0F:8A:EF:0B:5C:CA:BD:A0:7D:F8:0E:2B:86:F4:9B:75:A3:1A:43:2F:88:94:AE:46:CC
    Fingerprint (SHA1):
        ED:0E:5E:B7:F5:0F:BE:BF:66:26:50:7B:2F:CF:B8:AA:E2:88:F0:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3629: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3630: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #3631: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154228 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3632: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #3633: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3634: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3635: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154229   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3636: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3637: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #3638: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3639: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502154230   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3640: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3641: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #3642: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3643: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502154231   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3644: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3645: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3646: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3647: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502154232   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3648: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3649: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #3650: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3651: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502154233   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3652: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3653: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #3654: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3655: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502154234   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3656: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3657: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3658: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3659: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502154235   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3660: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3661: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #3662: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3663: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502154236   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3664: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3665: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #3666: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3667: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502154237   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3668: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3669: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #3670: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3671: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502154238   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3672: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3673: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #3674: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3675: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502154239   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3676: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3677: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #3678: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3679: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502154240   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3680: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3681: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #3682: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3683: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502154241   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3684: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3685: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #3686: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3687: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502154242   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3688: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3689: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #3690: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3691: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502154243   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3692: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3693: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #3694: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3695: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502154244   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3696: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3697: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #3698: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3699: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502154245   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #3700: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3701: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #3702: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3703: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502154246   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3704: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3705: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #3706: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3707: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502154247   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3708: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3709: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #3710: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3711: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502154248   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3712: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3713: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #3714: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3715: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502154249   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3716: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3717: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #3718: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3719: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502154250   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3720: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3721: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #3722: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3723: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502154251   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3724: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3725: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #3726: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3727: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502154252   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3728: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3729: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #3730: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3731: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502154253   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3732: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3733: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #3734: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3735: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502154254   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3736: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3737: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #3738: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3739: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502154255   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3740: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3741: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #3742: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3743: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502154256   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3744: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3745: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #3746: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3747: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502154257   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3748: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3749: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3750: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3751: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3752: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3753: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3754: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3755: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3756: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3757: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3758: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3759: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3760: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3761: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3762: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3763: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3764: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3765: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3766: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3767: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3768: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3769: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3770: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3771: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3772: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154228 (0x1dee43f4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:43:44 2017
            Not After : Mon May 02 15:43:44 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:0a:6d:4f:9e:da:03:f3:ce:df:8d:15:aa:fa:ba:c9:
                    28:5f:78:ff:08:5c:41:c5:ac:34:8c:af:ec:b7:27:6b:
                    3a:ff:ee:28:d6:e0:ac:8c:f7:76:14:ba:0f:e6:7a:6c:
                    11:51:ea:39:78:c6:5f:02:96:f7:1b:ba:67:c9:6a:67:
                    dd:cf:b6:d4:98:c5:77:2b:8b:31:6e:81:97:3d:6b:ad:
                    c9:58:e7:b2:f7:14:34:d3:1a:bd:29:da:18:c1:ae:7f:
                    22:94:39:52:04:77:a4:91:52:37:fe:71:0c:b3:d7:c3:
                    35:c5:e5:5f:30:75:f5:16:1c:15:2d:a2:17:2a:66:30:
                    6f:32:6d:3d:37:fc:39:67:20:ad:5c:9f:be:4f:1b:b2:
                    d1:54:cf:cf:c4:bc:f7:a1:c2:2b:ba:42:ea:28:b5:11:
                    94:2a:7f:64:71:28:e7:2e:aa:ae:ea:be:7c:d1:34:69:
                    a1:ce:e1:6b:f7:89:5b:58:a3:76:37:e4:46:b3:d3:65:
                    d8:41:4d:7f:c2:33:48:16:48:ed:5f:45:92:e1:a2:77:
                    9d:f0:c1:15:92:18:e0:27:79:d1:d4:e1:91:79:22:a9:
                    6c:31:1c:7d:37:5f:b3:da:c8:2e:3a:4c:44:cb:5b:7a:
                    41:5d:a6:2c:e6:53:ad:39:dd:7c:92:50:ab:0a:a3:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        02:08:ea:d2:8b:79:f7:40:ff:d9:46:6d:89:a2:e1:18:
        59:7b:89:32:ba:8e:31:4a:51:95:77:58:cb:f7:19:ec:
        1e:ee:6e:53:fe:ba:45:18:1c:e3:a5:c4:8f:23:50:a7:
        ad:a6:fd:31:7d:39:f2:4b:af:d8:53:6d:07:58:e6:3f:
        70:f1:d8:74:68:5c:1a:df:b2:4f:82:f8:9d:47:1c:ba:
        63:4f:5b:13:5e:68:f2:94:0e:f9:b7:20:49:0a:9f:dc:
        cc:e9:5e:cd:ed:ff:59:e0:08:6f:45:98:ca:10:06:88:
        e4:08:d0:f9:6c:45:1a:28:c3:f9:94:f6:ab:a9:9f:cd:
        92:dc:44:1f:0a:7f:39:8e:e1:0e:a8:c5:13:10:0e:33:
        4d:5b:b3:17:8d:e8:c3:38:40:be:7f:2c:2a:7c:27:3e:
        7b:01:7a:0d:d4:35:68:f2:ef:ca:fe:89:fa:6c:0f:27:
        7c:0f:7c:86:b6:a9:0f:bc:ac:ad:5e:6e:41:e9:08:0c:
        63:5e:da:53:c4:00:71:c0:67:6b:36:47:cc:38:28:4c:
        84:67:01:9d:01:58:b8:ef:ad:1c:55:a2:ed:97:e0:08:
        b0:15:e3:86:87:4f:d0:c3:4a:14:c4:ae:f1:ca:55:fa:
        d9:72:8b:5a:36:f1:a6:5f:bc:8b:b6:36:d1:04:86:8b
    Fingerprint (SHA-256):
        47:8C:9D:45:2C:DC:EF:26:BA:ED:B8:5B:40:74:AB:81:D0:79:3F:A0:42:1F:DE:FC:76:EC:71:0C:C5:88:CF:95
    Fingerprint (SHA1):
        84:5A:22:3E:5D:CC:C3:EF:51:62:FB:F8:7A:77:79:A3:99:6C:DE:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #3773: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3774: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3775: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154258 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3776: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3777: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #3778: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3779: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502154259   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3780: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3781: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #3782: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3783: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502154260   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3784: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3785: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #3786: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3787: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502154261   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3788: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3789: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #3790: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3791: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502154262   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3792: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3793: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #3794: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3795: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502154263   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3796: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3797: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #3798: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3799: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502154264   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3800: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3801: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3802: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154258 (0x1dee4412)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:09 2017
            Not After : Mon May 02 15:44:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:bd:57:de:f0:fa:69:b0:0b:2d:a5:a4:e8:69:27:32:
                    d7:f1:aa:9f:75:b1:d5:48:e7:ed:5f:c9:51:b4:5a:52:
                    db:04:dc:5f:29:b8:56:ec:44:ca:9c:0e:65:68:67:d9:
                    59:53:d8:96:a8:56:7f:6e:9e:28:0f:98:64:00:b7:a9:
                    58:8e:c9:0c:8a:d8:0c:71:01:1c:fc:32:2b:0c:fe:03:
                    0c:9d:60:4f:2d:36:d2:9a:0e:32:c4:f7:5f:91:70:0d:
                    52:74:b5:14:ad:16:34:3e:a1:05:5e:cf:99:ba:b8:76:
                    bb:97:69:ee:4b:ef:a9:e2:67:c5:09:44:7e:d3:44:47:
                    d8:e3:91:ed:b9:d5:7d:20:c6:3e:c1:b4:60:1a:f0:d0:
                    07:bb:aa:dd:cb:db:e0:8d:c9:e5:58:e1:b1:1c:8d:79:
                    fc:ec:a8:de:8b:28:19:d7:77:ee:86:a2:7d:91:df:d7:
                    cd:27:2d:64:aa:f2:f8:23:0d:c9:7a:e4:88:0c:9c:9a:
                    25:d2:76:e1:e5:e4:31:60:8e:18:dc:aa:bb:10:1c:25:
                    a8:34:33:0f:ca:a8:79:cb:8d:53:61:a3:b8:bf:7f:67:
                    96:fe:0c:19:ff:21:3d:ec:2c:72:73:c6:3e:6c:cd:00:
                    66:12:ce:9f:d0:b8:ac:86:11:df:1c:7d:8b:41:c4:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c6:b7:a8:f7:ec:d7:de:ec:b3:3a:da:5c:cd:9e:f1:71:
        d0:c0:05:e2:f4:49:8b:66:e1:55:16:9b:6a:84:f6:28:
        80:9b:3c:8d:41:9f:b2:fd:aa:7f:5e:34:7a:72:a6:4b:
        e1:52:0a:34:dc:9f:e8:79:fd:4d:3f:50:b6:7d:a6:4f:
        3c:5f:80:4c:1a:64:20:0c:bd:21:1b:98:e6:23:aa:57:
        d1:66:75:b1:4f:56:4e:92:8c:9c:ea:d0:bb:27:d0:00:
        90:4f:d9:c7:a7:8c:af:d4:0d:b1:92:d7:f4:5f:f9:ab:
        7f:0a:b1:ed:c7:8f:30:f8:d8:d2:9c:e6:73:1f:44:4e:
        c1:eb:3e:a7:e6:a8:fe:a8:e9:1d:dd:8c:74:98:cb:4a:
        c6:80:7f:30:64:e8:35:06:0e:5b:27:03:a0:df:87:be:
        ad:48:50:1d:77:b6:b4:e6:17:87:d0:75:bb:42:72:c9:
        0e:b5:75:a3:3c:38:ab:fd:b0:1f:50:d1:35:fb:57:d5:
        26:05:de:f9:70:28:c2:80:c0:c5:8c:66:65:22:28:a5:
        22:b0:45:f9:fb:82:4c:44:aa:aa:b0:e0:a4:dd:f0:da:
        3f:70:e6:f9:32:6a:a6:ac:04:5f:40:09:67:c3:5e:23:
        b5:b8:1e:e7:68:12:ba:ba:60:30:b0:36:0a:38:40:5c
    Fingerprint (SHA-256):
        3F:F0:CF:C5:FF:A9:26:26:BC:F5:04:90:DC:30:29:60:29:42:32:7F:AD:C6:04:40:96:98:F8:A5:48:1A:8E:92
    Fingerprint (SHA1):
        FB:9D:6F:05:CA:A3:68:FC:9C:D5:6D:24:F5:7F:F3:B0:21:44:E1:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3803: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3804: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3805: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3806: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154258 (0x1dee4412)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:09 2017
            Not After : Mon May 02 15:44:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:bd:57:de:f0:fa:69:b0:0b:2d:a5:a4:e8:69:27:32:
                    d7:f1:aa:9f:75:b1:d5:48:e7:ed:5f:c9:51:b4:5a:52:
                    db:04:dc:5f:29:b8:56:ec:44:ca:9c:0e:65:68:67:d9:
                    59:53:d8:96:a8:56:7f:6e:9e:28:0f:98:64:00:b7:a9:
                    58:8e:c9:0c:8a:d8:0c:71:01:1c:fc:32:2b:0c:fe:03:
                    0c:9d:60:4f:2d:36:d2:9a:0e:32:c4:f7:5f:91:70:0d:
                    52:74:b5:14:ad:16:34:3e:a1:05:5e:cf:99:ba:b8:76:
                    bb:97:69:ee:4b:ef:a9:e2:67:c5:09:44:7e:d3:44:47:
                    d8:e3:91:ed:b9:d5:7d:20:c6:3e:c1:b4:60:1a:f0:d0:
                    07:bb:aa:dd:cb:db:e0:8d:c9:e5:58:e1:b1:1c:8d:79:
                    fc:ec:a8:de:8b:28:19:d7:77:ee:86:a2:7d:91:df:d7:
                    cd:27:2d:64:aa:f2:f8:23:0d:c9:7a:e4:88:0c:9c:9a:
                    25:d2:76:e1:e5:e4:31:60:8e:18:dc:aa:bb:10:1c:25:
                    a8:34:33:0f:ca:a8:79:cb:8d:53:61:a3:b8:bf:7f:67:
                    96:fe:0c:19:ff:21:3d:ec:2c:72:73:c6:3e:6c:cd:00:
                    66:12:ce:9f:d0:b8:ac:86:11:df:1c:7d:8b:41:c4:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c6:b7:a8:f7:ec:d7:de:ec:b3:3a:da:5c:cd:9e:f1:71:
        d0:c0:05:e2:f4:49:8b:66:e1:55:16:9b:6a:84:f6:28:
        80:9b:3c:8d:41:9f:b2:fd:aa:7f:5e:34:7a:72:a6:4b:
        e1:52:0a:34:dc:9f:e8:79:fd:4d:3f:50:b6:7d:a6:4f:
        3c:5f:80:4c:1a:64:20:0c:bd:21:1b:98:e6:23:aa:57:
        d1:66:75:b1:4f:56:4e:92:8c:9c:ea:d0:bb:27:d0:00:
        90:4f:d9:c7:a7:8c:af:d4:0d:b1:92:d7:f4:5f:f9:ab:
        7f:0a:b1:ed:c7:8f:30:f8:d8:d2:9c:e6:73:1f:44:4e:
        c1:eb:3e:a7:e6:a8:fe:a8:e9:1d:dd:8c:74:98:cb:4a:
        c6:80:7f:30:64:e8:35:06:0e:5b:27:03:a0:df:87:be:
        ad:48:50:1d:77:b6:b4:e6:17:87:d0:75:bb:42:72:c9:
        0e:b5:75:a3:3c:38:ab:fd:b0:1f:50:d1:35:fb:57:d5:
        26:05:de:f9:70:28:c2:80:c0:c5:8c:66:65:22:28:a5:
        22:b0:45:f9:fb:82:4c:44:aa:aa:b0:e0:a4:dd:f0:da:
        3f:70:e6:f9:32:6a:a6:ac:04:5f:40:09:67:c3:5e:23:
        b5:b8:1e:e7:68:12:ba:ba:60:30:b0:36:0a:38:40:5c
    Fingerprint (SHA-256):
        3F:F0:CF:C5:FF:A9:26:26:BC:F5:04:90:DC:30:29:60:29:42:32:7F:AD:C6:04:40:96:98:F8:A5:48:1A:8E:92
    Fingerprint (SHA1):
        FB:9D:6F:05:CA:A3:68:FC:9C:D5:6D:24:F5:7F:F3:B0:21:44:E1:48
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #3807: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3808: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3809: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3810: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154265 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3811: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3812: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3813: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3814: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154266   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3815: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3816: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3817: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3818: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154267   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3819: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3820: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3821: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3822: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154268   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3823: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3824: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3825: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3826: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3827: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3828: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154265 (0x1dee4419)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:15 2017
            Not After : Mon May 02 15:44:15 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:51:91:1a:7a:1f:54:60:e1:cb:f5:b0:7b:67:34:bd:
                    17:cf:e7:25:9f:00:02:98:3b:d4:bf:80:40:5d:a8:d2:
                    d4:4a:9a:37:8d:66:6c:b0:ae:bf:33:d1:17:3d:df:3b:
                    eb:98:a7:f5:be:55:c9:2a:21:fa:02:2e:db:bf:59:4f:
                    82:a8:58:c1:fa:aa:28:1f:af:2b:df:07:28:5b:58:20:
                    f5:d1:a0:4e:82:f9:09:40:fe:05:c8:39:47:a0:8b:52:
                    04:f6:50:c1:50:b3:37:84:63:87:1a:e8:9c:b0:8c:08:
                    e9:32:09:06:b2:45:f6:c7:5f:55:18:7f:6e:ef:dc:b2:
                    1e:e5:f5:b3:32:34:f6:6e:83:32:95:a7:da:c0:7f:bc:
                    3e:b4:6f:b5:61:67:29:2c:81:da:b7:c2:39:30:48:02:
                    ce:42:bc:85:32:30:bf:9f:68:36:e2:7d:8d:43:10:6b:
                    af:81:4f:52:c0:a5:aa:bb:d6:ac:31:55:5f:14:eb:ee:
                    ef:05:61:5a:f0:db:d6:f4:0c:ef:a7:19:b9:07:b3:d7:
                    34:95:7c:66:ec:ca:21:18:1a:11:14:8c:c4:fa:4b:06:
                    04:26:9a:6f:4f:00:ec:66:c4:02:3f:17:06:91:7e:de:
                    c6:e4:9f:42:41:29:27:55:10:90:9f:db:b8:79:5c:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:bf:b2:f2:3b:ef:1e:4a:69:b5:1e:23:da:e1:2b:1b:
        8b:66:1b:e1:28:ce:f3:14:ae:7d:58:3d:cf:63:df:f7:
        d7:68:0c:6d:07:6b:37:57:26:62:62:60:a9:c0:a4:26:
        56:58:8d:95:cc:76:5b:88:70:71:09:89:98:40:aa:03:
        d2:78:6a:3b:20:4f:87:31:07:17:47:e1:f7:66:37:ad:
        56:23:7c:00:c6:64:3e:e4:da:79:44:43:cb:50:26:2f:
        6b:54:41:a8:68:5c:3e:5e:28:3d:a7:a1:0a:19:ff:e6:
        57:98:9f:3a:a7:52:66:60:35:27:18:ba:15:bf:79:f7:
        0a:2d:b6:2f:31:fd:4b:28:2c:81:c4:17:c1:44:46:f6:
        71:25:4b:a1:dd:98:cd:c1:4d:fb:a6:08:3a:72:00:ab:
        5d:f2:6f:18:ff:ef:2e:92:2b:7e:7b:6c:fa:00:ed:fa:
        b8:cc:6f:9a:6c:61:97:50:02:4a:00:69:20:1b:fa:02:
        06:4b:be:3f:00:e8:66:7c:3c:45:06:c7:81:f6:10:1d:
        e9:db:90:a3:da:a5:75:4a:3c:bc:bd:5d:a5:40:3c:d6:
        4c:d6:a0:79:8c:38:b9:6c:44:d0:ee:26:e9:20:12:ab:
        40:0a:7b:36:e7:d9:5f:ff:b9:11:2a:c1:a8:02:ba:d9
    Fingerprint (SHA-256):
        1B:C6:14:0A:32:60:C0:36:6E:5B:DC:37:14:02:B7:02:6F:E8:34:A3:7E:3C:61:99:7D:03:07:36:F6:AC:BC:9D
    Fingerprint (SHA1):
        D9:9D:77:7C:08:34:F2:9C:6E:A9:1A:55:9E:E6:75:D9:08:1B:3B:74
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3829: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3830: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3831: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154266 (0x1dee441a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:15 2017
            Not After : Mon May 02 15:44:15 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:12:64:81:c2:5e:2e:f8:a2:cf:dc:20:ad:ac:4f:71:
                    60:af:63:1a:10:ab:58:22:00:79:be:c7:8b:18:da:af:
                    22:e8:4e:06:ca:cf:5b:bb:e2:26:2e:ec:30:ed:fb:b6:
                    01:96:df:74:70:5e:70:62:13:8e:2c:63:a6:85:be:45:
                    5d:09:72:57:2d:fd:8d:55:62:0d:40:70:07:5a:31:14:
                    70:07:5f:b4:96:67:63:d0:3b:27:57:42:59:a9:67:7e:
                    68:f3:a7:d8:3b:c5:b5:b2:07:f9:f6:ff:d1:06:74:89:
                    b9:92:db:84:fe:b2:0c:9d:db:1a:75:de:2a:cc:db:16:
                    5e:a5:6d:21:35:b0:1f:f7:ff:14:53:ba:db:d0:27:a5:
                    26:72:9b:b4:fb:92:a7:9e:7f:6f:d1:cd:d4:97:b2:0d:
                    61:74:f5:2e:f9:18:fc:56:00:db:2a:51:7f:57:6f:b6:
                    7b:48:17:a7:15:68:81:fa:40:d4:04:31:b7:30:13:db:
                    39:d2:aa:8f:43:06:bf:71:15:24:32:35:75:60:2a:a0:
                    90:39:98:fc:74:81:a9:ca:44:ee:34:24:45:d6:53:7a:
                    db:0c:91:bd:bf:04:e3:4a:92:dd:38:ff:b5:26:01:1f:
                    48:89:3f:05:c6:ee:12:c7:de:95:f1:ab:d3:d3:e9:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:e0:58:5d:22:1c:39:e4:db:4d:10:a4:e9:f2:29:01:
        56:a5:59:13:8d:00:b9:fb:7b:34:b9:59:d3:53:17:c8:
        60:e2:78:a6:ba:85:9d:79:b9:73:0e:20:36:14:ec:06:
        72:a1:51:7e:93:0b:6d:72:97:be:5f:28:78:26:f7:26:
        af:87:5a:a3:f6:bf:b5:1f:89:6e:f9:28:76:2b:fe:dd:
        1e:a0:e0:20:30:0f:d0:07:94:7c:81:ed:c1:8f:54:b5:
        10:6b:66:21:63:0b:82:e2:6d:23:42:44:96:3b:1f:3a:
        be:54:35:ee:37:f3:23:00:e1:4a:6f:34:06:88:8e:13:
        f0:27:46:de:9c:28:98:37:51:b5:6c:08:3f:5d:1d:5f:
        31:84:07:58:f1:53:cc:a4:9a:a9:8f:c6:9d:88:d9:26:
        9e:3a:c3:89:13:a1:b1:32:70:17:1b:bf:6f:53:7e:bb:
        d2:85:3e:df:2c:0d:b7:1f:fa:9e:15:ea:d1:36:1b:a3:
        eb:87:69:12:38:1f:34:34:a1:c1:99:60:ce:b4:06:0a:
        60:17:45:d6:a9:9a:87:a2:93:32:1e:f1:d4:b7:a7:73:
        5a:a9:f8:ed:28:ee:1e:82:86:e1:4a:90:cf:d0:9b:7d:
        80:15:5f:86:85:98:68:19:a6:48:91:ba:7e:a5:a7:a8
    Fingerprint (SHA-256):
        1F:94:06:06:E3:A5:BC:CE:FB:57:BD:7C:19:39:6E:90:ED:8D:13:88:4C:50:D1:58:B6:4B:E0:E0:F1:20:A6:B1
    Fingerprint (SHA1):
        0C:DE:5B:6B:B7:A2:BF:C7:90:0F:96:CF:A9:0C:51:F2:FC:0B:02:1B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3832: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3833: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154267 (0x1dee441b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:44:16 2017
            Not After : Mon May 02 15:44:16 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ef:4c:4a:98:ec:44:24:40:33:6c:f2:dc:d6:6f:f1:5a:
                    6c:a8:cc:fe:11:75:d9:4d:d7:89:fa:2a:7d:b6:77:e3:
                    f6:7c:06:8b:e1:c8:40:26:5c:81:67:f1:7d:d9:d7:bc:
                    c1:e9:7a:31:0c:a1:2a:cf:61:e2:fc:b5:88:bc:83:cd:
                    8e:8c:08:00:ca:fc:e6:9b:1d:77:a2:6a:0c:9c:6a:d2:
                    d4:4e:20:d8:19:ff:7e:19:9e:36:90:33:0e:40:3a:58:
                    ed:5d:7b:d7:1b:41:d8:46:99:6f:20:e4:72:5c:1d:af:
                    ea:43:43:ea:2c:74:3f:b5:b6:bb:7b:7a:2c:48:ab:77:
                    94:f5:28:87:92:5c:dd:18:78:00:86:5b:f0:1b:e3:b1:
                    34:32:70:e7:c4:80:e5:5b:04:cb:82:10:c1:e6:d8:2e:
                    d8:60:eb:ad:6b:23:4a:8f:7d:b8:5a:df:6b:cc:3c:d8:
                    2e:a8:5a:ec:05:e4:2d:e9:c9:8c:82:a1:e1:b2:e2:8b:
                    b8:e9:fb:c4:df:6a:92:dc:71:2e:7e:e7:d9:e9:d3:50:
                    ae:79:7a:83:1b:cd:99:60:80:04:d8:05:f2:8c:af:2a:
                    38:07:44:b6:a1:97:32:3f:a1:ba:47:af:14:91:2a:df:
                    85:16:1c:70:46:db:6d:2a:3e:44:15:dc:0e:94:d1:a1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        96:8a:c4:6a:b0:12:00:7a:c5:86:f2:0f:45:c8:10:61:
        b0:3b:20:cc:04:b4:df:22:e0:ee:8e:74:d6:9d:dd:d8:
        c2:b0:96:02:47:85:a3:b2:b9:f6:5d:ce:b9:54:c8:f5:
        33:af:1c:ff:66:f0:1d:c0:5d:c8:30:a8:23:00:99:19:
        ae:1a:97:03:09:6e:52:2c:a6:cb:45:17:94:dd:f4:a7:
        ea:d1:dd:2f:1a:d5:d7:f7:f2:6c:59:f7:6b:f7:4f:67:
        f7:59:18:fb:3c:2f:e8:51:96:78:ce:24:80:4c:bf:74:
        5b:31:ae:4a:1f:d4:41:16:73:df:63:14:f5:6d:d6:ce:
        c1:46:43:f3:5e:7d:f4:00:22:a8:2c:a2:93:b0:e9:08:
        1b:78:6a:6f:c3:7e:17:b9:0d:10:62:37:c0:3c:80:f3:
        14:89:fb:e7:85:a9:05:12:3b:91:bf:2b:73:a6:9b:f7:
        bb:51:5d:77:d1:b2:09:6a:70:b0:bf:ce:99:62:7a:70:
        8b:ec:43:94:f6:0b:87:85:18:e4:c3:72:64:f6:12:1a:
        3f:f1:b1:b2:52:3d:f5:05:80:39:af:5d:65:f1:7d:a5:
        a9:f6:ad:28:f0:fb:36:d2:26:f0:72:5a:ed:61:ff:77:
        86:61:fb:76:e0:06:ec:38:b8:66:44:77:17:ba:72:9f
    Fingerprint (SHA-256):
        4B:E7:AF:D3:35:49:51:50:C6:40:C1:EF:F1:C2:C3:8A:B4:00:EC:8F:93:4F:09:BA:BC:6B:10:E8:2C:1B:AA:BA
    Fingerprint (SHA1):
        90:65:5E:21:45:24:F0:A5:69:0D:45:BB:94:18:5E:55:10:61:C7:35
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #3834: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3835: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154269 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3836: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3837: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3838: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3839: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154270   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3840: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3841: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3842: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3843: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154271   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3844: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3845: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #3846: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3847: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502154272   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3848: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3849: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3850: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3851: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502154273   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3852: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3853: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3854: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #3855: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #3856: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #3857: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #3858: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154269 (0x1dee441d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:19 2017
            Not After : Mon May 02 15:44:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:8c:62:81:40:a3:67:e8:bb:99:c2:4c:65:89:6b:32:
                    aa:11:48:d6:78:3c:47:70:5d:87:48:dc:ee:e9:a5:16:
                    ea:72:83:7e:ce:f5:7f:56:8a:05:df:10:a1:26:bb:39:
                    4b:a8:de:ef:ed:b5:ab:bd:c2:03:a2:45:58:1a:f5:ed:
                    68:88:c8:44:39:91:c8:ce:3b:02:74:e2:0e:e2:8c:c1:
                    2a:44:c6:ff:cf:af:f7:74:85:ca:64:2d:3f:c1:5b:48:
                    a4:fd:48:7b:24:18:57:a2:21:1a:42:6e:e7:7d:e2:4d:
                    9f:fd:2f:f9:7a:68:43:89:b0:dd:9e:2c:45:c3:3c:a0:
                    d5:41:d1:e3:93:98:43:e0:26:2a:04:2d:94:94:59:4b:
                    23:c0:e4:4a:0a:78:bc:08:7a:36:72:32:75:1b:9f:d6:
                    7c:d4:f0:ca:20:86:e7:f7:b0:b0:0d:b3:50:65:9a:76:
                    0c:f0:35:3c:6b:cd:3b:95:b5:da:18:ab:4b:14:10:47:
                    b3:af:0f:48:e1:02:c8:aa:34:8a:33:82:af:8c:0a:81:
                    8f:8c:69:45:fd:ec:8e:88:fb:77:d0:cf:1a:af:5d:d9:
                    a0:f4:e3:ab:3d:48:1c:0b:a2:7e:15:97:c5:5b:c5:79:
                    b3:bd:e4:9c:29:74:37:d9:a9:39:80:26:c8:45:8c:9f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4c:47:76:ab:e5:34:b0:8b:40:68:32:66:79:0a:28:05:
        2c:ab:23:94:e8:dc:b7:12:40:96:33:b2:66:56:e8:a1:
        61:7f:5b:0a:50:9f:13:bc:4f:49:a9:ac:1b:36:9c:fe:
        7a:72:9e:48:f0:73:b6:fe:ca:f6:f4:07:7c:e7:10:c3:
        01:56:ce:b3:99:e2:58:d9:65:03:6d:96:63:9f:af:69:
        ec:d7:2b:cc:08:24:43:ad:93:d1:33:49:5b:04:4d:e9:
        01:a1:40:18:16:c0:22:0f:58:54:07:64:d5:42:1e:88:
        9f:92:c4:bd:d1:19:86:19:8b:ea:ae:60:90:34:07:ab:
        34:70:95:46:a6:7b:22:59:a7:ee:57:0a:7c:cb:97:43:
        87:c8:6f:80:5b:08:9b:af:a3:37:8f:46:70:a4:71:0b:
        89:ec:52:33:71:0e:09:89:12:22:5e:b0:99:b7:09:55:
        29:13:63:f7:fd:9a:78:2b:37:8f:fc:a2:fe:76:19:30:
        69:cd:66:1e:3e:1f:45:2c:14:4c:3d:78:7b:0a:67:78:
        c3:55:55:2b:bf:fb:30:65:b4:0f:af:80:4c:07:e3:f0:
        45:66:92:c8:eb:b6:79:fe:e1:62:d3:c8:2c:54:d5:71:
        03:07:a4:ac:44:6c:11:f1:eb:28:86:33:ac:45:30:58
    Fingerprint (SHA-256):
        F6:70:C5:95:19:40:75:D7:D6:67:7C:13:84:88:62:AE:B3:34:35:2A:82:B3:17:CB:B2:6F:C5:91:0B:BD:FA:DA
    Fingerprint (SHA1):
        4E:5A:47:BB:3E:71:4E:1A:35:75:A3:87:CB:3F:8A:A1:A5:F8:13:65
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3859: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3860: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154270 (0x1dee441e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:20 2017
            Not After : Mon May 02 15:44:20 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:b2:4f:58:43:e8:91:eb:25:8d:0f:fc:34:51:94:a7:
                    d1:27:ba:5a:ff:bf:13:0a:fa:6a:58:a1:12:43:da:f7:
                    5a:a0:63:9e:c3:de:92:48:fa:64:14:ee:67:8c:44:88:
                    a4:d9:ba:57:84:f0:e0:9a:ff:30:3a:a0:3e:76:3b:a1:
                    d2:5a:77:86:5d:88:2e:0f:d8:db:bb:0f:59:e2:db:83:
                    6d:21:37:b6:10:98:c1:87:7c:2f:2b:f5:7b:e5:fe:81:
                    7a:c8:8b:35:1e:64:40:e2:af:62:ad:e6:31:aa:c1:74:
                    5c:9c:15:61:d0:3b:7b:e9:82:6d:e5:99:68:50:54:db:
                    4b:e4:ad:ea:83:c2:86:78:7f:a9:5a:ca:e1:55:fe:7e:
                    4d:f6:69:8c:d8:75:2e:50:78:99:99:95:29:f0:ac:5d:
                    0b:61:08:52:0a:7e:54:b1:a7:a0:f3:f7:2c:c2:69:0c:
                    13:b0:b0:1c:89:68:c1:2b:d6:d4:63:9b:b3:60:5b:16:
                    f5:26:af:25:ed:6f:5a:dd:6c:eb:63:d9:1c:4d:fc:38:
                    20:95:63:de:7c:24:16:81:f3:c1:66:70:54:2a:50:51:
                    94:41:d5:e6:c6:5c:f6:7f:e5:d3:48:d1:64:ac:7f:3e:
                    b3:92:f6:37:7a:23:aa:ea:9e:57:85:b9:59:3e:fb:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        63:69:b7:6e:e8:eb:98:42:14:eb:c1:26:96:00:a5:dc:
        8e:0c:f9:4e:c1:42:ad:26:2b:7a:f2:c7:42:e3:9c:4b:
        e8:05:0f:c3:db:46:c8:1a:48:a1:c3:80:71:94:af:65:
        4f:6e:b4:14:2d:76:01:3a:57:d8:2a:a7:b9:04:d7:f6:
        8c:c2:73:34:41:ca:b5:90:c6:4a:52:12:90:e9:1b:40:
        34:97:fe:de:d2:84:b0:c1:f6:c0:9a:e2:4a:2c:49:dd:
        63:4b:b9:c8:72:21:70:b6:a3:6a:4f:82:b9:e2:78:cc:
        3c:2e:92:e1:fc:1e:8b:8a:6f:bb:30:20:e7:e9:d7:ed:
        8b:54:f0:2e:9c:e3:03:07:5e:f8:61:2d:2d:cc:93:8d:
        fd:eb:b4:a0:cb:7f:2d:67:17:d9:88:7a:db:c9:69:4f:
        23:6f:01:a7:42:ff:f8:93:83:2b:cf:01:12:bb:b9:af:
        48:6e:c8:12:0c:eb:30:6b:9b:d0:a0:5d:26:08:48:d6:
        07:4f:54:e7:20:3e:e9:0c:de:ec:f2:53:88:fd:0e:50:
        dc:6d:44:63:5b:5b:45:c1:94:b0:7c:a8:e7:08:43:e5:
        b3:3d:3b:c7:37:12:9f:2d:c8:0c:d8:f3:a8:9a:28:62:
        ad:55:e8:8d:83:74:05:53:1a:c9:d7:84:2d:62:50:6b
    Fingerprint (SHA-256):
        01:C0:26:C1:D0:77:87:E7:C5:4E:08:63:B5:EE:4C:85:85:0D:A0:1E:51:1E:35:32:83:29:48:22:4A:84:14:59
    Fingerprint (SHA1):
        06:AA:6C:D1:96:6F:A4:7E:92:9F:B3:9D:4D:A2:B3:2A:0E:6F:CE:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #3861: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3862: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3863: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154271 (0x1dee441f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:44:21 2017
            Not After : Mon May 02 15:44:21 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:4f:c2:18:6f:5e:ca:80:f3:57:36:39:1a:87:ce:e6:
                    2d:67:f7:3b:2e:75:eb:e7:a0:f0:57:30:2b:75:b7:98:
                    18:ed:85:e1:5e:b3:82:b0:16:f1:a3:cf:6f:28:a3:f9:
                    a6:f1:e0:d1:5d:2b:ff:97:c1:d4:71:48:8e:40:07:2b:
                    dc:ad:45:74:6d:e8:1f:22:07:5f:c5:54:5e:57:cd:66:
                    22:e8:a9:99:3c:57:ec:0f:d4:50:4f:83:48:a3:b9:aa:
                    9f:c6:89:36:b5:66:87:ce:d0:d4:7c:ba:51:9e:25:e7:
                    8a:ee:20:b0:60:e0:0e:82:a4:03:f1:62:42:0d:b0:8d:
                    64:dd:af:03:6d:14:cc:8c:93:9e:d3:f7:24:ee:76:93:
                    fa:66:3d:f7:b8:b0:dc:9f:ad:81:01:51:a4:ff:59:3c:
                    4a:09:0a:ad:33:6b:e1:5b:84:42:32:7d:bc:c0:33:42:
                    10:09:82:1b:35:e8:01:40:49:0e:86:a4:ce:cb:dd:75:
                    7e:a0:7e:80:08:d4:78:0f:58:2b:ea:e0:43:42:78:3b:
                    d7:1c:cd:a6:82:d2:68:86:7a:10:61:f7:ff:db:68:9b:
                    3e:62:f7:d3:45:6f:24:fd:a3:9b:3a:cb:b5:4a:c2:65:
                    ff:d5:58:8b:82:ac:c2:a0:03:e3:d1:3f:92:b5:aa:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        26:81:ef:17:6c:86:a4:29:64:e6:57:5a:78:e4:47:f0:
        d3:98:6f:21:b1:f3:f2:91:f3:01:bc:93:68:2f:aa:c3:
        5e:d7:83:18:f8:1b:ff:a9:af:7f:3a:e6:54:63:cd:ab:
        c0:ad:22:e2:a8:5d:88:b5:fd:6b:3b:72:b2:c5:3e:52:
        b7:6b:24:9d:82:49:96:c1:27:25:2b:cd:17:91:a0:18:
        80:85:2a:f8:20:94:ff:db:6e:2b:7b:d1:ab:16:44:82:
        96:97:a6:2e:89:60:b2:24:ef:2b:c6:04:d6:93:2a:c1:
        0b:cf:9b:6f:34:2f:26:75:fa:98:83:33:7c:f3:4a:e6:
        53:26:23:7a:2d:5e:10:3f:42:0b:1e:96:02:b1:ab:b7:
        09:67:b7:f1:ae:22:35:5b:de:15:a3:ae:7d:8d:4a:c3:
        8d:c4:8c:28:0d:42:45:f9:fe:b7:c1:b3:b2:ed:7f:e0:
        b6:b3:e4:82:02:f3:4e:2f:2b:08:75:9a:49:09:f2:df:
        39:45:18:a7:77:60:eb:18:6c:4f:ef:2f:98:ae:9a:ae:
        11:25:58:2a:6a:b8:e1:2e:ec:96:af:28:25:f6:2a:6b:
        b3:c5:42:3c:69:bb:f2:66:66:f0:35:50:8b:e1:75:4e:
        cc:d4:ad:a8:3f:ec:7b:95:60:16:c0:29:12:2f:05:19
    Fingerprint (SHA-256):
        C3:86:A7:68:DF:1C:2B:2C:A5:17:21:10:0F:94:85:79:63:08:EB:C1:58:E1:AA:04:46:03:46:B6:0E:E4:F3:9D
    Fingerprint (SHA1):
        A3:59:43:67:CA:6A:5D:22:24:8E:75:83:0C:1E:E0:C1:A8:5D:1D:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #3864: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #3865: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154274 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3866: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #3867: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3868: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3869: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154275   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3870: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3871: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3872: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3873: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154276   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA1Root-502154053.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3874: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3875: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #3876: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3877: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154277   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3878: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3879: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #3880: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154274 (0x1dee4422)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:23 2017
            Not After : Mon May 02 15:44:23 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:9c:78:47:77:58:ce:9d:7f:90:8d:27:84:4b:bd:40:
                    b4:bd:0e:49:c6:6e:da:7b:a6:91:6c:32:91:af:0c:28:
                    34:7f:31:8b:d6:94:28:c1:4e:c3:66:de:4a:15:d1:9c:
                    f5:aa:f3:64:10:00:39:85:93:12:0d:6e:48:f5:e6:2f:
                    35:f0:c3:50:2c:b6:16:c6:c5:27:76:a4:99:aa:6d:e5:
                    b6:ca:c7:01:71:66:8f:d7:34:e4:60:15:34:3c:e6:6e:
                    9b:38:0d:c1:13:ca:28:6b:6d:53:6f:c0:fa:a5:51:f6:
                    a1:e7:33:ad:ca:13:f5:66:c6:91:4a:40:8d:64:be:0a:
                    af:5d:fa:b3:86:5d:dc:d5:35:2f:a3:46:e1:e7:64:ed:
                    96:93:18:04:3a:2e:65:32:02:0c:6a:46:9e:0f:2f:56:
                    e3:e8:a5:fb:9c:d0:46:0f:77:e0:0a:ad:23:13:4c:25:
                    9c:f7:99:a1:82:0e:3b:eb:2a:33:c4:d5:2d:98:1a:91:
                    73:c2:58:55:a8:f6:7e:3a:b8:f0:8e:7c:35:71:74:76:
                    6f:7f:5e:20:23:b5:cd:10:a0:bb:29:39:9c:a5:5b:a3:
                    0c:46:0e:6b:06:8a:e8:cf:40:bf:93:6e:94:e3:b5:79:
                    6a:61:3a:f1:a5:6e:53:09:0d:a9:d8:78:15:0c:4e:2b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:89:ed:9b:ed:20:fb:7e:6e:e7:26:61:ec:5b:5f:e9:
        64:e0:52:4e:05:9d:79:45:d1:11:36:3e:c7:de:9e:64:
        a9:c1:0d:c4:98:a9:05:b7:f9:be:88:ea:58:8a:0d:93:
        b8:12:2c:f3:59:22:36:49:17:99:17:19:5b:f9:18:ab:
        f4:b5:85:d8:d4:d2:8f:c0:c5:f6:36:de:0a:a9:c2:6b:
        9e:2d:c2:30:a9:6a:69:17:61:5e:39:0b:18:6e:78:6c:
        51:e4:3d:b2:66:b3:45:9a:66:ef:2d:6c:e4:aa:3e:69:
        4e:41:33:67:fd:36:92:32:1b:2a:12:fb:37:7c:ab:44:
        bd:40:05:f6:b3:48:1f:70:f8:86:80:04:f5:fa:92:f8:
        e3:61:0c:3d:85:c4:02:89:e3:ec:90:70:4d:da:46:f0:
        12:81:66:ed:d4:11:46:56:9f:19:58:48:e4:06:bc:9d:
        53:1b:ca:7f:ff:a8:78:cd:04:d2:75:f1:a6:8d:f7:53:
        61:3a:5a:3c:ba:19:7d:15:48:8b:aa:b4:a4:58:f7:96:
        9b:74:60:7c:c8:d1:95:b5:43:75:37:03:b3:8a:68:7d:
        b7:e5:5b:2a:d0:fd:05:7b:be:82:72:4e:31:9a:22:59:
        95:e5:61:67:ae:03:63:80:3f:9a:3e:24:36:2d:69:2c
    Fingerprint (SHA-256):
        C7:81:57:87:22:DF:ED:2E:48:A5:91:E6:A7:48:E3:8A:7B:73:3F:FB:9C:55:A3:8B:19:5C:B4:A3:64:FB:5A:F5
    Fingerprint (SHA1):
        1B:4E:37:69:FF:8E:C4:47:04:82:F0:11:50:9D:72:35:A2:EB:90:2A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #3881: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3882: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154278 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3883: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3884: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3885: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154279 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3886: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3887: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3888: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3889: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154280 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3890: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3891: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154281 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3892: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3893: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3894: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3895: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3896: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154282   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502154054.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3897: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3898: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3899: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3900: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154283   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3901: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3902: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3903: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3904: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154279 (0x1dee4427)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:27 2017
            Not After : Mon May 02 15:44:27 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:19:e1:d6:b0:34:0c:6a:79:7d:11:d5:80:ac:fb:b1:
                    ba:3f:c1:7b:3d:96:49:3d:98:5b:f5:61:5d:23:a2:03:
                    02:29:05:a5:8a:07:35:56:fb:57:b2:c1:86:51:ce:5f:
                    2f:10:55:99:09:7a:79:47:e4:91:a2:44:72:ea:af:17:
                    58:2a:a9:cf:c6:eb:69:aa:dc:e9:fc:d0:4a:3b:ff:f1:
                    85:57:f8:6e:76:9f:d4:34:6a:f4:8a:10:f1:52:91:dd:
                    16:9f:bd:25:c3:18:09:16:43:e3:96:06:be:63:46:bb:
                    11:16:98:48:a0:ed:36:7c:af:2e:14:17:bb:4c:96:da:
                    c6:7e:96:50:2b:82:69:37:b1:80:00:aa:d7:f9:e9:44:
                    e7:b0:8b:84:03:4b:34:fd:60:89:47:50:b7:e1:2a:3f:
                    ff:8d:6d:76:80:81:e0:e6:b9:b6:64:5e:06:24:29:ad:
                    1b:c7:31:55:07:e7:e6:61:71:6e:e1:7a:99:93:ac:a1:
                    fa:38:f4:0c:75:79:fe:00:70:3a:03:b0:e5:dc:ea:6a:
                    3b:85:80:26:88:b8:dd:a3:83:87:4f:40:e8:94:2b:ba:
                    22:40:23:ef:20:c3:70:5a:f4:88:28:3e:cd:64:36:b7:
                    17:a6:e8:09:20:38:3a:25:03:97:6d:ff:e8:7f:4b:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:6f:49:8a:72:94:03:4d:e6:89:94:24:d7:8c:36:01:
        82:35:46:8a:f3:b7:82:55:81:8a:41:05:45:3a:d1:e4:
        f7:e2:4d:d9:18:2c:36:63:f0:30:40:73:29:6e:75:bb:
        06:ea:cf:62:29:00:e6:4d:1c:f2:f7:64:ea:f3:cd:b8:
        bf:e0:f8:19:47:eb:cb:98:62:11:47:42:70:35:70:69:
        9e:f6:f4:fe:12:e8:28:44:1c:2d:62:12:b5:7f:3f:35:
        a0:be:4d:4f:35:46:d8:aa:93:bd:45:53:26:4f:bd:f1:
        45:af:9b:2c:b3:c6:ed:67:bb:23:b6:75:9c:2c:2e:ed:
        11:dc:39:0a:7f:b5:fa:72:d6:2e:fb:12:fa:67:70:2c:
        a4:69:ef:1f:5c:00:ea:37:44:4e:c1:41:2f:99:9b:87:
        70:8b:47:65:2e:7c:b7:c2:ab:63:60:74:8b:b3:1f:3f:
        0a:a4:4e:84:32:a6:4d:cf:fc:80:09:29:b9:e5:5e:d5:
        f3:02:5b:eb:89:75:d5:62:07:08:64:e0:62:f0:93:3f:
        4d:d9:dc:f0:ba:fb:19:f3:12:f1:d0:f7:fe:c3:6a:2c:
        c0:5f:ae:1d:94:ad:30:3c:71:e8:6c:4c:3b:69:f2:24:
        10:19:74:b0:94:74:9b:5e:c2:ca:93:66:16:da:f4:d5
    Fingerprint (SHA-256):
        58:4B:0D:24:FF:A4:B2:28:95:20:79:E4:B4:56:36:1D:67:C9:26:04:A6:07:00:38:7C:99:C1:65:09:40:13:34
    Fingerprint (SHA1):
        EB:22:6D:8A:5A:27:06:37:FE:96:2F:0D:B8:A0:D7:84:F6:40:7A:DA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3905: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154279 (0x1dee4427)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:27 2017
            Not After : Mon May 02 15:44:27 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:19:e1:d6:b0:34:0c:6a:79:7d:11:d5:80:ac:fb:b1:
                    ba:3f:c1:7b:3d:96:49:3d:98:5b:f5:61:5d:23:a2:03:
                    02:29:05:a5:8a:07:35:56:fb:57:b2:c1:86:51:ce:5f:
                    2f:10:55:99:09:7a:79:47:e4:91:a2:44:72:ea:af:17:
                    58:2a:a9:cf:c6:eb:69:aa:dc:e9:fc:d0:4a:3b:ff:f1:
                    85:57:f8:6e:76:9f:d4:34:6a:f4:8a:10:f1:52:91:dd:
                    16:9f:bd:25:c3:18:09:16:43:e3:96:06:be:63:46:bb:
                    11:16:98:48:a0:ed:36:7c:af:2e:14:17:bb:4c:96:da:
                    c6:7e:96:50:2b:82:69:37:b1:80:00:aa:d7:f9:e9:44:
                    e7:b0:8b:84:03:4b:34:fd:60:89:47:50:b7:e1:2a:3f:
                    ff:8d:6d:76:80:81:e0:e6:b9:b6:64:5e:06:24:29:ad:
                    1b:c7:31:55:07:e7:e6:61:71:6e:e1:7a:99:93:ac:a1:
                    fa:38:f4:0c:75:79:fe:00:70:3a:03:b0:e5:dc:ea:6a:
                    3b:85:80:26:88:b8:dd:a3:83:87:4f:40:e8:94:2b:ba:
                    22:40:23:ef:20:c3:70:5a:f4:88:28:3e:cd:64:36:b7:
                    17:a6:e8:09:20:38:3a:25:03:97:6d:ff:e8:7f:4b:75
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7f:6f:49:8a:72:94:03:4d:e6:89:94:24:d7:8c:36:01:
        82:35:46:8a:f3:b7:82:55:81:8a:41:05:45:3a:d1:e4:
        f7:e2:4d:d9:18:2c:36:63:f0:30:40:73:29:6e:75:bb:
        06:ea:cf:62:29:00:e6:4d:1c:f2:f7:64:ea:f3:cd:b8:
        bf:e0:f8:19:47:eb:cb:98:62:11:47:42:70:35:70:69:
        9e:f6:f4:fe:12:e8:28:44:1c:2d:62:12:b5:7f:3f:35:
        a0:be:4d:4f:35:46:d8:aa:93:bd:45:53:26:4f:bd:f1:
        45:af:9b:2c:b3:c6:ed:67:bb:23:b6:75:9c:2c:2e:ed:
        11:dc:39:0a:7f:b5:fa:72:d6:2e:fb:12:fa:67:70:2c:
        a4:69:ef:1f:5c:00:ea:37:44:4e:c1:41:2f:99:9b:87:
        70:8b:47:65:2e:7c:b7:c2:ab:63:60:74:8b:b3:1f:3f:
        0a:a4:4e:84:32:a6:4d:cf:fc:80:09:29:b9:e5:5e:d5:
        f3:02:5b:eb:89:75:d5:62:07:08:64:e0:62:f0:93:3f:
        4d:d9:dc:f0:ba:fb:19:f3:12:f1:d0:f7:fe:c3:6a:2c:
        c0:5f:ae:1d:94:ad:30:3c:71:e8:6c:4c:3b:69:f2:24:
        10:19:74:b0:94:74:9b:5e:c2:ca:93:66:16:da:f4:d5
    Fingerprint (SHA-256):
        58:4B:0D:24:FF:A4:B2:28:95:20:79:E4:B4:56:36:1D:67:C9:26:04:A6:07:00:38:7C:99:C1:65:09:40:13:34
    Fingerprint (SHA1):
        EB:22:6D:8A:5A:27:06:37:FE:96:2F:0D:B8:A0:D7:84:F6:40:7A:DA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3906: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3907: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154284 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3908: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3909: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3910: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154285 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3911: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3912: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3913: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3914: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154286 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3915: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3916: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154287 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3917: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3918: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #3919: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3920: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3921: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154288   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502154055.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3922: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3923: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3924: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3925: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154289   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3926: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3927: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3928: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3929: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502154290   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-BridgeNavy-502154056.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #3930: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3931: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3932: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3933: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154291   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #3934: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3935: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #3936: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #3937: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154285 (0x1dee442d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:31 2017
            Not After : Mon May 02 15:44:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:63:30:ac:00:6e:ec:fe:28:32:d0:6f:68:87:5d:ba:
                    22:96:19:3f:3d:50:b6:93:e0:ce:83:25:6b:7f:61:85:
                    24:8c:b9:c3:13:6a:bf:ce:ff:f8:a5:c2:9a:5c:d0:f5:
                    e3:ff:08:5e:5a:4b:61:a6:d1:f7:15:20:1b:7f:50:3c:
                    33:65:2f:8e:bd:07:e7:99:96:98:cf:92:8a:1e:4d:e6:
                    5b:8a:1c:9e:b1:b6:cf:b9:f1:f1:ac:33:e6:8a:08:70:
                    35:27:6c:13:98:72:c5:ab:e1:ad:62:86:cb:73:4d:e4:
                    7c:b9:ed:23:ed:23:5d:a0:a6:51:1b:9e:d0:e4:74:f5:
                    e7:ac:df:30:65:89:f6:49:36:d9:06:c9:16:6b:5d:5b:
                    38:b2:44:b2:29:8f:5c:2d:36:7f:08:13:10:1b:f6:30:
                    2b:a4:c6:d8:a6:fa:d0:74:98:fc:ab:d7:18:7e:f6:c3:
                    8a:ec:e6:13:5f:85:45:61:76:7c:35:06:60:1a:d2:5b:
                    d1:77:41:15:4e:87:85:cc:3b:51:f7:10:6a:86:e7:be:
                    f1:ff:10:eb:e6:7f:fa:46:ed:f8:19:7e:04:88:4c:a6:
                    d6:48:32:26:7c:0a:42:4a:db:66:01:ce:54:7a:8d:26:
                    fa:e6:19:57:36:32:75:3c:9b:af:b5:ef:26:cb:21:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:ad:d6:f6:f6:8b:25:fc:9a:62:d1:b0:34:4f:70:01:
        f4:ed:11:56:b9:04:97:dd:a4:0a:26:0b:e6:a6:64:ad:
        43:5b:ac:45:97:ea:33:a1:99:f8:6f:c5:0e:2c:6e:b6:
        8d:d7:3c:d5:3b:69:b7:66:57:87:fe:50:d6:65:7c:5d:
        82:ed:f9:6a:bd:fa:f8:94:a1:d2:99:ed:2e:d6:67:37:
        6a:2c:69:8b:be:81:f4:1e:bd:34:bc:b3:8b:27:98:90:
        92:8a:99:f4:3d:f2:98:7c:c7:7e:0c:d2:d7:21:71:a9:
        10:bb:f2:c0:90:46:be:61:d9:9a:7a:85:ea:c8:9f:1b:
        54:f3:eb:bd:74:23:f4:58:52:ee:9d:1b:20:31:3e:7b:
        8a:dc:10:d6:34:d9:85:0e:ea:ce:90:97:4f:5b:9c:79:
        5b:73:f5:07:4b:e9:4f:dc:11:e5:b5:b5:34:8a:34:8d:
        d4:0a:cd:05:76:2a:b1:a9:d0:03:89:ce:f9:0f:6e:7a:
        5d:06:5f:26:4f:bf:0d:a4:68:9b:37:33:b6:37:04:4f:
        1b:a3:62:00:d4:f4:4d:72:6c:aa:ba:06:99:6c:8c:2b:
        75:61:7a:06:c4:24:ba:db:db:21:12:18:39:e8:ce:6b:
        fd:ca:1d:19:fb:cf:75:e5:69:9d:10:3e:97:7f:38:da
    Fingerprint (SHA-256):
        DF:00:32:24:3F:D7:E4:D8:BF:F1:2D:56:CF:83:9A:8B:4B:E0:4D:2C:FE:FE:B7:28:B6:A3:3D:92:AD:4A:72:AD
    Fingerprint (SHA1):
        07:4C:13:93:D0:81:5C:4B:11:C3:27:C8:72:43:4F:CE:6F:9E:9B:F0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3938: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154285 (0x1dee442d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:31 2017
            Not After : Mon May 02 15:44:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:63:30:ac:00:6e:ec:fe:28:32:d0:6f:68:87:5d:ba:
                    22:96:19:3f:3d:50:b6:93:e0:ce:83:25:6b:7f:61:85:
                    24:8c:b9:c3:13:6a:bf:ce:ff:f8:a5:c2:9a:5c:d0:f5:
                    e3:ff:08:5e:5a:4b:61:a6:d1:f7:15:20:1b:7f:50:3c:
                    33:65:2f:8e:bd:07:e7:99:96:98:cf:92:8a:1e:4d:e6:
                    5b:8a:1c:9e:b1:b6:cf:b9:f1:f1:ac:33:e6:8a:08:70:
                    35:27:6c:13:98:72:c5:ab:e1:ad:62:86:cb:73:4d:e4:
                    7c:b9:ed:23:ed:23:5d:a0:a6:51:1b:9e:d0:e4:74:f5:
                    e7:ac:df:30:65:89:f6:49:36:d9:06:c9:16:6b:5d:5b:
                    38:b2:44:b2:29:8f:5c:2d:36:7f:08:13:10:1b:f6:30:
                    2b:a4:c6:d8:a6:fa:d0:74:98:fc:ab:d7:18:7e:f6:c3:
                    8a:ec:e6:13:5f:85:45:61:76:7c:35:06:60:1a:d2:5b:
                    d1:77:41:15:4e:87:85:cc:3b:51:f7:10:6a:86:e7:be:
                    f1:ff:10:eb:e6:7f:fa:46:ed:f8:19:7e:04:88:4c:a6:
                    d6:48:32:26:7c:0a:42:4a:db:66:01:ce:54:7a:8d:26:
                    fa:e6:19:57:36:32:75:3c:9b:af:b5:ef:26:cb:21:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:ad:d6:f6:f6:8b:25:fc:9a:62:d1:b0:34:4f:70:01:
        f4:ed:11:56:b9:04:97:dd:a4:0a:26:0b:e6:a6:64:ad:
        43:5b:ac:45:97:ea:33:a1:99:f8:6f:c5:0e:2c:6e:b6:
        8d:d7:3c:d5:3b:69:b7:66:57:87:fe:50:d6:65:7c:5d:
        82:ed:f9:6a:bd:fa:f8:94:a1:d2:99:ed:2e:d6:67:37:
        6a:2c:69:8b:be:81:f4:1e:bd:34:bc:b3:8b:27:98:90:
        92:8a:99:f4:3d:f2:98:7c:c7:7e:0c:d2:d7:21:71:a9:
        10:bb:f2:c0:90:46:be:61:d9:9a:7a:85:ea:c8:9f:1b:
        54:f3:eb:bd:74:23:f4:58:52:ee:9d:1b:20:31:3e:7b:
        8a:dc:10:d6:34:d9:85:0e:ea:ce:90:97:4f:5b:9c:79:
        5b:73:f5:07:4b:e9:4f:dc:11:e5:b5:b5:34:8a:34:8d:
        d4:0a:cd:05:76:2a:b1:a9:d0:03:89:ce:f9:0f:6e:7a:
        5d:06:5f:26:4f:bf:0d:a4:68:9b:37:33:b6:37:04:4f:
        1b:a3:62:00:d4:f4:4d:72:6c:aa:ba:06:99:6c:8c:2b:
        75:61:7a:06:c4:24:ba:db:db:21:12:18:39:e8:ce:6b:
        fd:ca:1d:19:fb:cf:75:e5:69:9d:10:3e:97:7f:38:da
    Fingerprint (SHA-256):
        DF:00:32:24:3F:D7:E4:D8:BF:F1:2D:56:CF:83:9A:8B:4B:E0:4D:2C:FE:FE:B7:28:B6:A3:3D:92:AD:4A:72:AD
    Fingerprint (SHA1):
        07:4C:13:93:D0:81:5C:4B:11:C3:27:C8:72:43:4F:CE:6F:9E:9B:F0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3939: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #3940: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154284 (0x1dee442c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:44:30 2017
            Not After : Mon May 02 15:44:30 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:e4:b1:45:c8:5d:fb:df:17:8a:d1:d2:81:05:5b:9b:
                    cd:12:dd:c8:9e:4f:94:1a:ab:bd:53:3e:7c:a0:a0:a9:
                    4f:d3:ed:65:09:bd:6c:53:43:2e:e9:2c:8d:ab:85:54:
                    16:be:db:55:c7:7b:38:94:db:b8:53:06:f8:9d:c0:66:
                    b1:8e:1a:7a:98:73:16:16:20:13:c1:5e:7f:70:14:d8:
                    ba:71:d0:55:1b:26:df:dd:34:8f:82:ef:19:b0:53:9d:
                    96:8b:db:3d:cb:16:9d:19:3f:ed:55:aa:7c:3b:22:8b:
                    dc:59:7f:8c:59:05:80:7b:a1:92:e2:62:84:17:cf:0c:
                    3a:62:53:61:8e:b9:a5:df:4b:1b:2d:8e:f1:5a:45:27:
                    6b:6b:dc:6a:fa:59:99:7a:3a:3b:57:5c:c4:24:11:22:
                    3c:db:35:63:cc:8d:17:e5:50:7a:4d:20:d8:3b:96:e9:
                    85:bd:b1:69:40:00:e0:d8:ab:2b:b3:9b:28:07:9b:8b:
                    1d:dd:e7:d5:90:48:d7:aa:57:e9:78:e8:e7:a4:5b:0f:
                    33:56:e7:1d:39:20:8a:ff:98:c1:ad:3a:c2:a8:61:9e:
                    54:92:41:b3:77:fd:cc:fe:7c:2e:a9:2e:b3:de:98:f7:
                    ec:5c:86:75:0e:6b:a7:24:90:0f:d1:dc:a6:32:45:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        77:30:8f:8b:b8:af:3e:88:ee:46:58:f4:58:8a:a9:d1:
        c7:e4:3c:d9:74:69:89:f6:ea:15:96:15:85:db:e6:06:
        7a:82:b2:f9:89:d4:ec:ea:01:1e:b8:d7:24:43:1f:0c:
        9b:7b:db:97:b0:f0:e8:8c:ef:c9:d5:cf:c8:15:c9:2b:
        b7:fd:20:df:2a:56:26:ec:4f:d1:a7:e6:72:8f:c9:e6:
        54:b6:76:70:b7:ff:b6:6b:e4:1d:9e:6d:24:6d:b7:6b:
        43:f5:fe:fd:23:4f:d6:33:e1:00:d4:bd:41:80:bf:ac:
        8b:26:dd:6b:44:74:3e:22:63:21:25:a7:fc:28:74:96:
        f2:ef:83:d4:91:40:2b:a1:9b:a3:01:25:31:a8:b8:02:
        36:48:33:ea:bc:5b:db:a4:08:c3:85:04:dd:98:4a:9c:
        14:da:c4:1f:38:77:1b:a5:c6:9d:0a:2e:92:54:d0:34:
        fd:b6:a7:40:ee:ab:7b:f5:07:86:b8:8b:79:33:9b:e2:
        08:72:d8:34:1d:0e:f8:c5:9f:39:5b:f8:07:a7:62:b1:
        c0:00:91:a9:c7:a2:c0:6f:8d:24:af:98:1a:08:09:3a:
        f1:cd:8d:b8:68:19:2c:2b:cd:78:76:b5:ce:52:01:87:
        7a:30:c9:dd:70:e2:bf:68:f5:a6:c4:f2:c7:82:d1:1b
    Fingerprint (SHA-256):
        74:F6:83:4F:4C:FE:EE:68:CC:9D:CF:15:A4:3F:02:67:02:0F:D0:9A:AE:8E:22:17:D8:B9:FB:5F:1A:67:9C:B8
    Fingerprint (SHA1):
        1C:13:2A:C7:8A:5E:B5:66:91:1B:9E:A6:EB:FF:95:DC:00:C7:24:E8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3941: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154285 (0x1dee442d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:31 2017
            Not After : Mon May 02 15:44:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:63:30:ac:00:6e:ec:fe:28:32:d0:6f:68:87:5d:ba:
                    22:96:19:3f:3d:50:b6:93:e0:ce:83:25:6b:7f:61:85:
                    24:8c:b9:c3:13:6a:bf:ce:ff:f8:a5:c2:9a:5c:d0:f5:
                    e3:ff:08:5e:5a:4b:61:a6:d1:f7:15:20:1b:7f:50:3c:
                    33:65:2f:8e:bd:07:e7:99:96:98:cf:92:8a:1e:4d:e6:
                    5b:8a:1c:9e:b1:b6:cf:b9:f1:f1:ac:33:e6:8a:08:70:
                    35:27:6c:13:98:72:c5:ab:e1:ad:62:86:cb:73:4d:e4:
                    7c:b9:ed:23:ed:23:5d:a0:a6:51:1b:9e:d0:e4:74:f5:
                    e7:ac:df:30:65:89:f6:49:36:d9:06:c9:16:6b:5d:5b:
                    38:b2:44:b2:29:8f:5c:2d:36:7f:08:13:10:1b:f6:30:
                    2b:a4:c6:d8:a6:fa:d0:74:98:fc:ab:d7:18:7e:f6:c3:
                    8a:ec:e6:13:5f:85:45:61:76:7c:35:06:60:1a:d2:5b:
                    d1:77:41:15:4e:87:85:cc:3b:51:f7:10:6a:86:e7:be:
                    f1:ff:10:eb:e6:7f:fa:46:ed:f8:19:7e:04:88:4c:a6:
                    d6:48:32:26:7c:0a:42:4a:db:66:01:ce:54:7a:8d:26:
                    fa:e6:19:57:36:32:75:3c:9b:af:b5:ef:26:cb:21:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:ad:d6:f6:f6:8b:25:fc:9a:62:d1:b0:34:4f:70:01:
        f4:ed:11:56:b9:04:97:dd:a4:0a:26:0b:e6:a6:64:ad:
        43:5b:ac:45:97:ea:33:a1:99:f8:6f:c5:0e:2c:6e:b6:
        8d:d7:3c:d5:3b:69:b7:66:57:87:fe:50:d6:65:7c:5d:
        82:ed:f9:6a:bd:fa:f8:94:a1:d2:99:ed:2e:d6:67:37:
        6a:2c:69:8b:be:81:f4:1e:bd:34:bc:b3:8b:27:98:90:
        92:8a:99:f4:3d:f2:98:7c:c7:7e:0c:d2:d7:21:71:a9:
        10:bb:f2:c0:90:46:be:61:d9:9a:7a:85:ea:c8:9f:1b:
        54:f3:eb:bd:74:23:f4:58:52:ee:9d:1b:20:31:3e:7b:
        8a:dc:10:d6:34:d9:85:0e:ea:ce:90:97:4f:5b:9c:79:
        5b:73:f5:07:4b:e9:4f:dc:11:e5:b5:b5:34:8a:34:8d:
        d4:0a:cd:05:76:2a:b1:a9:d0:03:89:ce:f9:0f:6e:7a:
        5d:06:5f:26:4f:bf:0d:a4:68:9b:37:33:b6:37:04:4f:
        1b:a3:62:00:d4:f4:4d:72:6c:aa:ba:06:99:6c:8c:2b:
        75:61:7a:06:c4:24:ba:db:db:21:12:18:39:e8:ce:6b:
        fd:ca:1d:19:fb:cf:75:e5:69:9d:10:3e:97:7f:38:da
    Fingerprint (SHA-256):
        DF:00:32:24:3F:D7:E4:D8:BF:F1:2D:56:CF:83:9A:8B:4B:E0:4D:2C:FE:FE:B7:28:B6:A3:3D:92:AD:4A:72:AD
    Fingerprint (SHA1):
        07:4C:13:93:D0:81:5C:4B:11:C3:27:C8:72:43:4F:CE:6F:9E:9B:F0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3942: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154285 (0x1dee442d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:31 2017
            Not After : Mon May 02 15:44:31 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:63:30:ac:00:6e:ec:fe:28:32:d0:6f:68:87:5d:ba:
                    22:96:19:3f:3d:50:b6:93:e0:ce:83:25:6b:7f:61:85:
                    24:8c:b9:c3:13:6a:bf:ce:ff:f8:a5:c2:9a:5c:d0:f5:
                    e3:ff:08:5e:5a:4b:61:a6:d1:f7:15:20:1b:7f:50:3c:
                    33:65:2f:8e:bd:07:e7:99:96:98:cf:92:8a:1e:4d:e6:
                    5b:8a:1c:9e:b1:b6:cf:b9:f1:f1:ac:33:e6:8a:08:70:
                    35:27:6c:13:98:72:c5:ab:e1:ad:62:86:cb:73:4d:e4:
                    7c:b9:ed:23:ed:23:5d:a0:a6:51:1b:9e:d0:e4:74:f5:
                    e7:ac:df:30:65:89:f6:49:36:d9:06:c9:16:6b:5d:5b:
                    38:b2:44:b2:29:8f:5c:2d:36:7f:08:13:10:1b:f6:30:
                    2b:a4:c6:d8:a6:fa:d0:74:98:fc:ab:d7:18:7e:f6:c3:
                    8a:ec:e6:13:5f:85:45:61:76:7c:35:06:60:1a:d2:5b:
                    d1:77:41:15:4e:87:85:cc:3b:51:f7:10:6a:86:e7:be:
                    f1:ff:10:eb:e6:7f:fa:46:ed:f8:19:7e:04:88:4c:a6:
                    d6:48:32:26:7c:0a:42:4a:db:66:01:ce:54:7a:8d:26:
                    fa:e6:19:57:36:32:75:3c:9b:af:b5:ef:26:cb:21:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3c:ad:d6:f6:f6:8b:25:fc:9a:62:d1:b0:34:4f:70:01:
        f4:ed:11:56:b9:04:97:dd:a4:0a:26:0b:e6:a6:64:ad:
        43:5b:ac:45:97:ea:33:a1:99:f8:6f:c5:0e:2c:6e:b6:
        8d:d7:3c:d5:3b:69:b7:66:57:87:fe:50:d6:65:7c:5d:
        82:ed:f9:6a:bd:fa:f8:94:a1:d2:99:ed:2e:d6:67:37:
        6a:2c:69:8b:be:81:f4:1e:bd:34:bc:b3:8b:27:98:90:
        92:8a:99:f4:3d:f2:98:7c:c7:7e:0c:d2:d7:21:71:a9:
        10:bb:f2:c0:90:46:be:61:d9:9a:7a:85:ea:c8:9f:1b:
        54:f3:eb:bd:74:23:f4:58:52:ee:9d:1b:20:31:3e:7b:
        8a:dc:10:d6:34:d9:85:0e:ea:ce:90:97:4f:5b:9c:79:
        5b:73:f5:07:4b:e9:4f:dc:11:e5:b5:b5:34:8a:34:8d:
        d4:0a:cd:05:76:2a:b1:a9:d0:03:89:ce:f9:0f:6e:7a:
        5d:06:5f:26:4f:bf:0d:a4:68:9b:37:33:b6:37:04:4f:
        1b:a3:62:00:d4:f4:4d:72:6c:aa:ba:06:99:6c:8c:2b:
        75:61:7a:06:c4:24:ba:db:db:21:12:18:39:e8:ce:6b:
        fd:ca:1d:19:fb:cf:75:e5:69:9d:10:3e:97:7f:38:da
    Fingerprint (SHA-256):
        DF:00:32:24:3F:D7:E4:D8:BF:F1:2D:56:CF:83:9A:8B:4B:E0:4D:2C:FE:FE:B7:28:B6:A3:3D:92:AD:4A:72:AD
    Fingerprint (SHA1):
        07:4C:13:93:D0:81:5C:4B:11:C3:27:C8:72:43:4F:CE:6F:9E:9B:F0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #3943: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #3944: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154292 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3945: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #3946: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #3947: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154293 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #3948: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #3949: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #3950: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3951: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502154294   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3952: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3953: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #3954: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3955: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502154295   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3956: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3957: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #3958: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3959: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502154296 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3960: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3961: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502154297 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #3962: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3963: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #3964: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #3965: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3966: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502154298   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3967: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3968: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #3969: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #3970: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502154299   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3971: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3972: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #3973: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3974: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154300   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3975: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3976: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #3977: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #3978: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154301   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #3979: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #3980: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3981: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154292 (0x1dee4434)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:44:36 2017
            Not After : Mon May 02 15:44:36 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cd:a0:78:6d:27:22:61:ed:b2:23:61:05:ed:68:e9:02:
                    86:dd:ee:ba:28:35:1b:00:4a:84:da:7a:56:0c:00:a0:
                    ad:cd:1e:6c:7b:ff:84:d3:f6:3b:75:14:18:c5:f8:50:
                    21:80:cf:1a:21:9a:72:c6:bc:36:10:11:00:15:35:e4:
                    26:32:56:b0:de:b5:1d:98:b4:59:00:42:1e:9b:e3:6a:
                    8c:4f:72:09:8c:9e:e4:83:fe:d5:65:eb:aa:62:10:a4:
                    de:b2:9e:4f:df:03:5a:51:84:cf:03:1f:d4:73:83:c9:
                    3f:57:cf:d9:ce:31:52:67:33:cc:0e:e8:a6:d4:ce:e4:
                    01:c7:6d:a2:7d:49:83:ae:83:06:1d:a9:8e:c5:3a:ef:
                    f7:0c:23:7e:a8:b7:f3:49:f6:f5:9d:42:45:9a:85:92:
                    2e:61:92:84:7f:68:15:8e:94:8c:b7:8f:ae:2f:92:0c:
                    00:57:3b:af:e9:6d:3e:aa:96:5a:2c:be:81:6d:62:67:
                    f6:4d:67:be:44:7d:bf:66:26:00:bc:9d:aa:c6:fd:f0:
                    ca:10:b4:00:a4:4c:f1:bf:33:61:36:07:cb:6c:6e:5a:
                    4d:ee:45:17:56:d7:17:58:0a:18:9a:c1:62:9b:80:8e:
                    e7:12:c9:f6:e2:24:2c:84:d8:63:01:16:d8:26:6e:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:b4:27:ee:74:07:70:ed:82:b1:d1:4f:e2:2a:6e:74:
        b9:f4:06:e8:15:af:e3:5f:c9:6b:05:d3:b4:49:d2:2d:
        27:63:c5:f5:5a:98:e9:c5:73:e8:69:49:70:27:c7:7e:
        3c:7b:b6:35:7c:0b:e9:62:71:e9:77:95:26:87:2f:60:
        8c:0b:8b:57:3f:3a:bd:12:4b:fb:88:54:36:a1:64:42:
        e7:d3:e1:f0:97:01:cd:72:93:e3:14:34:f8:5f:b9:2b:
        40:10:ec:8c:25:88:f7:a5:7a:9b:02:25:f7:34:51:82:
        1a:30:ca:39:cd:1d:98:0a:a9:c7:5a:4e:19:ba:67:73:
        ff:85:ce:17:7c:b8:d0:34:95:ce:ba:12:5b:db:d7:fd:
        4a:3b:8f:9a:85:b3:4b:dd:e8:be:a9:3e:21:2a:d8:66:
        37:2f:33:ff:f3:44:aa:ee:9d:37:a3:67:db:da:46:72:
        67:37:c0:c0:2b:81:1c:2b:fc:bc:0f:a8:be:89:23:de:
        cc:71:53:84:ce:f0:ff:77:ad:7c:fb:3a:66:c0:ca:57:
        2b:34:ba:59:01:f7:d4:e0:19:fc:e7:45:9a:f0:f1:3a:
        d7:62:b6:bd:9a:e0:7f:71:3e:51:da:8b:a6:59:18:59:
        a9:98:c1:0e:ca:58:0b:d9:09:13:df:50:d5:58:c1:b4
    Fingerprint (SHA-256):
        C0:44:BF:6E:87:CF:67:E9:7F:22:4C:3D:C9:FD:6B:86:34:91:94:BF:42:F9:62:8A:AB:A5:03:34:13:75:44:F4
    Fingerprint (SHA1):
        5B:EA:BC:F7:28:2F:44:19:B4:7D:CF:7B:7F:DD:46:E3:93:71:7D:12
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3982: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3983: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3984: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3985: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3986: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3987: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3988: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3989: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3990: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154293 (0x1dee4435)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:44:36 2017
            Not After : Mon May 02 15:44:36 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c3:63:b4:2f:f6:87:c9:85:3a:ab:f3:a3:c2:66:a9:38:
                    bf:fe:26:f7:df:0b:24:c8:e8:6f:b8:e3:1e:a3:3f:26:
                    28:9d:0f:80:37:b2:25:c4:1c:91:9f:16:2f:62:30:2d:
                    2b:b2:2d:d0:c3:bc:42:b9:da:b4:c4:1f:e6:18:9b:29:
                    07:c8:50:37:33:91:a6:6d:4c:7a:6f:d9:2e:aa:32:83:
                    ca:aa:80:30:27:d5:50:e1:e0:79:13:e6:b7:a5:f4:b8:
                    48:c4:0d:d7:50:8a:75:3e:38:63:76:e9:10:3a:0c:31:
                    54:06:bd:2d:86:f0:62:d0:c1:51:a8:b6:c8:70:8b:66:
                    69:85:05:0c:0a:b8:e5:e0:f8:c4:5f:f3:5e:cf:2a:80:
                    2b:20:77:07:60:7b:c2:ff:e2:68:18:93:48:ea:70:d3:
                    d7:4f:35:41:cd:5b:a1:f7:73:99:58:c1:16:b7:25:57:
                    19:1e:3a:77:6c:7e:f5:bd:da:e9:29:36:06:c4:18:30:
                    4e:ed:49:bf:c0:a4:cd:ae:04:3e:00:b8:1c:55:4d:db:
                    bf:57:3e:02:eb:80:f3:6e:7c:3f:fc:39:90:2e:fb:2a:
                    70:c2:58:d1:2f:8c:a2:b9:e5:4c:f1:9b:34:3a:26:64:
                    97:06:5f:e2:1f:77:38:8e:09:d7:11:92:80:8d:1c:f7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:c7:5d:81:ee:de:61:0e:a2:eb:5a:ac:a8:23:5d:87:
        dc:1d:09:fd:46:12:d3:11:c4:29:bc:28:19:68:8b:76:
        3b:6d:65:d9:f9:28:56:48:d8:b3:68:e4:38:cf:ba:88:
        d3:f9:64:84:db:e1:f1:e0:3b:2c:51:c6:ec:d0:b8:d1:
        ba:0b:a6:62:56:dd:2e:30:d3:9b:36:36:0b:27:24:e6:
        42:97:81:96:6d:4a:94:f8:41:9e:a1:95:f3:61:6e:a7:
        a1:b1:0d:a6:08:51:09:82:23:5c:eb:44:3c:3f:ba:61:
        83:91:81:06:f5:f0:d7:20:a1:2a:eb:89:4f:cd:82:a9:
        aa:af:f6:69:24:52:aa:c5:83:84:c6:41:d2:bf:77:ed:
        7d:9b:df:ae:95:69:1f:b1:72:b4:c4:ef:fa:70:b3:8e:
        2b:01:bd:93:e0:02:4f:a6:10:21:8f:a1:15:c3:96:be:
        de:32:f8:3e:7e:8f:41:df:3e:b3:39:f3:6b:90:fb:cd:
        b6:04:35:8d:5f:9a:25:6c:73:8c:9b:74:2b:e6:e0:59:
        cf:4b:23:98:94:5f:e3:5c:5f:93:c8:07:27:d6:b3:fd:
        3f:e2:8f:3e:7e:2a:d0:1a:58:4f:4c:9c:05:3b:27:ea:
        ff:96:0c:ed:79:2e:2b:f9:7e:55:6b:54:95:4c:39:bf
    Fingerprint (SHA-256):
        3C:49:4D:F9:7E:AF:64:A4:46:AB:80:D8:39:4D:68:8D:59:94:37:4C:F9:30:87:4D:9C:66:F0:0B:DF:D4:6A:86
    Fingerprint (SHA1):
        F2:35:0E:17:06:40:63:E1:62:A1:C1:9B:2D:27:A7:F8:3A:E7:62:09
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #3991: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3992: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3993: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3994: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3995: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #3996: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #3997: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #3998: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #3999: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #4000: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #4001: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #4002: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #4003: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #4004: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4005: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4006: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #4007: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #4008: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4009: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154302 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4010: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4011: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4012: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4013: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154303   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4014: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4015: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4016: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4017: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154304   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4018: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4019: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4020: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4021: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502154305   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4022: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4023: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4024: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4025: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502154306   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4026: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4027: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #4028: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4029: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502154307   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4030: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4031: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #4032: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4033: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502154308   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4034: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4035: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #4036: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4037: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502154309   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4038: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4039: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #4040: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4041: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502154310   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4042: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4043: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4044: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154302 (0x1dee443e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:44 2017
            Not After : Mon May 02 15:44:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    5c:56:ab:b0:d3:8e:78:9a:b7:89:5a:02:44:fd:c5:5c:
                    82:e2:9c:70:67:0c:cc:8f:96:1e:15:2b:0b:a9:86:9b:
                    c6:b3:fd:65:c2:a0:08:52:ac:b4:27:39:98:0f:46:f9:
                    d6:51:94:f0:76:21:f3:de:c4:26:f8:3f:91:5b:35:2b:
                    a4:7e:d1:03:80:7e:08:8d:cc:1a:97:ca:52:74:91:f6:
                    79:d6:e7:e0:2a:56:98:0e:15:d6:bf:cb:f7:f4:99:96:
                    ea:dc:32:5a:f2:28:4f:2e:68:65:59:a8:2d:f5:aa:89:
                    0b:75:85:61:3e:14:1b:a2:49:0a:3b:92:f0:c3:23:a0:
                    e8:55:9e:7c:b2:e1:c1:9a:e7:ad:cf:02:9a:c3:4d:aa:
                    e6:32:70:17:1b:dd:c5:91:30:ac:3d:3e:6c:2a:70:c6:
                    70:aa:a0:4f:61:22:8c:50:17:ea:f3:c6:21:2d:9f:ab:
                    63:9d:a8:a0:24:ff:5e:6c:36:4b:d3:95:d1:64:b0:47:
                    0a:95:30:e9:e1:d4:6c:98:be:01:c8:cd:7d:a2:13:80:
                    e0:97:9a:ee:66:4d:18:c3:f7:21:92:25:81:2d:27:47:
                    5b:a5:8a:9b:c8:fc:62:44:04:ab:44:73:ab:84:91:86:
                    20:4f:53:bc:d1:db:9e:04:db:58:b3:3d:a8:36:75:7a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:09:fb:9f:66:3d:f6:b6:9c:96:8c:66:07:
        05:10:ce:ed:3d:a0:c0:84:65:c6:23:9a:86:42:7b:60:
        02:1c:67:33:1d:46:b7:47:85:6b:3a:99:7e:f7:97:af:
        4c:2a:c6:3b:d4:40:20:e4:a0:97:44:a2:b5:68
    Fingerprint (SHA-256):
        0E:4D:D3:BD:11:C1:DB:87:20:C2:31:B0:1D:D1:A9:B5:E4:1F:39:BF:1F:68:57:77:10:AC:CB:A8:02:14:19:60
    Fingerprint (SHA1):
        22:50:FD:68:7A:D3:8E:B2:F0:64:32:C8:BD:FE:0A:4C:36:49:BF:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4045: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154302 (0x1dee443e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:44 2017
            Not After : Mon May 02 15:44:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    5c:56:ab:b0:d3:8e:78:9a:b7:89:5a:02:44:fd:c5:5c:
                    82:e2:9c:70:67:0c:cc:8f:96:1e:15:2b:0b:a9:86:9b:
                    c6:b3:fd:65:c2:a0:08:52:ac:b4:27:39:98:0f:46:f9:
                    d6:51:94:f0:76:21:f3:de:c4:26:f8:3f:91:5b:35:2b:
                    a4:7e:d1:03:80:7e:08:8d:cc:1a:97:ca:52:74:91:f6:
                    79:d6:e7:e0:2a:56:98:0e:15:d6:bf:cb:f7:f4:99:96:
                    ea:dc:32:5a:f2:28:4f:2e:68:65:59:a8:2d:f5:aa:89:
                    0b:75:85:61:3e:14:1b:a2:49:0a:3b:92:f0:c3:23:a0:
                    e8:55:9e:7c:b2:e1:c1:9a:e7:ad:cf:02:9a:c3:4d:aa:
                    e6:32:70:17:1b:dd:c5:91:30:ac:3d:3e:6c:2a:70:c6:
                    70:aa:a0:4f:61:22:8c:50:17:ea:f3:c6:21:2d:9f:ab:
                    63:9d:a8:a0:24:ff:5e:6c:36:4b:d3:95:d1:64:b0:47:
                    0a:95:30:e9:e1:d4:6c:98:be:01:c8:cd:7d:a2:13:80:
                    e0:97:9a:ee:66:4d:18:c3:f7:21:92:25:81:2d:27:47:
                    5b:a5:8a:9b:c8:fc:62:44:04:ab:44:73:ab:84:91:86:
                    20:4f:53:bc:d1:db:9e:04:db:58:b3:3d:a8:36:75:7a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:09:fb:9f:66:3d:f6:b6:9c:96:8c:66:07:
        05:10:ce:ed:3d:a0:c0:84:65:c6:23:9a:86:42:7b:60:
        02:1c:67:33:1d:46:b7:47:85:6b:3a:99:7e:f7:97:af:
        4c:2a:c6:3b:d4:40:20:e4:a0:97:44:a2:b5:68
    Fingerprint (SHA-256):
        0E:4D:D3:BD:11:C1:DB:87:20:C2:31:B0:1D:D1:A9:B5:E4:1F:39:BF:1F:68:57:77:10:AC:CB:A8:02:14:19:60
    Fingerprint (SHA1):
        22:50:FD:68:7A:D3:8E:B2:F0:64:32:C8:BD:FE:0A:4C:36:49:BF:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4046: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154302 (0x1dee443e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:44 2017
            Not After : Mon May 02 15:44:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    5c:56:ab:b0:d3:8e:78:9a:b7:89:5a:02:44:fd:c5:5c:
                    82:e2:9c:70:67:0c:cc:8f:96:1e:15:2b:0b:a9:86:9b:
                    c6:b3:fd:65:c2:a0:08:52:ac:b4:27:39:98:0f:46:f9:
                    d6:51:94:f0:76:21:f3:de:c4:26:f8:3f:91:5b:35:2b:
                    a4:7e:d1:03:80:7e:08:8d:cc:1a:97:ca:52:74:91:f6:
                    79:d6:e7:e0:2a:56:98:0e:15:d6:bf:cb:f7:f4:99:96:
                    ea:dc:32:5a:f2:28:4f:2e:68:65:59:a8:2d:f5:aa:89:
                    0b:75:85:61:3e:14:1b:a2:49:0a:3b:92:f0:c3:23:a0:
                    e8:55:9e:7c:b2:e1:c1:9a:e7:ad:cf:02:9a:c3:4d:aa:
                    e6:32:70:17:1b:dd:c5:91:30:ac:3d:3e:6c:2a:70:c6:
                    70:aa:a0:4f:61:22:8c:50:17:ea:f3:c6:21:2d:9f:ab:
                    63:9d:a8:a0:24:ff:5e:6c:36:4b:d3:95:d1:64:b0:47:
                    0a:95:30:e9:e1:d4:6c:98:be:01:c8:cd:7d:a2:13:80:
                    e0:97:9a:ee:66:4d:18:c3:f7:21:92:25:81:2d:27:47:
                    5b:a5:8a:9b:c8:fc:62:44:04:ab:44:73:ab:84:91:86:
                    20:4f:53:bc:d1:db:9e:04:db:58:b3:3d:a8:36:75:7a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:09:fb:9f:66:3d:f6:b6:9c:96:8c:66:07:
        05:10:ce:ed:3d:a0:c0:84:65:c6:23:9a:86:42:7b:60:
        02:1c:67:33:1d:46:b7:47:85:6b:3a:99:7e:f7:97:af:
        4c:2a:c6:3b:d4:40:20:e4:a0:97:44:a2:b5:68
    Fingerprint (SHA-256):
        0E:4D:D3:BD:11:C1:DB:87:20:C2:31:B0:1D:D1:A9:B5:E4:1F:39:BF:1F:68:57:77:10:AC:CB:A8:02:14:19:60
    Fingerprint (SHA1):
        22:50:FD:68:7A:D3:8E:B2:F0:64:32:C8:BD:FE:0A:4C:36:49:BF:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #4047: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154302 (0x1dee443e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:44 2017
            Not After : Mon May 02 15:44:44 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    5c:56:ab:b0:d3:8e:78:9a:b7:89:5a:02:44:fd:c5:5c:
                    82:e2:9c:70:67:0c:cc:8f:96:1e:15:2b:0b:a9:86:9b:
                    c6:b3:fd:65:c2:a0:08:52:ac:b4:27:39:98:0f:46:f9:
                    d6:51:94:f0:76:21:f3:de:c4:26:f8:3f:91:5b:35:2b:
                    a4:7e:d1:03:80:7e:08:8d:cc:1a:97:ca:52:74:91:f6:
                    79:d6:e7:e0:2a:56:98:0e:15:d6:bf:cb:f7:f4:99:96:
                    ea:dc:32:5a:f2:28:4f:2e:68:65:59:a8:2d:f5:aa:89:
                    0b:75:85:61:3e:14:1b:a2:49:0a:3b:92:f0:c3:23:a0:
                    e8:55:9e:7c:b2:e1:c1:9a:e7:ad:cf:02:9a:c3:4d:aa:
                    e6:32:70:17:1b:dd:c5:91:30:ac:3d:3e:6c:2a:70:c6:
                    70:aa:a0:4f:61:22:8c:50:17:ea:f3:c6:21:2d:9f:ab:
                    63:9d:a8:a0:24:ff:5e:6c:36:4b:d3:95:d1:64:b0:47:
                    0a:95:30:e9:e1:d4:6c:98:be:01:c8:cd:7d:a2:13:80:
                    e0:97:9a:ee:66:4d:18:c3:f7:21:92:25:81:2d:27:47:
                    5b:a5:8a:9b:c8:fc:62:44:04:ab:44:73:ab:84:91:86:
                    20:4f:53:bc:d1:db:9e:04:db:58:b3:3d:a8:36:75:7a
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3c:02:1c:09:fb:9f:66:3d:f6:b6:9c:96:8c:66:07:
        05:10:ce:ed:3d:a0:c0:84:65:c6:23:9a:86:42:7b:60:
        02:1c:67:33:1d:46:b7:47:85:6b:3a:99:7e:f7:97:af:
        4c:2a:c6:3b:d4:40:20:e4:a0:97:44:a2:b5:68
    Fingerprint (SHA-256):
        0E:4D:D3:BD:11:C1:DB:87:20:C2:31:B0:1D:D1:A9:B5:E4:1F:39:BF:1F:68:57:77:10:AC:CB:A8:02:14:19:60
    Fingerprint (SHA1):
        22:50:FD:68:7A:D3:8E:B2:F0:64:32:C8:BD:FE:0A:4C:36:49:BF:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #4048: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4049: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4050: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4051: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4052: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4053: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4054: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4055: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4056: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4057: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4058: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4059: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4060: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4061: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4062: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4063: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #4064: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4065: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4066: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4067: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4068: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4069: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4070: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4071: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4072: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4073: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4074: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4075: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502154453Z
nextupdate=20180502154453Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:44:53 2017
    Next Update: Wed May 02 15:44:53 2018
    CRL Extensions:
chains.sh: #4076: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154453Z
nextupdate=20180502154453Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:44:53 2017
    Next Update: Wed May 02 15:44:53 2018
    CRL Extensions:
chains.sh: #4077: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154453Z
nextupdate=20180502154453Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:44:53 2017
    Next Update: Wed May 02 15:44:53 2018
    CRL Extensions:
chains.sh: #4078: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502154453Z
nextupdate=20180502154453Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:44:53 2017
    Next Update: Wed May 02 15:44:53 2018
    CRL Extensions:
chains.sh: #4079: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154454Z
addcert 14 20170502154454Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:44:54 2017
    Next Update: Wed May 02 15:44:53 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:44:54 2017
    CRL Extensions:
chains.sh: #4080: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154455Z
addcert 15 20170502154455Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:44:55 2017
    Next Update: Wed May 02 15:44:53 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:44:55 2017
    CRL Extensions:
chains.sh: #4081: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4082: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4083: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4084: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #4085: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #4086: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #4087: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #4088: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #4089: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #4090: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:49 2017
            Not After : Mon May 02 15:44:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:1d:7f:ab:79:0c:2e:93:64:5e:24:76:38:c9:e9:a9:
                    81:9a:b3:e4:d1:96:22:38:9d:e5:00:88:a1:10:32:4f:
                    d7:6d:9d:d7:5d:ad:a5:99:c6:a8:77:3a:f2:19:aa:3d:
                    cd:3b:6f:fa:b6:58:75:da:26:7d:69:d9:80:7e:d0:c1:
                    da:01:07:df:db:dd:56:cc:67:65:f0:38:7b:c3:da:6a:
                    e0:8f:de:f8:78:09:52:d7:cf:75:9c:bc:7d:ee:08:c8:
                    34:61:62:88:b4:4e:bf:d1:09:c6:09:0a:36:9a:f1:b9:
                    6c:d5:b5:fa:27:25:40:4e:f9:21:71:c3:bf:2b:cb:75:
                    69:d2:6c:a3:ba:8d:fa:64:6d:4a:5d:60:a1:e2:6d:a0:
                    43:ce:af:be:c9:5a:1b:bd:51:a1:47:33:d2:6d:d2:8c:
                    5a:58:7b:57:8b:61:6b:02:23:22:28:91:1f:e2:49:de:
                    e2:56:c3:97:40:42:e1:aa:37:9e:4c:0a:19:a5:44:be:
                    fc:c1:ef:00:f9:78:03:8d:18:64:f3:9e:f2:77:28:13:
                    c6:35:78:c2:00:02:35:8e:62:95:b0:22:8c:f6:f1:9e:
                    01:8f:55:94:7a:5a:85:1a:4c:50:af:34:7a:b6:80:42:
                    74:0c:f1:44:a5:10:b3:1b:7a:d4:b4:f2:da:29:6f:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:bd:13:b5:16:37:62:4e:b3:fb:9e:fc:9d:be:07:6d:
        bd:b4:91:0b:3b:bf:af:42:22:94:2b:72:ea:be:57:5a:
        3f:77:34:49:6e:c4:9e:59:d3:9b:ca:5f:cc:ce:ed:4e:
        5b:75:1f:48:6e:66:8a:bb:8e:c9:6d:89:e0:be:a3:43:
        10:4e:7c:a2:c2:c5:de:79:49:c2:10:60:7e:f4:52:77:
        78:6a:b4:45:3f:71:fd:2a:de:c1:c2:43:2e:39:d7:d5:
        89:44:bc:18:98:31:db:d2:37:22:15:4d:08:c0:d3:73:
        a8:c8:bf:97:33:ba:d1:72:85:eb:64:3a:da:f0:95:ec:
        da:9b:b8:3a:bd:65:bb:f4:8e:54:54:f3:b4:aa:81:d1:
        53:98:90:d4:86:d0:14:d1:76:ad:76:6a:12:9a:40:66:
        2e:e2:d2:28:32:ce:33:53:44:f9:44:f7:b4:79:84:91:
        1f:1c:23:2c:52:02:ca:6e:4b:6b:9f:fd:04:bf:17:bb:
        37:ce:1e:af:f1:76:58:3e:48:3f:9f:15:9f:65:6a:87:
        2c:24:4e:37:28:48:ca:f4:f2:de:1f:40:40:5e:3d:34:
        ee:41:bd:3f:7d:4a:cd:d4:64:63:d4:e3:bc:68:e6:9f:
        20:56:a8:d3:d7:f2:5c:dc:ed:37:dd:b3:e3:ac:4d:f6
    Fingerprint (SHA-256):
        84:9A:74:E0:E1:C0:F2:3E:25:F9:5A:FD:38:4A:9B:7B:49:97:EB:5A:D6:C7:43:E3:AB:D1:04:8E:1F:69:14:50
    Fingerprint (SHA1):
        97:4E:CF:62:18:A1:43:1C:0B:66:FD:34:E6:5C:08:AF:E7:93:6E:31
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4091: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4092: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:49 2017
            Not After : Mon May 02 15:44:49 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:1d:7f:ab:79:0c:2e:93:64:5e:24:76:38:c9:e9:a9:
                    81:9a:b3:e4:d1:96:22:38:9d:e5:00:88:a1:10:32:4f:
                    d7:6d:9d:d7:5d:ad:a5:99:c6:a8:77:3a:f2:19:aa:3d:
                    cd:3b:6f:fa:b6:58:75:da:26:7d:69:d9:80:7e:d0:c1:
                    da:01:07:df:db:dd:56:cc:67:65:f0:38:7b:c3:da:6a:
                    e0:8f:de:f8:78:09:52:d7:cf:75:9c:bc:7d:ee:08:c8:
                    34:61:62:88:b4:4e:bf:d1:09:c6:09:0a:36:9a:f1:b9:
                    6c:d5:b5:fa:27:25:40:4e:f9:21:71:c3:bf:2b:cb:75:
                    69:d2:6c:a3:ba:8d:fa:64:6d:4a:5d:60:a1:e2:6d:a0:
                    43:ce:af:be:c9:5a:1b:bd:51:a1:47:33:d2:6d:d2:8c:
                    5a:58:7b:57:8b:61:6b:02:23:22:28:91:1f:e2:49:de:
                    e2:56:c3:97:40:42:e1:aa:37:9e:4c:0a:19:a5:44:be:
                    fc:c1:ef:00:f9:78:03:8d:18:64:f3:9e:f2:77:28:13:
                    c6:35:78:c2:00:02:35:8e:62:95:b0:22:8c:f6:f1:9e:
                    01:8f:55:94:7a:5a:85:1a:4c:50:af:34:7a:b6:80:42:
                    74:0c:f1:44:a5:10:b3:1b:7a:d4:b4:f2:da:29:6f:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3d:bd:13:b5:16:37:62:4e:b3:fb:9e:fc:9d:be:07:6d:
        bd:b4:91:0b:3b:bf:af:42:22:94:2b:72:ea:be:57:5a:
        3f:77:34:49:6e:c4:9e:59:d3:9b:ca:5f:cc:ce:ed:4e:
        5b:75:1f:48:6e:66:8a:bb:8e:c9:6d:89:e0:be:a3:43:
        10:4e:7c:a2:c2:c5:de:79:49:c2:10:60:7e:f4:52:77:
        78:6a:b4:45:3f:71:fd:2a:de:c1:c2:43:2e:39:d7:d5:
        89:44:bc:18:98:31:db:d2:37:22:15:4d:08:c0:d3:73:
        a8:c8:bf:97:33:ba:d1:72:85:eb:64:3a:da:f0:95:ec:
        da:9b:b8:3a:bd:65:bb:f4:8e:54:54:f3:b4:aa:81:d1:
        53:98:90:d4:86:d0:14:d1:76:ad:76:6a:12:9a:40:66:
        2e:e2:d2:28:32:ce:33:53:44:f9:44:f7:b4:79:84:91:
        1f:1c:23:2c:52:02:ca:6e:4b:6b:9f:fd:04:bf:17:bb:
        37:ce:1e:af:f1:76:58:3e:48:3f:9f:15:9f:65:6a:87:
        2c:24:4e:37:28:48:ca:f4:f2:de:1f:40:40:5e:3d:34:
        ee:41:bd:3f:7d:4a:cd:d4:64:63:d4:e3:bc:68:e6:9f:
        20:56:a8:d3:d7:f2:5c:dc:ed:37:dd:b3:e3:ac:4d:f6
    Fingerprint (SHA-256):
        84:9A:74:E0:E1:C0:F2:3E:25:F9:5A:FD:38:4A:9B:7B:49:97:EB:5A:D6:C7:43:E3:AB:D1:04:8E:1F:69:14:50
    Fingerprint (SHA1):
        97:4E:CF:62:18:A1:43:1C:0B:66:FD:34:E6:5C:08:AF:E7:93:6E:31
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4093: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4094: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #4095: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154311 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4096: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #4097: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #4098: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4099: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502154312   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4100: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4101: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4102: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154083.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4103: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154057.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4104: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4105: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #4106: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154083.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4107: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502154313   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4108: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4109: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4110: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154083.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4111: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154058.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4112: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4113: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #4114: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4115: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502154314   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4116: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4117: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4118: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154083.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4119: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154059.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4120: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4121: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4122: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154083.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #4123: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154060.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #4124: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4125: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502154501Z
nextupdate=20180502154501Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:45:01 2017
    Next Update: Wed May 02 15:45:01 2018
    CRL Extensions:
chains.sh: #4126: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154501Z
nextupdate=20180502154501Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:45:01 2017
    Next Update: Wed May 02 15:45:01 2018
    CRL Extensions:
chains.sh: #4127: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502154501Z
nextupdate=20180502154501Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:45:01 2017
    Next Update: Wed May 02 15:45:01 2018
    CRL Extensions:
chains.sh: #4128: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502154501Z
nextupdate=20180502154501Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:45:01 2017
    Next Update: Wed May 02 15:45:01 2018
    CRL Extensions:
chains.sh: #4129: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154502Z
addcert 20 20170502154502Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:45:02 2017
    Next Update: Wed May 02 15:45:01 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:45:02 2017
    CRL Extensions:
chains.sh: #4130: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502154503Z
addcert 40 20170502154503Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:45:03 2017
    Next Update: Wed May 02 15:45:01 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:45:02 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:45:03 2017
    CRL Extensions:
chains.sh: #4131: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #4132: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4133: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #4134: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154311 (0x1dee4447)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:56 2017
            Not After : Mon May 02 15:44:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:62:2c:92:06:5c:e7:8d:28:d5:e6:61:c9:80:02:c1:
                    38:b3:cb:d8:bd:13:e7:1f:c1:ec:29:7c:b3:1c:37:42:
                    30:ab:d1:74:59:19:97:d1:96:ce:13:02:49:7b:65:f7:
                    f3:dc:46:b8:47:76:db:03:bb:d9:57:ab:4b:b8:85:5b:
                    a7:b7:1e:9a:27:63:c2:24:94:35:19:79:96:d7:db:17:
                    ee:c4:e9:18:d8:97:8b:2a:49:a9:a0:fd:e7:ba:48:37:
                    97:d7:a9:dc:0e:eb:3e:cb:fd:a6:35:0e:04:80:2e:23:
                    1d:bf:36:cd:77:4d:db:9e:7b:1f:88:b9:93:15:5c:ba:
                    6b:a4:cf:32:d8:04:b8:6a:cf:d8:82:01:c2:fb:04:3b:
                    32:69:bf:02:4d:1f:27:3b:27:cd:2d:0f:0c:44:d0:83:
                    df:3c:c3:ce:a7:cb:f1:92:94:0d:91:5a:98:bf:b4:e2:
                    09:ed:10:24:da:31:04:11:e8:54:47:f5:22:c7:d4:0e:
                    d6:99:e7:16:c8:d0:14:25:18:77:ce:98:87:92:b6:17:
                    a5:c1:23:66:63:f4:49:e3:37:d5:b6:2b:0f:e2:0c:78:
                    fc:07:42:b9:fc:9d:f1:f0:8f:73:d3:5a:9b:3f:f5:0a:
                    b6:14:65:c3:5a:03:01:66:ee:cb:be:c3:66:81:0a:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:fd:9a:dc:06:53:fb:6a:e6:f3:e6:e0:4a:7c:e4:b1:
        7a:34:b8:8f:3f:47:f6:53:7a:fd:6a:a9:b9:21:f9:86:
        b3:92:14:7a:49:1f:9f:97:63:43:be:6a:83:b4:2b:a8:
        ed:31:7a:60:8d:c0:ae:61:a9:15:76:89:74:36:d8:c8:
        e1:1a:51:7b:0a:68:8d:17:9d:3f:53:48:e6:de:58:3b:
        17:80:2a:da:bd:67:64:fa:55:18:bd:63:78:05:b8:92:
        48:74:be:11:7d:8a:ad:a2:6e:c7:5b:52:f1:02:d3:1a:
        d1:d0:2e:e9:1e:1a:ed:14:eb:bb:4d:7c:34:b3:22:6a:
        10:25:d3:39:e9:2e:99:48:2e:30:97:17:24:d0:09:b0:
        43:0f:98:88:8b:9e:9f:c1:85:78:f8:3b:a0:6b:bb:d0:
        ad:03:98:9d:17:07:13:52:53:39:60:3a:80:d1:1c:68:
        44:54:c1:61:7e:21:44:11:05:82:bb:03:d0:52:d8:19:
        85:ce:0e:e0:a9:66:52:87:2e:1e:7f:5f:dc:dc:e1:b9:
        4e:af:ec:38:b6:55:34:4e:17:b9:74:af:62:77:c4:88:
        aa:88:be:0e:8b:a2:1a:a1:c5:2f:47:f7:bf:d7:ec:02:
        d7:a9:e3:fe:c4:9f:8d:f1:d9:26:98:b9:72:a3:a7:64
    Fingerprint (SHA-256):
        CC:9F:69:04:0B:CF:D3:C3:3A:2D:62:F7:0A:44:40:E3:B7:D6:BC:EB:51:25:55:8E:88:6D:54:73:79:FE:D1:E3
    Fingerprint (SHA1):
        4A:A2:5F:D5:84:42:2E:F2:4D:E0:52:6B:63:EA:B8:B4:31:05:EE:08
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4135: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4136: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154311 (0x1dee4447)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:44:56 2017
            Not After : Mon May 02 15:44:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:62:2c:92:06:5c:e7:8d:28:d5:e6:61:c9:80:02:c1:
                    38:b3:cb:d8:bd:13:e7:1f:c1:ec:29:7c:b3:1c:37:42:
                    30:ab:d1:74:59:19:97:d1:96:ce:13:02:49:7b:65:f7:
                    f3:dc:46:b8:47:76:db:03:bb:d9:57:ab:4b:b8:85:5b:
                    a7:b7:1e:9a:27:63:c2:24:94:35:19:79:96:d7:db:17:
                    ee:c4:e9:18:d8:97:8b:2a:49:a9:a0:fd:e7:ba:48:37:
                    97:d7:a9:dc:0e:eb:3e:cb:fd:a6:35:0e:04:80:2e:23:
                    1d:bf:36:cd:77:4d:db:9e:7b:1f:88:b9:93:15:5c:ba:
                    6b:a4:cf:32:d8:04:b8:6a:cf:d8:82:01:c2:fb:04:3b:
                    32:69:bf:02:4d:1f:27:3b:27:cd:2d:0f:0c:44:d0:83:
                    df:3c:c3:ce:a7:cb:f1:92:94:0d:91:5a:98:bf:b4:e2:
                    09:ed:10:24:da:31:04:11:e8:54:47:f5:22:c7:d4:0e:
                    d6:99:e7:16:c8:d0:14:25:18:77:ce:98:87:92:b6:17:
                    a5:c1:23:66:63:f4:49:e3:37:d5:b6:2b:0f:e2:0c:78:
                    fc:07:42:b9:fc:9d:f1:f0:8f:73:d3:5a:9b:3f:f5:0a:
                    b6:14:65:c3:5a:03:01:66:ee:cb:be:c3:66:81:0a:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:fd:9a:dc:06:53:fb:6a:e6:f3:e6:e0:4a:7c:e4:b1:
        7a:34:b8:8f:3f:47:f6:53:7a:fd:6a:a9:b9:21:f9:86:
        b3:92:14:7a:49:1f:9f:97:63:43:be:6a:83:b4:2b:a8:
        ed:31:7a:60:8d:c0:ae:61:a9:15:76:89:74:36:d8:c8:
        e1:1a:51:7b:0a:68:8d:17:9d:3f:53:48:e6:de:58:3b:
        17:80:2a:da:bd:67:64:fa:55:18:bd:63:78:05:b8:92:
        48:74:be:11:7d:8a:ad:a2:6e:c7:5b:52:f1:02:d3:1a:
        d1:d0:2e:e9:1e:1a:ed:14:eb:bb:4d:7c:34:b3:22:6a:
        10:25:d3:39:e9:2e:99:48:2e:30:97:17:24:d0:09:b0:
        43:0f:98:88:8b:9e:9f:c1:85:78:f8:3b:a0:6b:bb:d0:
        ad:03:98:9d:17:07:13:52:53:39:60:3a:80:d1:1c:68:
        44:54:c1:61:7e:21:44:11:05:82:bb:03:d0:52:d8:19:
        85:ce:0e:e0:a9:66:52:87:2e:1e:7f:5f:dc:dc:e1:b9:
        4e:af:ec:38:b6:55:34:4e:17:b9:74:af:62:77:c4:88:
        aa:88:be:0e:8b:a2:1a:a1:c5:2f:47:f7:bf:d7:ec:02:
        d7:a9:e3:fe:c4:9f:8d:f1:d9:26:98:b9:72:a3:a7:64
    Fingerprint (SHA-256):
        CC:9F:69:04:0B:CF:D3:C3:3A:2D:62:F7:0A:44:40:E3:B7:D6:BC:EB:51:25:55:8E:88:6D:54:73:79:FE:D1:E3
    Fingerprint (SHA1):
        4A:A2:5F:D5:84:42:2E:F2:4D:E0:52:6B:63:EA:B8:B4:31:05:EE:08
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #4137: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #4138: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #4139: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154315 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4140: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #4141: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #4142: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4143: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154316   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4144: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4145: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #4146: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4147: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154317   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4148: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4149: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #4150: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4151: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502154318   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4152: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4153: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #4154: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -m 502154319 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #4155: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #4156: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #4157: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #4158: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502154320   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4159: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4160: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #4161: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #4162: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502154321   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cu_data
=== Certutil input data ===
===
chains.sh: #4163: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #4164: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #4165: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #4166: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #4167: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154315 (0x1dee444b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:04 2017
            Not After : Mon May 02 15:45:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:82:34:f4:27:ad:3a:79:3e:a1:44:68:25:b4:84:de:
                    93:f4:65:a1:28:be:58:4f:2b:07:66:fd:14:5d:86:e6:
                    1b:88:af:16:e6:56:74:4d:68:94:4b:17:34:06:d2:29:
                    45:d0:d9:95:51:54:fe:6f:09:e3:23:33:b1:31:19:52:
                    0e:d8:e0:c0:b8:4e:77:9e:ea:b9:84:37:a5:30:79:01:
                    f0:9c:1a:53:56:c9:f7:b6:04:35:ea:7f:f7:11:2c:12:
                    80:54:cf:5d:79:35:f4:76:4b:7d:89:55:c1:55:dd:45:
                    c8:53:f3:33:05:81:e5:e8:6b:68:69:83:29:f5:ac:50:
                    31:ea:fe:eb:94:20:38:44:52:5c:3d:60:0a:f7:ed:70:
                    f1:eb:9f:10:e1:72:37:3f:7f:09:18:ad:08:21:b5:3a:
                    45:f5:39:3d:df:85:1a:21:d5:68:a5:f4:5a:25:cd:02:
                    8e:f7:44:54:0d:3a:7f:fc:b2:85:c8:ec:bb:97:69:f4:
                    a3:8c:01:14:78:45:1d:10:f1:e5:0c:a6:4d:29:f8:fe:
                    7e:43:fb:64:34:76:66:a2:25:ae:80:38:2e:0f:16:6c:
                    24:e9:29:a7:1e:02:a6:90:62:01:8a:13:0f:38:8f:2d:
                    5e:32:f9:ca:34:c1:8b:a6:99:97:0c:c7:5f:6b:f2:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:86:77:82:29:4f:37:f4:1e:c7:1f:3b:c7:f8:2c:fe:
        20:fc:e4:f7:d4:7c:88:c6:19:4e:8f:9b:fb:13:74:4f:
        7e:94:cf:17:4d:2d:4b:c9:a9:07:b3:9e:7c:82:28:fa:
        85:11:5c:63:0a:f7:6e:77:b5:00:ba:03:e5:ed:d2:dc:
        56:f2:de:04:61:5f:00:cd:26:88:23:bf:4d:62:bd:a5:
        0a:78:fa:af:a9:71:42:0b:06:59:0e:e7:32:ca:5a:53:
        6a:4c:3f:d1:c1:d1:f0:8a:f2:c9:b1:8a:38:0d:8e:60:
        be:39:c4:6c:77:82:34:61:84:bc:07:62:cc:c7:17:b0:
        82:04:28:06:26:c6:7a:7a:91:b9:1d:01:a8:46:43:5c:
        d6:7d:d0:68:80:aa:fc:f8:2b:72:4e:ac:31:92:19:c5:
        bf:58:50:4e:f3:6a:99:23:31:bf:73:3c:05:57:45:7a:
        f6:b6:43:56:96:68:b6:6f:9b:b7:ac:69:a4:24:85:bc:
        39:85:35:cb:0d:86:61:8c:e4:bc:4f:82:43:54:e7:b6:
        e9:0f:a9:14:c2:37:16:14:02:06:55:b7:b2:d4:69:85:
        ad:1a:64:74:ba:29:22:27:47:8d:98:3d:2a:a6:3d:37:
        f8:0f:58:c8:a0:ba:5c:a7:1f:22:05:86:ab:1a:c3:96
    Fingerprint (SHA-256):
        CD:E0:55:C9:2A:77:C7:55:0F:C0:1C:B5:72:5E:17:6A:D7:22:CF:9F:47:A9:A9:0F:DF:42:01:E2:46:5E:F5:ED
    Fingerprint (SHA1):
        D2:F2:A3:AB:1F:6B:74:47:7D:78:C2:74:DD:21:FB:40:EB:C8:D7:12
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4168: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154317 (0x1dee444d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:45:06 2017
            Not After : Mon May 02 15:45:06 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:16:1f:25:cc:0d:7f:c7:79:60:52:3c:de:e4:1e:e0:
                    15:be:a7:3c:84:06:94:f1:a0:c8:78:a3:12:76:f5:08:
                    ac:96:79:5a:17:d2:d3:2a:20:82:1a:90:2f:4e:b8:63:
                    d1:a9:15:bd:27:1f:f5:a8:11:fd:74:ed:1f:06:d9:3f:
                    40:9b:f5:54:66:89:12:51:2b:09:19:75:a9:48:ad:d1:
                    4f:15:1f:fb:a3:ab:f3:20:5b:cd:d3:3e:70:bd:08:a9:
                    25:99:21:6e:66:e8:ad:f1:ea:4d:a5:77:9d:ae:ff:f4:
                    f8:e7:4f:e4:22:7f:4d:a9:31:27:21:95:1a:06:11:67:
                    36:9c:f1:10:1e:e9:b3:63:9c:e4:91:c3:b7:1c:2e:8f:
                    7d:6d:9b:dd:9f:ab:5a:c6:30:43:1e:4f:62:55:2f:9a:
                    2a:56:06:1b:3f:25:e2:9d:9e:e5:2c:94:fe:a8:55:bf:
                    a7:c5:5e:d2:7b:56:91:bd:e7:ba:93:ad:9d:95:71:90:
                    ab:4f:ec:52:d8:2f:cc:62:cf:47:5e:c0:75:61:37:a8:
                    72:69:0b:09:da:64:f0:cf:45:2b:e6:ac:e1:21:8c:4d:
                    79:51:c6:0e:24:fd:c0:0f:89:a5:9a:c1:d0:66:88:bc:
                    a2:0b:43:f5:8e:8d:d7:53:27:e4:63:42:b3:c2:fe:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:e7:52:af:45:cd:f6:22:47:ad:b9:27:d9:21:1b:bf:
        00:50:6a:9b:85:25:f5:3e:15:21:16:01:8a:51:4d:07:
        64:9a:08:61:86:76:69:06:fb:14:49:94:64:46:a5:a6:
        d6:01:62:67:97:b1:09:0c:3f:26:17:a2:f1:44:bf:7c:
        ab:ef:74:fb:9b:d7:d5:38:8f:ee:31:db:88:0c:ec:71:
        00:97:40:ec:09:ae:2d:3e:c6:d8:bf:75:9c:89:5d:ed:
        c2:3b:6d:b4:b6:ee:f3:e7:15:12:47:21:1f:d7:c6:1c:
        20:b3:ef:61:40:1d:81:d5:a1:5d:7a:2b:8b:52:be:58:
        ee:4c:db:51:88:26:6c:77:06:c9:5d:22:9a:11:b6:45:
        11:f2:0c:3b:ee:a8:1f:e2:fa:ce:aa:cc:60:1b:be:dc:
        6a:c0:df:32:ef:8a:80:ad:32:a1:36:2c:a2:f7:43:8a:
        9c:90:64:e0:3b:00:71:97:95:ba:79:57:54:90:6a:93:
        cf:26:fd:b3:0a:99:03:1a:99:3c:5f:03:2f:63:30:19:
        46:37:1e:5b:ad:b5:34:fe:c5:ea:dd:4e:e1:dd:fe:5e:
        f6:4a:73:3b:ab:3a:d1:f4:f9:d2:b0:3f:6a:cf:31:1b:
        92:d3:59:4b:83:88:40:c2:27:16:b0:46:49:80:86:69
    Fingerprint (SHA-256):
        19:8F:D2:F8:21:29:2C:C9:88:BD:39:04:FF:93:E4:68:88:99:99:53:1B:F4:DA:C7:9C:E0:EA:ED:A7:1A:E1:7C
    Fingerprint (SHA1):
        EC:ED:E9:4A:B3:97:59:B7:36:7B:8B:AD:5E:BA:3A:EC:AF:08:B4:DB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4169: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154315 (0x1dee444b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:04 2017
            Not After : Mon May 02 15:45:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:82:34:f4:27:ad:3a:79:3e:a1:44:68:25:b4:84:de:
                    93:f4:65:a1:28:be:58:4f:2b:07:66:fd:14:5d:86:e6:
                    1b:88:af:16:e6:56:74:4d:68:94:4b:17:34:06:d2:29:
                    45:d0:d9:95:51:54:fe:6f:09:e3:23:33:b1:31:19:52:
                    0e:d8:e0:c0:b8:4e:77:9e:ea:b9:84:37:a5:30:79:01:
                    f0:9c:1a:53:56:c9:f7:b6:04:35:ea:7f:f7:11:2c:12:
                    80:54:cf:5d:79:35:f4:76:4b:7d:89:55:c1:55:dd:45:
                    c8:53:f3:33:05:81:e5:e8:6b:68:69:83:29:f5:ac:50:
                    31:ea:fe:eb:94:20:38:44:52:5c:3d:60:0a:f7:ed:70:
                    f1:eb:9f:10:e1:72:37:3f:7f:09:18:ad:08:21:b5:3a:
                    45:f5:39:3d:df:85:1a:21:d5:68:a5:f4:5a:25:cd:02:
                    8e:f7:44:54:0d:3a:7f:fc:b2:85:c8:ec:bb:97:69:f4:
                    a3:8c:01:14:78:45:1d:10:f1:e5:0c:a6:4d:29:f8:fe:
                    7e:43:fb:64:34:76:66:a2:25:ae:80:38:2e:0f:16:6c:
                    24:e9:29:a7:1e:02:a6:90:62:01:8a:13:0f:38:8f:2d:
                    5e:32:f9:ca:34:c1:8b:a6:99:97:0c:c7:5f:6b:f2:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:86:77:82:29:4f:37:f4:1e:c7:1f:3b:c7:f8:2c:fe:
        20:fc:e4:f7:d4:7c:88:c6:19:4e:8f:9b:fb:13:74:4f:
        7e:94:cf:17:4d:2d:4b:c9:a9:07:b3:9e:7c:82:28:fa:
        85:11:5c:63:0a:f7:6e:77:b5:00:ba:03:e5:ed:d2:dc:
        56:f2:de:04:61:5f:00:cd:26:88:23:bf:4d:62:bd:a5:
        0a:78:fa:af:a9:71:42:0b:06:59:0e:e7:32:ca:5a:53:
        6a:4c:3f:d1:c1:d1:f0:8a:f2:c9:b1:8a:38:0d:8e:60:
        be:39:c4:6c:77:82:34:61:84:bc:07:62:cc:c7:17:b0:
        82:04:28:06:26:c6:7a:7a:91:b9:1d:01:a8:46:43:5c:
        d6:7d:d0:68:80:aa:fc:f8:2b:72:4e:ac:31:92:19:c5:
        bf:58:50:4e:f3:6a:99:23:31:bf:73:3c:05:57:45:7a:
        f6:b6:43:56:96:68:b6:6f:9b:b7:ac:69:a4:24:85:bc:
        39:85:35:cb:0d:86:61:8c:e4:bc:4f:82:43:54:e7:b6:
        e9:0f:a9:14:c2:37:16:14:02:06:55:b7:b2:d4:69:85:
        ad:1a:64:74:ba:29:22:27:47:8d:98:3d:2a:a6:3d:37:
        f8:0f:58:c8:a0:ba:5c:a7:1f:22:05:86:ab:1a:c3:96
    Fingerprint (SHA-256):
        CD:E0:55:C9:2A:77:C7:55:0F:C0:1C:B5:72:5E:17:6A:D7:22:CF:9F:47:A9:A9:0F:DF:42:01:E2:46:5E:F5:ED
    Fingerprint (SHA1):
        D2:F2:A3:AB:1F:6B:74:47:7D:78:C2:74:DD:21:FB:40:EB:C8:D7:12
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4170: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #4171: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154315 (0x1dee444b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:04 2017
            Not After : Mon May 02 15:45:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:82:34:f4:27:ad:3a:79:3e:a1:44:68:25:b4:84:de:
                    93:f4:65:a1:28:be:58:4f:2b:07:66:fd:14:5d:86:e6:
                    1b:88:af:16:e6:56:74:4d:68:94:4b:17:34:06:d2:29:
                    45:d0:d9:95:51:54:fe:6f:09:e3:23:33:b1:31:19:52:
                    0e:d8:e0:c0:b8:4e:77:9e:ea:b9:84:37:a5:30:79:01:
                    f0:9c:1a:53:56:c9:f7:b6:04:35:ea:7f:f7:11:2c:12:
                    80:54:cf:5d:79:35:f4:76:4b:7d:89:55:c1:55:dd:45:
                    c8:53:f3:33:05:81:e5:e8:6b:68:69:83:29:f5:ac:50:
                    31:ea:fe:eb:94:20:38:44:52:5c:3d:60:0a:f7:ed:70:
                    f1:eb:9f:10:e1:72:37:3f:7f:09:18:ad:08:21:b5:3a:
                    45:f5:39:3d:df:85:1a:21:d5:68:a5:f4:5a:25:cd:02:
                    8e:f7:44:54:0d:3a:7f:fc:b2:85:c8:ec:bb:97:69:f4:
                    a3:8c:01:14:78:45:1d:10:f1:e5:0c:a6:4d:29:f8:fe:
                    7e:43:fb:64:34:76:66:a2:25:ae:80:38:2e:0f:16:6c:
                    24:e9:29:a7:1e:02:a6:90:62:01:8a:13:0f:38:8f:2d:
                    5e:32:f9:ca:34:c1:8b:a6:99:97:0c:c7:5f:6b:f2:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:86:77:82:29:4f:37:f4:1e:c7:1f:3b:c7:f8:2c:fe:
        20:fc:e4:f7:d4:7c:88:c6:19:4e:8f:9b:fb:13:74:4f:
        7e:94:cf:17:4d:2d:4b:c9:a9:07:b3:9e:7c:82:28:fa:
        85:11:5c:63:0a:f7:6e:77:b5:00:ba:03:e5:ed:d2:dc:
        56:f2:de:04:61:5f:00:cd:26:88:23:bf:4d:62:bd:a5:
        0a:78:fa:af:a9:71:42:0b:06:59:0e:e7:32:ca:5a:53:
        6a:4c:3f:d1:c1:d1:f0:8a:f2:c9:b1:8a:38:0d:8e:60:
        be:39:c4:6c:77:82:34:61:84:bc:07:62:cc:c7:17:b0:
        82:04:28:06:26:c6:7a:7a:91:b9:1d:01:a8:46:43:5c:
        d6:7d:d0:68:80:aa:fc:f8:2b:72:4e:ac:31:92:19:c5:
        bf:58:50:4e:f3:6a:99:23:31:bf:73:3c:05:57:45:7a:
        f6:b6:43:56:96:68:b6:6f:9b:b7:ac:69:a4:24:85:bc:
        39:85:35:cb:0d:86:61:8c:e4:bc:4f:82:43:54:e7:b6:
        e9:0f:a9:14:c2:37:16:14:02:06:55:b7:b2:d4:69:85:
        ad:1a:64:74:ba:29:22:27:47:8d:98:3d:2a:a6:3d:37:
        f8:0f:58:c8:a0:ba:5c:a7:1f:22:05:86:ab:1a:c3:96
    Fingerprint (SHA-256):
        CD:E0:55:C9:2A:77:C7:55:0F:C0:1C:B5:72:5E:17:6A:D7:22:CF:9F:47:A9:A9:0F:DF:42:01:E2:46:5E:F5:ED
    Fingerprint (SHA1):
        D2:F2:A3:AB:1F:6B:74:47:7D:78:C2:74:DD:21:FB:40:EB:C8:D7:12
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4172: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154317 (0x1dee444d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:45:06 2017
            Not After : Mon May 02 15:45:06 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:16:1f:25:cc:0d:7f:c7:79:60:52:3c:de:e4:1e:e0:
                    15:be:a7:3c:84:06:94:f1:a0:c8:78:a3:12:76:f5:08:
                    ac:96:79:5a:17:d2:d3:2a:20:82:1a:90:2f:4e:b8:63:
                    d1:a9:15:bd:27:1f:f5:a8:11:fd:74:ed:1f:06:d9:3f:
                    40:9b:f5:54:66:89:12:51:2b:09:19:75:a9:48:ad:d1:
                    4f:15:1f:fb:a3:ab:f3:20:5b:cd:d3:3e:70:bd:08:a9:
                    25:99:21:6e:66:e8:ad:f1:ea:4d:a5:77:9d:ae:ff:f4:
                    f8:e7:4f:e4:22:7f:4d:a9:31:27:21:95:1a:06:11:67:
                    36:9c:f1:10:1e:e9:b3:63:9c:e4:91:c3:b7:1c:2e:8f:
                    7d:6d:9b:dd:9f:ab:5a:c6:30:43:1e:4f:62:55:2f:9a:
                    2a:56:06:1b:3f:25:e2:9d:9e:e5:2c:94:fe:a8:55:bf:
                    a7:c5:5e:d2:7b:56:91:bd:e7:ba:93:ad:9d:95:71:90:
                    ab:4f:ec:52:d8:2f:cc:62:cf:47:5e:c0:75:61:37:a8:
                    72:69:0b:09:da:64:f0:cf:45:2b:e6:ac:e1:21:8c:4d:
                    79:51:c6:0e:24:fd:c0:0f:89:a5:9a:c1:d0:66:88:bc:
                    a2:0b:43:f5:8e:8d:d7:53:27:e4:63:42:b3:c2:fe:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:e7:52:af:45:cd:f6:22:47:ad:b9:27:d9:21:1b:bf:
        00:50:6a:9b:85:25:f5:3e:15:21:16:01:8a:51:4d:07:
        64:9a:08:61:86:76:69:06:fb:14:49:94:64:46:a5:a6:
        d6:01:62:67:97:b1:09:0c:3f:26:17:a2:f1:44:bf:7c:
        ab:ef:74:fb:9b:d7:d5:38:8f:ee:31:db:88:0c:ec:71:
        00:97:40:ec:09:ae:2d:3e:c6:d8:bf:75:9c:89:5d:ed:
        c2:3b:6d:b4:b6:ee:f3:e7:15:12:47:21:1f:d7:c6:1c:
        20:b3:ef:61:40:1d:81:d5:a1:5d:7a:2b:8b:52:be:58:
        ee:4c:db:51:88:26:6c:77:06:c9:5d:22:9a:11:b6:45:
        11:f2:0c:3b:ee:a8:1f:e2:fa:ce:aa:cc:60:1b:be:dc:
        6a:c0:df:32:ef:8a:80:ad:32:a1:36:2c:a2:f7:43:8a:
        9c:90:64:e0:3b:00:71:97:95:ba:79:57:54:90:6a:93:
        cf:26:fd:b3:0a:99:03:1a:99:3c:5f:03:2f:63:30:19:
        46:37:1e:5b:ad:b5:34:fe:c5:ea:dd:4e:e1:dd:fe:5e:
        f6:4a:73:3b:ab:3a:d1:f4:f9:d2:b0:3f:6a:cf:31:1b:
        92:d3:59:4b:83:88:40:c2:27:16:b0:46:49:80:86:69
    Fingerprint (SHA-256):
        19:8F:D2:F8:21:29:2C:C9:88:BD:39:04:FF:93:E4:68:88:99:99:53:1B:F4:DA:C7:9C:E0:EA:ED:A7:1A:E1:7C
    Fingerprint (SHA1):
        EC:ED:E9:4A:B3:97:59:B7:36:7B:8B:AD:5E:BA:3A:EC:AF:08:B4:DB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4173: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #4174: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #4175: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #4176: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154315 (0x1dee444b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:04 2017
            Not After : Mon May 02 15:45:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:82:34:f4:27:ad:3a:79:3e:a1:44:68:25:b4:84:de:
                    93:f4:65:a1:28:be:58:4f:2b:07:66:fd:14:5d:86:e6:
                    1b:88:af:16:e6:56:74:4d:68:94:4b:17:34:06:d2:29:
                    45:d0:d9:95:51:54:fe:6f:09:e3:23:33:b1:31:19:52:
                    0e:d8:e0:c0:b8:4e:77:9e:ea:b9:84:37:a5:30:79:01:
                    f0:9c:1a:53:56:c9:f7:b6:04:35:ea:7f:f7:11:2c:12:
                    80:54:cf:5d:79:35:f4:76:4b:7d:89:55:c1:55:dd:45:
                    c8:53:f3:33:05:81:e5:e8:6b:68:69:83:29:f5:ac:50:
                    31:ea:fe:eb:94:20:38:44:52:5c:3d:60:0a:f7:ed:70:
                    f1:eb:9f:10:e1:72:37:3f:7f:09:18:ad:08:21:b5:3a:
                    45:f5:39:3d:df:85:1a:21:d5:68:a5:f4:5a:25:cd:02:
                    8e:f7:44:54:0d:3a:7f:fc:b2:85:c8:ec:bb:97:69:f4:
                    a3:8c:01:14:78:45:1d:10:f1:e5:0c:a6:4d:29:f8:fe:
                    7e:43:fb:64:34:76:66:a2:25:ae:80:38:2e:0f:16:6c:
                    24:e9:29:a7:1e:02:a6:90:62:01:8a:13:0f:38:8f:2d:
                    5e:32:f9:ca:34:c1:8b:a6:99:97:0c:c7:5f:6b:f2:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:86:77:82:29:4f:37:f4:1e:c7:1f:3b:c7:f8:2c:fe:
        20:fc:e4:f7:d4:7c:88:c6:19:4e:8f:9b:fb:13:74:4f:
        7e:94:cf:17:4d:2d:4b:c9:a9:07:b3:9e:7c:82:28:fa:
        85:11:5c:63:0a:f7:6e:77:b5:00:ba:03:e5:ed:d2:dc:
        56:f2:de:04:61:5f:00:cd:26:88:23:bf:4d:62:bd:a5:
        0a:78:fa:af:a9:71:42:0b:06:59:0e:e7:32:ca:5a:53:
        6a:4c:3f:d1:c1:d1:f0:8a:f2:c9:b1:8a:38:0d:8e:60:
        be:39:c4:6c:77:82:34:61:84:bc:07:62:cc:c7:17:b0:
        82:04:28:06:26:c6:7a:7a:91:b9:1d:01:a8:46:43:5c:
        d6:7d:d0:68:80:aa:fc:f8:2b:72:4e:ac:31:92:19:c5:
        bf:58:50:4e:f3:6a:99:23:31:bf:73:3c:05:57:45:7a:
        f6:b6:43:56:96:68:b6:6f:9b:b7:ac:69:a4:24:85:bc:
        39:85:35:cb:0d:86:61:8c:e4:bc:4f:82:43:54:e7:b6:
        e9:0f:a9:14:c2:37:16:14:02:06:55:b7:b2:d4:69:85:
        ad:1a:64:74:ba:29:22:27:47:8d:98:3d:2a:a6:3d:37:
        f8:0f:58:c8:a0:ba:5c:a7:1f:22:05:86:ab:1a:c3:96
    Fingerprint (SHA-256):
        CD:E0:55:C9:2A:77:C7:55:0F:C0:1C:B5:72:5E:17:6A:D7:22:CF:9F:47:A9:A9:0F:DF:42:01:E2:46:5E:F5:ED
    Fingerprint (SHA1):
        D2:F2:A3:AB:1F:6B:74:47:7D:78:C2:74:DD:21:FB:40:EB:C8:D7:12
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4177: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154319 (0x1dee444f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:45:07 2017
            Not After : Mon May 02 15:45:07 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:09:bc:d9:e0:ad:65:67:5f:31:7c:b3:2b:9a:62:06:
                    93:c2:6a:95:c2:06:38:e7:68:c6:35:73:60:dd:58:e1:
                    f9:eb:10:90:5e:dd:a6:44:da:20:b6:24:0c:20:d6:84:
                    6e:63:3c:37:b9:26:20:e3:3b:9a:0f:09:6b:3f:b6:2c:
                    38:44:2a:42:42:65:6f:ec:93:c1:2b:81:61:51:6d:12:
                    7d:fc:7b:0d:a6:54:a9:4c:1b:f0:67:8c:5c:fd:d1:31:
                    a1:77:2a:5e:1a:6f:0a:43:d8:02:cf:5c:58:dd:23:f9:
                    48:83:31:19:a7:b2:9a:bc:f2:87:5d:e5:2c:53:03:3a:
                    db:39:57:7b:c7:13:09:e0:33:c3:4e:6f:68:bb:3f:16:
                    ff:ac:a6:4a:25:5b:ce:20:c3:11:83:53:86:ee:64:d0:
                    a9:43:a5:5c:67:8d:e6:3a:f2:28:03:33:e8:77:d9:48:
                    52:ce:31:bc:75:03:2b:35:2b:a9:71:00:39:60:78:93:
                    aa:e1:e2:e1:c0:4d:53:83:a6:17:60:bc:35:8b:17:fb:
                    13:9d:4c:4a:a9:d9:ed:5e:a0:7b:37:ad:92:69:06:af:
                    cb:a8:e8:4d:88:aa:c5:e0:08:7f:bb:39:0f:c5:0b:65:
                    bb:e2:1f:a2:31:f9:e1:6d:82:3a:71:32:e5:14:0f:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:bd:87:51:69:4e:c9:b5:b8:2a:a3:66:76:8d:95:05:
        ec:10:9f:a5:94:34:64:7b:5c:af:b4:66:a5:40:52:06:
        9d:4e:b4:e7:42:72:d4:c4:50:2e:0c:be:14:54:3f:53:
        4d:e4:ce:b3:f6:98:08:c8:3c:2d:5e:43:60:bd:15:63:
        71:77:d3:c3:27:f6:ad:b8:3a:65:a0:ae:ce:92:94:c0:
        ea:fc:4e:33:2f:c0:81:8c:71:3c:19:54:12:51:4c:da:
        af:39:48:dc:1a:f4:e2:13:46:02:99:5c:1c:5b:e6:4e:
        27:34:a6:d2:f7:77:67:35:7f:09:87:64:0e:a1:c4:9c:
        6f:f2:39:16:cb:5c:ca:6a:1c:00:98:c1:8f:93:ee:18:
        4b:fc:95:a9:17:d7:50:dd:49:19:09:07:fb:af:1c:0a:
        c7:a0:70:60:c6:0f:dd:fc:94:72:0d:2f:f2:48:c9:9b:
        ed:fa:3d:0b:01:f6:53:d5:8a:54:6c:e8:53:47:ed:a2:
        9b:49:f0:1f:07:58:c0:ae:6f:e6:5b:a1:37:fb:bc:26:
        c7:f5:45:0d:5b:fe:dd:00:35:65:7e:de:ba:fe:f7:64:
        c9:b4:88:05:df:15:61:a7:93:1c:2c:a7:8a:86:51:53:
        08:3a:27:03:75:21:c5:0b:6c:ab:65:0b:b2:99:9e:be
    Fingerprint (SHA-256):
        0C:7A:F1:07:AD:3F:5A:DD:D2:D7:F4:91:FD:50:B9:BE:FD:D4:30:85:FC:32:18:8B:01:EA:D7:F2:C8:BF:69:15
    Fingerprint (SHA1):
        8E:D0:B6:F6:34:01:A5:1C:A9:9D:4E:69:C8:80:24:3C:76:70:EE:2C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #4178: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154315 (0x1dee444b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:45:04 2017
            Not After : Mon May 02 15:45:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b2:82:34:f4:27:ad:3a:79:3e:a1:44:68:25:b4:84:de:
                    93:f4:65:a1:28:be:58:4f:2b:07:66:fd:14:5d:86:e6:
                    1b:88:af:16:e6:56:74:4d:68:94:4b:17:34:06:d2:29:
                    45:d0:d9:95:51:54:fe:6f:09:e3:23:33:b1:31:19:52:
                    0e:d8:e0:c0:b8:4e:77:9e:ea:b9:84:37:a5:30:79:01:
                    f0:9c:1a:53:56:c9:f7:b6:04:35:ea:7f:f7:11:2c:12:
                    80:54:cf:5d:79:35:f4:76:4b:7d:89:55:c1:55:dd:45:
                    c8:53:f3:33:05:81:e5:e8:6b:68:69:83:29:f5:ac:50:
                    31:ea:fe:eb:94:20:38:44:52:5c:3d:60:0a:f7:ed:70:
                    f1:eb:9f:10:e1:72:37:3f:7f:09:18:ad:08:21:b5:3a:
                    45:f5:39:3d:df:85:1a:21:d5:68:a5:f4:5a:25:cd:02:
                    8e:f7:44:54:0d:3a:7f:fc:b2:85:c8:ec:bb:97:69:f4:
                    a3:8c:01:14:78:45:1d:10:f1:e5:0c:a6:4d:29:f8:fe:
                    7e:43:fb:64:34:76:66:a2:25:ae:80:38:2e:0f:16:6c:
                    24:e9:29:a7:1e:02:a6:90:62:01:8a:13:0f:38:8f:2d:
                    5e:32:f9:ca:34:c1:8b:a6:99:97:0c:c7:5f:6b:f2:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:86:77:82:29:4f:37:f4:1e:c7:1f:3b:c7:f8:2c:fe:
        20:fc:e4:f7:d4:7c:88:c6:19:4e:8f:9b:fb:13:74:4f:
        7e:94:cf:17:4d:2d:4b:c9:a9:07:b3:9e:7c:82:28:fa:
        85:11:5c:63:0a:f7:6e:77:b5:00:ba:03:e5:ed:d2:dc:
        56:f2:de:04:61:5f:00:cd:26:88:23:bf:4d:62:bd:a5:
        0a:78:fa:af:a9:71:42:0b:06:59:0e:e7:32:ca:5a:53:
        6a:4c:3f:d1:c1:d1:f0:8a:f2:c9:b1:8a:38:0d:8e:60:
        be:39:c4:6c:77:82:34:61:84:bc:07:62:cc:c7:17:b0:
        82:04:28:06:26:c6:7a:7a:91:b9:1d:01:a8:46:43:5c:
        d6:7d:d0:68:80:aa:fc:f8:2b:72:4e:ac:31:92:19:c5:
        bf:58:50:4e:f3:6a:99:23:31:bf:73:3c:05:57:45:7a:
        f6:b6:43:56:96:68:b6:6f:9b:b7:ac:69:a4:24:85:bc:
        39:85:35:cb:0d:86:61:8c:e4:bc:4f:82:43:54:e7:b6:
        e9:0f:a9:14:c2:37:16:14:02:06:55:b7:b2:d4:69:85:
        ad:1a:64:74:ba:29:22:27:47:8d:98:3d:2a:a6:3d:37:
        f8:0f:58:c8:a0:ba:5c:a7:1f:22:05:86:ab:1a:c3:96
    Fingerprint (SHA-256):
        CD:E0:55:C9:2A:77:C7:55:0F:C0:1C:B5:72:5E:17:6A:D7:22:CF:9F:47:A9:A9:0F:DF:42:01:E2:46:5E:F5:ED
    Fingerprint (SHA1):
        D2:F2:A3:AB:1F:6B:74:47:7D:78:C2:74:DD:21:FB:40:EB:C8:D7:12
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #4179: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #4180: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #4181: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #4182: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #4183: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #4184: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154320 (0x1dee4450)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:45:07 2017
            Not After : Mon May 02 15:45:07 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:75:0b:27:7d:b8:f2:2f:4e:14:f0:aa:7b:44:54:41:
                    f3:f2:16:ff:51:07:0b:fd:46:e9:9d:d9:e3:dd:27:fc:
                    88:f5:26:d2:b5:6f:e2:79:e5:7e:1f:58:e2:51:38:bc:
                    17:10:00:87:31:de:bb:40:45:95:3b:00:c0:2f:f4:80:
                    19:3d:7b:8c:8c:a9:29:8f:fb:39:00:4e:ed:69:4f:4a:
                    13:d6:85:91:47:f4:27:89:c5:42:9a:50:d5:5f:fc:70:
                    fa:be:72:a3:a0:5b:c4:00:ae:52:89:e6:71:f2:0d:3e:
                    2f:44:86:2b:50:2c:14:d2:88:41:e1:aa:a7:58:84:0f:
                    60:a1:93:0b:da:24:16:13:23:5a:7a:ec:36:95:54:4d:
                    90:a0:73:0f:27:01:50:3e:fd:03:a4:4d:12:0f:21:b6:
                    14:e0:30:ec:0c:8b:17:3b:89:45:26:fe:71:95:6c:44:
                    6f:63:e1:cd:a5:50:d9:08:c2:67:67:bb:a2:68:1f:d1:
                    51:a4:8e:54:e8:a4:6f:53:fe:c0:1b:7a:b8:de:75:ed:
                    ec:5e:67:ec:85:f0:48:c0:3d:e4:b4:99:09:a1:b9:33:
                    88:35:44:b7:a7:c5:c2:3c:28:8c:14:c9:3f:6e:aa:24:
                    c3:bd:57:8d:ae:1f:62:26:16:35:7d:32:17:66:38:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        46:eb:00:f5:8c:53:16:53:2c:a8:6d:21:7b:bd:08:8f:
        e7:ed:d0:cc:f3:e4:90:b5:b3:29:24:03:0f:d6:7f:ca:
        70:f2:a6:e4:46:5b:56:03:48:9e:dc:64:f7:92:e3:43:
        84:1c:2a:4a:2c:98:ec:73:73:35:0d:57:6a:70:c4:68:
        92:d8:61:b1:e1:c6:ee:b1:43:7d:53:c7:b3:d8:cd:65:
        e1:13:92:6e:68:11:9c:81:6d:e1:04:08:73:a7:ce:75:
        be:9f:08:a6:fd:cb:aa:96:5b:68:00:21:40:09:57:9b:
        52:c7:60:44:a2:26:48:c9:c0:c0:fc:0c:7f:d1:b5:50:
        44:cd:86:74:c7:ae:67:3e:e4:9b:af:3b:60:ea:6f:16:
        93:c3:33:fe:49:3f:d1:fd:4a:f6:d9:5b:f6:55:af:f1:
        43:69:86:14:0f:90:aa:c7:3f:f0:74:55:b3:c1:bb:92:
        9f:23:b8:8c:a1:a7:7f:dc:b3:b9:44:90:db:c2:de:5c:
        f2:a2:07:ba:55:fe:ac:48:76:9c:cb:7c:8a:72:b1:3d:
        c6:e9:50:48:c6:18:d8:29:d5:be:95:ad:dc:7d:01:41:
        fe:fd:a5:02:11:25:f1:7e:d0:04:02:3d:0b:3f:9b:7c:
        a0:ff:1f:b4:d8:2b:ce:2c:62:d2:3a:08:39:85:6f:48
    Fingerprint (SHA-256):
        C6:E1:44:05:D0:C4:1E:8E:2A:AD:F0:CC:D2:5B:BD:0F:C3:47:89:F7:45:EC:62:3F:A9:4A:62:51:B8:4D:D9:A5
    Fingerprint (SHA1):
        A7:19:D2:62:0C:70:C8:7C:25:F2:AC:10:0B:86:01:6B:ED:E1:52:52
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #4185: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #4186: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #4187: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #4188: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #4189: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4190: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4191: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4192: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4193: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4194: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4195: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4196: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4197: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4198: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4199: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #4200: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4201: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #4202: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4203: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #4204: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4205: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4206: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #4207: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #4208: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 8259 at Tue May  2 15:45:11 UTC 2017
kill -USR1 8259
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 8259 killed at Tue May  2 15:45:11 UTC 2017
TIMESTAMP chains END: Tue May  2 15:45:11 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:45:11 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:45:11 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #4209: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:45:11 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:45:11 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4210: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4211: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4212: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #4213: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #4214: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #4215: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:45:11 UTC 2017
TIMESTAMP ec END: Tue May  2 15:45:11 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:45:11 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (4 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (1 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (1 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (7 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #4216: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #4217: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #4218: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #4219: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #4220: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #4221: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #4222: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #4223: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #4224: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #4225: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #4226: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #4227: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #4228: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #4229: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #4230: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #4231: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #4232: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #4233: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #4234: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:45:11 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:45:11 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #4235: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4236: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4237: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4238: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4239: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4240: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4241: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4242: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4243: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4244: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4245: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4246: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4247: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4248: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #4249: create certificate: sign  - PASSED
ssl_gtest.sh: #4250: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:45:13 UTC 2017
ssl_gtests.sh: Testing with PKIX ===============================
Running tests for libpkix
TIMESTAMP libpkix BEGIN: Tue May  2 15:45:13 UTC 2017
TIMESTAMP libpkix END: Tue May  2 15:45:13 UTC 2017
Running tests for cert
TIMESTAMP cert BEGIN: Tue May  2 15:45:13 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #4251: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -f ../tests.pw
cert.sh: #4252: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4253: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4254: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #4255: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -f ../tests.pw
cert.sh: #4256: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4257: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4258: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4259: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4260: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4261: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4262: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -o root.cert
cert.sh: #4263: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -f ../tests.pw
cert.sh: #4264: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4265: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4266: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4267: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4268: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4269: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4270: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -o root.cert
cert.sh: #4271: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4272: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4273: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4274: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4275: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4276: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4277: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4278: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4279: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4280: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4281: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4282: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4283: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4284: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #4285: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4286: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #4287: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4288: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4289: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4290: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4291: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4292: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #4293: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4294: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4295: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4296: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4297: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4298: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #4299: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw
cert.sh: #4300: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4301: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4302: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #4303: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4304: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #4305: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4306: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #4307: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4308: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #4309: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4310: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #4311: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4312: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4313: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #4314: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4315: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #4316: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4317: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #4318: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4319: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4320: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4321: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #4322: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4323: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #4324: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4325: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4326: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #4327: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4328: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw
cert.sh: #4329: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4330: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4331: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #4332: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4333: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA.ca.cert
cert.sh: #4334: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4335: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #4336: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4337: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-dsa.ca.cert
cert.sh: #4338: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4339: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #4340: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4341: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4342: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #4343: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4344: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA/serverCA-ec.ca.cert
cert.sh: #4345: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4346: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #4347: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4348: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-ec.ca.cert
cert.sh: #4349: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4350: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4351: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4352: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4353: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA-dsa.ca.cert
cert.sh: #4354: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/clientCA.ca.cert
cert.sh: #4355: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4356: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4357: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw
cert.sh: #4358: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4359: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA.ca.cert
cert.sh: #4360: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4361: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #4362: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4363: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #4364: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4365: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4366: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #4367: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4368: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4369: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #4370: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4371: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4372: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #4373: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4374: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4375: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #4376: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4377: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4378: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4379: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA.ca.cert
cert.sh: #4380: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4381: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #4382: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4383: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #4384: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4385: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4386: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #4387: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4388: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4389: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #4390: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4391: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4392: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #4393: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4394: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4395: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #4396: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4397: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4398: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #4399: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4400: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4401: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #4402: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4403: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4404: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #4405: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4406: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4407: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #4408: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4409: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4410: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #4411: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4412: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4413: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4414: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server -f ../tests.pw
cert.sh: #4415: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw
cert.sh: #4416: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4417: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #4418: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4419: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #4420: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4421: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #4422: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4423: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4424: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #4425: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4426: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4427: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #4428: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4429: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4430: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #4431: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4432: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4433: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #4434: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4435: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw
cert.sh: #4436: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4437: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #4438: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4439: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #4440: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4441: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #4442: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4443: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4444: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #4445: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4446: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4447: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #4448: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4449: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4450: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #4451: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4452: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4453: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #4454: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4455: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw
cert.sh: #4456: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4457: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA.ca.cert
cert.sh: #4458: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4459: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #4460: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4461: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #4462: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4463: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4464: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #4465: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4466: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4467: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #4468: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4469: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4470: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #4471: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4472: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4473: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #4474: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4475: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw
cert.sh: #4476: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4477: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA.ca.cert
cert.sh: #4478: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4479: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #4480: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4481: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4482: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4483: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4484: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4485: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4486: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4487: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4488: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4489: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4490: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4491: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4492: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4493: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #4494: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4495: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #4496: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #4497: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #4498: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #4499: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #4500: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #4501: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #4502: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #4503: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw
cert.sh: #4504: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4505: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #4506: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4507: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw
cert.sh: #4508: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4509: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #4510: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4511: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #4512: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4513: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4514: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #4515: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4516: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4517: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #4518: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4519: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw
cert.sh: #4520: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4521: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #4522: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4523: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #4524: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4525: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #4526: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4527: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4528: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #4529: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4530: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4531: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #4532: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4533: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4534: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #4535: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4536: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4537: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #4538: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4539: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:c8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:36 2017
            Not After : Wed Aug 02 15:45:36 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:17:fb:8c:8b:9b:d6:7b:cf:26:74:a4:c9:18:c6:9e:
                    9f:16:91:65:c2:cf:2e:b4:65:e6:db:f7:f0:f5:be:f5:
                    1f:35:25:3c:50:fb:61:04:1d:d0:31:b1:96:cf:d6:25:
                    30:5f:0e:d9:41:d5:c5:19:5d:87:43:d0:7b:c7:1c:aa:
                    ed:70:9f:e2:54:dc:da:8f:0f:a5:8d:c1:44:0b:be:15:
                    6a:2a:83:50:1d:b3:a2:d6:b6:8a:77:14:2b:af:d7:de:
                    eb:b2:46:8b:29:2a:45:64:cc:af:5e:67:d2:a5:4d:53:
                    d6:35:40:59:58:42:df:68:d2:39:a5:19:fd:2d:c3:29:
                    d2:e6:4c:21:01:df:78:8a:d7:fd:1c:b7:f9:ea:5a:bd:
                    9b:92:79:b3:60:fa:cd:80:91:4f:1d:a8:1c:1b:56:ca:
                    c8:e9:a5:ac:0c:aa:db:c6:05:e0:a0:c3:ca:aa:bd:dc:
                    c0:96:6a:ec:70:02:d2:69:6e:45:d3:e1:34:84:1d:08:
                    33:3c:f3:0c:a3:a5:50:f2:6a:a1:d4:cb:3a:4b:f0:a3:
                    53:2b:c2:f0:c0:2d:0b:e8:b7:ef:f2:81:1c:17:0d:17:
                    85:7a:ca:d5:df:93:af:46:06:19:95:94:92:0b:3c:99:
                    d6:b6:9b:28:d5:ff:e9:b7:c6:7d:b0:28:ae:92:7f:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b7:32:dd:4c:02:89:ad:0c:2b:f5:ff:76:34:e7:5a:0e:
        c3:e4:4c:4f:74:ed:2b:7c:ed:27:2b:2a:2f:ec:9c:fc:
        bc:a5:d5:69:31:62:e7:01:b6:cb:0b:ce:d3:b6:f9:f7:
        53:7a:c9:1c:1c:39:40:47:d2:d6:60:54:d2:62:41:9f:
        84:2b:60:3b:c2:93:e5:5d:5e:80:fb:0b:ce:ed:7c:2c:
        d8:65:7c:d6:f4:18:a2:ad:41:81:d3:a7:4e:ab:c8:d7:
        f6:4d:6a:9d:6e:2d:76:5e:15:f6:72:65:85:fd:a2:cd:
        7c:d6:77:f0:e6:4f:f1:d5:c5:c1:98:1a:2e:82:48:e1:
        0c:4b:80:ae:c0:03:af:2c:2b:e3:7d:ac:27:48:8b:91:
        b1:d2:5c:05:17:53:ca:06:1e:6a:80:32:15:86:a6:bc:
        cd:f5:40:c9:3e:5f:2b:7d:fe:2e:2c:a5:35:e8:21:9e:
        1c:cb:8e:1c:3e:3a:10:7e:0e:c0:14:80:56:f8:d7:10:
        ee:1e:cb:b5:29:98:7c:cd:c1:44:64:04:b9:c5:a5:14:
        83:97:ce:48:92:aa:95:8a:be:20:f2:0a:36:84:db:ce:
        b1:7d:68:85:05:81:ad:a6:18:08:f3:89:89:48:d2:28:
        ae:53:f7:59:5f:6b:2f:06:bb:15:43:b7:f4:04:a8:d8
    Fingerprint (SHA-256):
        04:F6:1F:29:C0:B4:42:2C:CC:80:F1:A2:7D:98:DB:0C:3E:86:FA:C4:8F:F3:E4:BD:F6:F7:3F:D5:DC:44:CA:2C
    Fingerprint (SHA1):
        4C:92:18:19:18:24:33:FD:7C:69:8D:D5:E7:DE:34:E8:52:FE:62:D7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4540: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:c9
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:37 2017
            Not After : Wed Aug 02 15:45:37 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:48:51:8e:20:7b:ef:69:cd:5b:53:99:61:f5:45:fc:
                    af:58:e8:4b:65:e1:a9:91:e5:53:e2:fc:31:a0:3f:20:
                    55:cb:2a:19:5d:14:45:7e:46:21:88:ee:24:bc:96:6e:
                    6e:bf:f4:68:7b:f7:53:a0:21:ca:1b:e3:1f:53:2a:92:
                    b5:c3:bd:07:ca:bb:c8:64:d5:e9:0f:98:5c:57:c3:6b:
                    ef:9e:80:3b:52:e7:70:9e:e7:69:8e:27:5e:45:af:96:
                    df:26:f7:58:0b:fb:7f:20:c6:9e:dd:d9:cf:e4:17:3c:
                    b4:2d:79:f4:ee:90:28:fd:b6:21:44:6b:be:8d:ee:f3:
                    26:da:d2:8c:21:e9:6a:6f:8a:e7:49:c1:12:e8:d4:ef:
                    57:38:26:c3:f6:af:d4:25:08:b0:db:70:79:9f:c0:12:
                    81:dc:d3:f4:76:13:0a:37:09:f3:1c:60:42:07:9c:54:
                    c7:9d:7a:4c:2f:54:1f:3e:5f:6c:df:ab:3e:05:ed:93:
                    5d:d7:41:2c:0a:02:01:ec:55:4b:27:f8:b2:48:52:75:
                    bf:86:25:65:42:87:5d:2a:ba:fd:ce:c9:36:e8:e0:96:
                    ba:39:f2:cf:98:1c:90:b0:94:23:e1:e8:dd:79:74:fc:
                    ea:ed:a2:4d:82:c2:42:3f:0e:f0:01:fb:6e:34:10:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        30:52:8c:e1:bf:33:77:b3:ad:bf:a2:71:cd:7d:63:5b:
        0e:f2:a7:5a:a2:8d:0d:27:db:7c:60:31:8c:b1:4d:10:
        15:86:e3:ed:62:53:a5:df:af:91:d2:06:f6:30:bc:a3:
        fa:ac:ef:9f:32:14:8d:ad:9b:97:13:5d:bc:49:99:9b:
        bc:6c:27:43:1f:d0:4f:4c:d9:05:95:39:a8:b2:6f:66:
        40:22:75:dc:c7:77:4e:46:f4:43:3c:c9:6a:0c:56:0d:
        0e:0e:db:b8:9d:dc:2e:5d:98:6e:a9:9a:fb:21:ee:48:
        d4:8c:fa:ae:e2:50:c5:4f:f5:e5:e1:f8:85:14:03:9a:
        82:c7:e9:ff:73:f4:02:7a:c2:85:94:ee:f8:62:5c:ed:
        46:10:ae:a0:8a:d2:4e:26:5c:2c:8b:94:2b:51:c1:75:
        7d:28:a3:aa:4b:fb:26:fa:df:ad:c4:6d:4a:a8:93:9e:
        91:5c:77:f2:c4:e8:70:0b:e9:a7:39:a9:87:b1:16:6e:
        a4:44:f1:0d:11:46:4d:d4:b3:16:ac:80:58:07:e3:31:
        25:70:26:82:7b:74:cd:00:6b:3b:b9:2e:2f:0d:b2:44:
        ec:49:5e:93:e0:9b:a2:06:27:4e:76:6f:b8:af:e9:fb:
        56:41:3f:90:7f:84:b9:7b:c0:f0:af:b6:68:de:85:0f
    Fingerprint (SHA-256):
        E8:D5:55:B6:14:E9:D6:47:EE:4F:AC:9B:3E:7B:58:FE:76:20:86:6D:F9:65:2B:FE:53:FA:67:13:9A:E3:B5:DB
    Fingerprint (SHA1):
        7A:74:92:6A:5E:70:38:53:F1:D1:58:08:FA:07:5E:FB:26:BF:6E:37
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4541: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:ca
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:37 2017
            Not After : Wed Aug 02 15:45:37 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:c7:af:27:63:56:b5:cb:ee:04:6d:6e:16:20:a9:bf:
                    b8:91:e4:c0:84:f2:43:54:af:3d:a3:95:1b:09:9e:5f:
                    a7:1b:dd:a7:8a:a1:6a:cb:8c:4c:c0:6e:8f:55:2c:7d:
                    0a:a3:de:0d:d3:e6:2a:4a:85:a2:08:34:7d:31:62:56:
                    2a:b0:89:8a:41:b6:6e:49:32:52:02:59:b2:26:5d:a1:
                    4a:08:db:f9:a7:6b:da:71:a8:f3:dd:c5:6a:05:66:42:
                    09:a8:99:90:71:0f:f1:a9:d6:98:07:9c:b9:bc:47:dc:
                    87:ac:65:4e:11:6b:d7:07:7e:b8:95:8b:9e:97:f2:18:
                    e3:5b:9a:7a:29:e9:f1:ef:d0:8e:46:37:39:a6:7c:42:
                    ec:47:95:6b:d3:d6:61:c8:2d:3c:29:ec:09:68:0c:8f:
                    18:02:4c:a8:35:5b:dc:58:bc:dc:1e:f3:22:c8:8a:85:
                    ba:8e:64:7c:8a:82:5c:ab:9b:86:41:05:59:4a:e6:4d:
                    ae:27:47:db:19:d3:cf:3f:27:bc:64:af:ec:dc:cf:f4:
                    e6:4a:88:7f:57:0c:8d:c3:b3:96:45:fa:08:02:8e:af:
                    95:0e:87:83:1d:7d:53:0e:3c:11:23:10:e1:e1:85:2a:
                    23:4e:81:c6:63:59:19:8f:15:b1:31:9f:c2:33:f3:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:cd:bd:a5:09:c4:a3:d0:2c:55:12:be:c0:4d:06:7e:
        18:a9:ae:56:32:ae:d4:fd:6b:ef:ee:2a:d7:d9:9e:69:
        d2:47:88:bd:58:39:de:88:78:6a:14:a3:6c:c4:98:21:
        39:bb:9b:0f:d5:35:e1:54:fe:9f:ed:36:aa:ca:f1:0e:
        46:04:73:8b:40:44:8b:16:0e:d8:84:6a:97:de:f5:25:
        ee:4c:73:4f:ba:be:a3:2f:3d:f3:ad:f1:41:ff:ce:b5:
        d3:9d:ea:d0:f5:7a:1b:36:d8:f8:15:d1:83:88:cd:97:
        b7:3d:0f:20:5d:8f:d0:7d:2f:c9:e5:2e:4d:2a:37:97:
        a9:5f:60:88:68:42:83:f7:2e:2b:21:ca:5d:4e:da:ef:
        9c:21:7d:34:6c:56:9d:35:69:ab:1c:16:8d:1a:a6:73:
        43:0a:4a:48:2f:ab:73:b4:d5:c0:30:a6:4a:34:42:29:
        f8:27:1d:ba:82:fb:b4:b0:80:dd:1f:13:22:5a:90:ce:
        c1:29:55:c8:bb:71:08:38:f8:63:6c:6b:ad:5b:67:ba:
        db:7e:e6:3c:52:64:d8:33:68:32:8c:81:81:61:e8:f8:
        ae:60:3d:ef:27:8c:e7:a6:93:c9:e0:ea:e2:b8:76:49:
        cf:f1:40:45:5c:89:92:c6:8e:31:a6:73:d8:ea:11:66
    Fingerprint (SHA-256):
        AD:15:F0:85:F1:E1:73:C4:76:9C:78:F3:2B:C6:D1:CB:05:90:EF:53:F3:99:34:F5:3C:6E:0F:1A:D8:DF:13:E6
    Fingerprint (SHA1):
        8B:21:C0:5C:59:A2:FB:86:67:1C:EB:25:64:E5:66:B6:1F:28:3F:B1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4542: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:cb
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:38 2017
            Not After : Wed Aug 02 15:45:38 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:c4:60:c8:2c:3a:70:89:cc:97:01:f3:40:b8:12:61:
                    1d:a1:c8:69:d8:1d:9f:d3:95:19:ba:94:0c:5e:50:c6:
                    93:f4:fd:d5:2f:c6:18:9f:48:25:65:cb:91:46:4b:10:
                    18:b8:8d:46:05:2e:7e:9a:96:dd:d3:3a:34:3b:ca:08:
                    15:b8:d2:f0:c1:0c:e6:f7:02:f6:58:69:c0:b9:4b:06:
                    cd:5b:65:8e:e5:04:f6:4c:e7:8f:ed:5f:26:9d:1f:e7:
                    1a:d5:81:7e:66:89:fb:29:fe:f2:a5:e7:d2:08:93:f8:
                    aa:73:af:4a:25:36:55:41:86:51:65:67:95:37:53:30:
                    69:0c:98:bf:fe:f6:a2:91:13:25:d3:bb:91:2c:bf:72:
                    a5:7d:b1:c7:f4:09:cb:eb:cf:12:97:d0:7a:34:39:e4:
                    d3:61:9e:bf:34:98:0d:27:fa:62:a8:29:b1:0b:98:ff:
                    4b:86:2e:0f:f0:33:ec:7a:8c:3e:cd:2f:34:f9:c8:99:
                    59:9c:ad:1f:af:72:0f:d2:00:b4:24:41:0d:ab:57:90:
                    c9:7e:2b:87:17:b2:b8:73:af:55:4f:d3:f2:1f:d3:2a:
                    42:4e:d2:ae:ab:94:f0:20:db:fb:6e:57:3d:41:15:b7:
                    63:4e:8c:89:77:d5:3d:e7:16:26:30:1f:b7:d8:44:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:9d:e6:51:0b:ed:00:5a:96:c1:41:c2:39:3c:ff:72:
        15:e0:fe:29:b2:40:22:32:dd:ba:06:20:89:30:6f:9c:
        f1:91:5c:67:55:53:62:a3:b5:32:a0:eb:e6:0e:2f:d2:
        2d:f5:e8:46:94:af:1b:81:b1:bc:3f:ec:cf:cd:0b:03:
        6e:c1:96:80:a8:ad:97:08:0f:09:6f:aa:68:9c:b1:7f:
        3d:cb:29:ca:e9:38:10:df:b1:ca:3c:cf:d7:85:80:d2:
        e7:77:c1:e9:57:18:49:9c:f0:97:20:17:83:06:c3:f3:
        d3:9c:5a:f9:0f:e4:92:01:43:56:c7:87:e0:93:47:6e:
        ac:ac:81:6b:9f:f2:2d:16:28:68:8c:2a:86:9e:b4:7d:
        c4:12:98:5c:7f:35:61:0e:3b:df:fa:68:4a:ed:46:9f:
        ac:ee:a7:24:99:e2:37:de:09:fb:20:f1:d9:48:52:07:
        29:46:c2:76:84:fd:7c:e2:aa:39:94:dd:69:25:49:f1:
        82:60:2c:94:a1:4e:f7:d6:63:cc:8b:d9:27:5f:ab:c7:
        df:a9:a3:1a:02:78:ee:76:e0:45:9d:64:6b:59:35:c5:
        f0:1a:ce:14:29:7c:40:54:b9:82:1c:58:a8:cc:a7:8c:
        df:99:39:ea:1e:bf:0b:08:c6:a4:06:5d:59:dc:a3:2f
    Fingerprint (SHA-256):
        E0:2F:8D:D0:64:10:26:86:79:9C:DD:4C:00:A7:8B:A4:09:65:FC:49:30:A0:12:7E:3F:44:71:51:CC:CD:B6:C4
    Fingerprint (SHA1):
        BE:D9:43:CE:86:41:7A:7C:AC:66:65:9E:00:E4:4C:D8:FA:DE:04:7C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4543: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:cd
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:38 2017
            Not After : Wed Aug 02 15:45:38 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:33:dd:c8:71:47:df:38:f2:cd:9e:da:85:89:b1:a2:
                    88:96:d3:ed:6c:5c:0f:e3:da:41:c6:2a:23:2e:0a:9f:
                    59:e6:0e:7c:b2:4d:dc:59:a4:50:27:19:93:d2:29:bb:
                    b9:03:54:7f:4d:00:c1:82:30:1c:a9:dc:4b:a2:fc:70:
                    fc:30:68:89:cf:0b:52:e8:7f:2b:f8:9b:65:5c:9f:d8:
                    b5:9c:98:f0:b4:e5:87:9d:46:d3:ab:bc:f4:67:16:f9:
                    77:4a:c0:ff:3c:3c:71:29:15:8f:79:8f:29:42:d0:03:
                    e6:cc:7a:6a:de:4e:17:68:72:29:a0:b0:48:6d:51:8d:
                    9b:3a:f2:e6:8a:9d:40:3c:9d:5e:5a:ad:72:cf:c9:2a:
                    31:5c:2f:46:9f:66:3d:5d:b6:6f:90:61:d2:dd:b2:1a:
                    29:81:30:4b:80:31:3c:c3:1c:8b:d3:19:d9:b9:08:12:
                    cc:13:cd:84:a5:3c:18:a7:95:03:a1:ee:6e:58:27:6b:
                    3d:01:86:cd:3c:86:89:3b:36:15:e9:f0:4d:02:24:6a:
                    7d:97:95:78:2a:f9:ea:39:00:10:0e:6e:76:ea:46:e7:
                    8a:5e:e9:33:78:96:b5:45:b4:e0:d3:62:73:63:24:5a:
                    ed:8f:31:a4:13:01:e1:5a:58:12:25:ed:b4:34:96:d9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:c5:18:e9:3f:da:ef:22:46:a8:61:52:57:85:c0:bf:
        5c:36:b8:3b:58:7a:bf:86:22:22:f6:8a:d8:fc:b3:00:
        f4:46:c0:f8:05:63:2f:a5:9b:21:df:ea:9e:b9:82:2e:
        78:6f:58:ef:a9:24:9a:1c:71:47:75:d8:4f:f7:05:2e:
        40:bc:7e:6d:da:3b:71:78:bf:20:d8:1f:23:ff:c0:7e:
        f6:ff:5b:d3:96:21:19:87:ec:31:8b:91:b2:87:2c:f6:
        dc:f2:fc:f4:9c:7a:62:56:e6:15:89:7b:ce:24:37:82:
        a8:39:55:80:b6:e2:b0:e4:92:9f:1e:07:ac:b2:1d:74:
        a5:21:53:84:41:65:a6:26:9e:c6:86:c5:4d:78:9c:3f:
        c5:57:28:45:3b:d5:9a:62:be:f6:1d:af:08:df:dd:da:
        87:85:29:0b:94:5c:d7:ce:92:74:5c:51:65:d0:23:62:
        c3:a0:14:e7:38:e4:a0:94:0e:20:25:5c:dc:51:ca:79:
        15:d4:84:23:72:b9:37:b4:3d:f4:2b:5e:33:53:d8:59:
        8a:56:ca:55:19:08:40:ca:26:17:35:1e:10:82:9b:e6:
        22:14:33:dd:68:d7:59:c7:64:8c:dd:65:af:e4:49:3e:
        e1:18:ca:8d:fc:d5:eb:90:48:5c:38:e9:e3:57:29:25
    Fingerprint (SHA-256):
        04:06:0C:29:55:00:8A:E4:6B:A3:1D:A8:54:0C:1D:35:34:52:0A:49:32:F2:A6:70:BD:A6:44:49:1D:E0:62:4C
    Fingerprint (SHA1):
        20:90:20:76:C5:51:30:F0:23:BE:BF:59:04:F7:11:05:CD:64:70:31
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4544: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:ce
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:39 2017
            Not After : Wed Aug 02 15:45:39 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:15:6f:9e:c8:c7:53:a0:c0:8d:47:e2:3a:6e:91:25:
                    61:d5:29:38:fb:11:53:16:dc:89:71:f4:37:14:61:63:
                    e4:ef:64:67:c5:37:69:b9:49:cf:4f:a2:de:3f:aa:04:
                    d3:8a:a9:8a:ac:d5:e3:2d:96:1b:4d:01:7a:9f:65:fb:
                    b8:75:48:2c:5f:25:b7:ed:65:5c:41:74:c6:e6:d6:53:
                    66:72:ef:39:a9:b8:2a:11:97:ad:8d:4a:82:92:31:d3:
                    a0:b2:82:ec:cc:1e:10:cf:26:c4:74:e6:64:bb:a4:6f:
                    0a:e4:93:54:e3:3e:c3:fa:54:3a:eb:b5:ec:d1:87:58:
                    f1:69:f6:db:14:f4:09:8a:0b:50:fa:29:12:93:5d:f3:
                    9a:a6:4f:49:d6:d6:b1:b9:78:cf:a0:ee:87:54:f1:be:
                    37:31:d7:2c:6f:4b:71:27:5b:b6:ac:29:f5:8f:74:f0:
                    77:12:36:f4:a3:2f:e8:ae:19:72:dc:09:cd:1e:34:0c:
                    0e:0f:d6:94:75:41:05:55:dc:76:30:4e:cf:d0:a3:10:
                    b9:42:89:49:5b:eb:3e:56:d0:9e:59:b4:7a:94:d1:c2:
                    4e:77:33:d6:7e:99:15:cb:94:11:b8:94:7a:f7:de:55:
                    c5:84:31:43:e9:8a:94:4e:c1:54:6c:06:65:3d:52:23
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:b3:43:3b:ed:3e:10:35:cd:dd:d8:65:c8:26:34:6a:
        04:be:d9:c3:c6:39:35:91:7f:29:f3:0a:99:49:08:15:
        2d:8b:ad:1e:07:5c:be:75:8c:01:6f:21:7e:44:f5:47:
        73:34:3b:17:ff:10:b7:7d:0d:77:ed:9b:70:f5:40:df:
        15:3f:32:97:5a:96:6f:05:3b:14:03:0c:bb:a1:b0:4f:
        e5:5a:73:f4:5e:38:c3:a9:e4:d9:55:a5:8b:43:36:c1:
        61:1b:23:50:4b:88:c6:ba:1f:85:7d:29:42:cd:ab:2f:
        ed:e8:8b:46:67:8b:9c:14:1d:ab:7f:9a:c4:57:00:a8:
        05:1a:c9:5c:48:29:63:54:8d:1b:b1:91:d6:d3:0a:f0:
        c6:64:62:3e:5c:4b:9e:94:7a:f2:1f:84:dd:e9:0e:5d:
        d9:6f:58:fd:23:be:40:ae:45:90:87:2a:fa:fe:08:41:
        ed:98:63:8a:5e:d9:e1:a1:77:ee:9c:cb:ec:41:85:b7:
        9c:07:d7:66:de:09:e7:4a:80:48:b3:07:d0:7e:b0:87:
        47:1f:a3:8b:23:e0:a9:7a:c8:fb:ba:c8:ca:59:5e:31:
        1d:95:b3:4e:96:b9:89:3e:48:a3:fb:fd:04:f5:61:1d:
        c8:42:91:4d:ee:0a:6f:7f:b7:d3:43:97:35:db:58:99
    Fingerprint (SHA-256):
        EC:C4:DB:9E:41:52:3C:72:90:67:2B:82:29:FD:16:2E:1F:AB:FE:DA:6A:E6:28:F6:4F:B4:A6:0B:18:50:1A:11
    Fingerprint (SHA1):
        08:6E:57:4D:35:D6:90:68:29:4B:A3:E0:F2:BF:53:87:A3:B9:8C:D6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4545: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:d0
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:40 2017
            Not After : Wed Aug 02 15:45:40 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:d1:08:52:ac:f2:37:30:de:ca:da:6a:f3:ac:75:e2:
                    06:08:a9:70:b5:7d:ae:9f:f2:f1:46:06:a0:fe:76:50:
                    9e:c2:96:fa:56:39:d4:f1:11:e5:13:e8:05:63:b1:b1:
                    d4:53:db:b4:de:7d:77:ba:f0:56:35:67:28:5f:91:2b:
                    99:92:a5:32:10:47:39:87:59:08:ef:3c:e6:27:36:cf:
                    8c:38:29:1b:89:a9:9b:c4:c6:db:e2:58:16:2e:d9:85:
                    94:21:c8:8e:87:fe:7e:5c:38:6c:f9:b9:89:c9:5b:0f:
                    6c:bb:ac:d1:9d:5e:cb:e8:f9:b4:4b:73:16:0f:0c:e4:
                    3e:56:52:af:fa:df:42:d8:e8:7a:7c:28:e2:49:41:72:
                    dc:e1:f8:ce:b6:3b:37:de:77:1f:bf:8d:cf:f5:03:81:
                    73:c4:97:f0:15:89:db:a9:37:55:47:13:fa:52:1a:0a:
                    e8:5a:72:52:4c:4a:66:fe:10:1b:5a:ac:00:b6:6f:9a:
                    be:ad:d7:1a:ee:23:95:46:39:46:25:5a:78:53:02:cc:
                    5d:b8:01:78:82:40:92:a0:8c:d1:86:5a:c6:d3:da:92:
                    4d:8c:06:07:10:c0:e8:79:0a:a1:df:bd:f9:26:14:c1:
                    d4:ab:be:2d:ca:81:5e:d7:58:c7:1d:be:60:a0:77:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:90:52:0f:da:57:e9:02:7c:36:c1:e8:dd:62:b1:77:
        ed:ac:8b:70:b7:36:88:8d:17:51:0a:3a:6f:dd:ba:c7:
        ab:ac:a9:8e:5f:b1:ef:cb:73:4d:8d:ec:49:01:13:ef:
        98:62:09:d2:7f:b3:8f:5f:53:99:58:8f:52:ba:c5:5c:
        98:4f:22:13:34:4d:e9:b7:bc:04:3d:5e:c8:cd:f0:b6:
        d0:49:32:2c:7b:20:98:50:1a:31:6b:81:c4:ae:89:0f:
        26:8a:9b:c2:2b:bc:de:53:92:9f:94:8c:5b:e6:94:14:
        53:5e:c5:d3:68:20:7b:72:a3:a8:5f:7b:40:4b:2a:24:
        f4:e6:d1:5f:41:e5:dc:59:c2:b4:14:0e:f6:68:12:2b:
        b6:c9:1a:c3:9e:31:8d:83:c4:32:3c:8b:c0:7b:88:2d:
        4a:af:25:f7:9a:f7:d5:60:77:fe:a9:6e:d2:3b:e8:0a:
        38:34:28:44:f7:88:99:2a:3d:fb:4b:4f:4b:d0:42:4c:
        f6:35:c7:55:0c:d9:ac:9c:2c:b8:47:d3:a7:2d:c9:46:
        fe:96:58:c9:15:16:3d:12:23:ef:f6:20:b3:a6:fb:25:
        85:58:bb:e8:f7:48:1c:fd:82:b0:86:05:05:2b:75:61:
        fd:6c:6f:00:d9:88:b0:39:42:69:de:cb:23:c5:9d:30
    Fingerprint (SHA-256):
        AB:3A:54:F1:84:24:FB:8A:DF:88:4C:11:38:C4:25:4E:4B:0E:4D:46:B2:74:90:34:CB:E0:16:F6:43:16:FB:16
    Fingerprint (SHA1):
        EA:FF:C7:48:01:12:88:F3:E7:A6:41:14:0C:91:25:8A:AA:4F:5F:16
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4546: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:d0
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:40 2017
            Not After : Wed Aug 02 15:45:40 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:71:8c:8a:b0:df:e5:3d:c4:98:4c:fe:10:6d:14:0e:
                    67:b2:ad:b1:2c:63:ce:ae:c4:80:5e:b7:9a:a7:1c:87:
                    c2:01:fe:88:51:ae:13:4c:32:be:52:b6:3c:52:44:c1:
                    bf:94:d1:c9:68:bc:b2:87:89:d8:da:93:7a:ea:f3:f0:
                    4a:9f:63:6b:b3:5a:9b:ad:f9:61:69:07:cb:01:52:ab:
                    1e:3b:77:cb:18:7d:e9:cf:ab:71:bd:86:8c:06:b9:dd:
                    a6:ce:47:81:1b:71:67:4d:3e:4f:59:00:b4:9d:1c:d4:
                    84:8a:33:68:2b:4b:3d:aa:ac:86:a4:18:eb:1b:24:5a:
                    e4:76:1d:80:ea:27:1c:01:aa:fb:4b:47:39:2d:df:92:
                    a6:62:d3:17:0e:56:64:69:e3:ce:de:b4:6e:52:bc:e1:
                    ad:b3:1a:92:21:20:35:cb:2a:6a:23:dc:21:45:8e:3e:
                    16:53:af:40:29:ef:5c:97:80:13:21:a4:35:b1:21:82:
                    60:d4:20:8f:49:c5:dd:b2:e2:41:50:53:1e:9c:43:cc:
                    73:d6:87:c9:39:b1:a8:ef:d6:54:b6:29:2e:94:e4:9a:
                    1c:49:6c:cd:0e:ee:2d:6c:6a:fd:89:c6:36:8d:1b:96:
                    29:ec:95:89:78:18:ae:7d:99:28:92:7d:57:e5:ec:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:5a:d1:94:cf:a4:43:48:f3:52:14:a1:59:4f:b3:34:
        83:ee:57:03:a1:ce:34:1d:6a:4c:86:07:17:50:e2:bc:
        b5:1e:b2:24:5d:c9:17:3d:41:9f:8e:eb:01:91:b0:67:
        9e:c0:29:50:18:ee:c2:f0:c6:e5:41:f0:d0:d7:16:84:
        73:57:a4:d9:ab:c0:43:a3:54:db:f4:2a:99:26:89:80:
        4e:df:f3:e6:aa:24:8a:f7:cb:59:1c:6e:94:e3:5d:cb:
        cd:94:4e:a6:e9:86:7e:1c:91:0f:16:43:02:8d:2a:4d:
        1e:63:22:60:57:b5:d7:ce:05:c4:5b:7c:ee:16:3f:aa:
        7f:b1:70:e6:0d:04:f4:44:2b:2a:b5:a0:68:9c:a7:3d:
        1b:90:0d:89:d0:40:15:53:4d:eb:f0:b5:ec:88:d1:e5:
        00:92:3c:19:ac:89:f3:46:57:90:f9:f4:3e:38:53:e8:
        db:0f:41:23:aa:5a:c3:6d:94:f9:62:c8:51:c8:82:0b:
        5e:a0:eb:cf:e1:8a:bf:0c:5b:83:0a:3e:51:6c:68:c8:
        e0:8e:9c:29:ac:ee:b8:36:1d:2d:c7:a6:bb:da:57:cb:
        46:0f:00:27:a2:13:78:2f:bf:3a:9d:e9:a5:e4:cc:42:
        2a:b0:a7:7b:ba:20:99:da:b9:15:9b:24:c6:f8:e7:1e
    Fingerprint (SHA-256):
        7F:61:14:2C:67:7C:55:B1:FB:48:B1:35:56:DE:4C:57:A8:50:F9:73:3F:F1:1E:5D:D3:B4:83:5F:C0:25:76:10
    Fingerprint (SHA1):
        66:81:A6:D7:2C:01:83:CB:92:6C:60:30:A3:E7:43:7D:C5:88:81:17
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4547: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:d2
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:41 2017
            Not After : Wed Aug 02 15:45:41 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:ac:9c:f0:a5:42:5b:f4:50:db:42:90:ba:62:f7:53:
                    fe:09:2e:b9:8d:a1:a7:d4:e8:7f:02:93:63:58:2f:15:
                    33:43:24:81:d2:b2:06:58:0b:0c:c6:89:94:04:72:46:
                    12:92:f1:81:e3:ce:0e:be:2a:69:66:35:d1:7b:23:6f:
                    d1:8c:5d:00:b7:0d:2d:f4:e8:3e:5a:c9:a3:6b:83:97:
                    31:db:a1:2d:3b:a8:4e:a9:45:9a:35:9d:7d:f4:72:30:
                    3b:3f:44:e0:13:45:84:88:ed:fd:e3:7e:5e:34:78:bd:
                    9e:05:bd:b0:3d:88:48:38:fa:c5:ce:ee:e2:80:ac:35:
                    ac:db:52:bf:99:35:3d:a3:09:4e:c4:52:55:6b:87:44:
                    d9:c4:3c:3a:1a:8a:f3:43:e3:3b:0f:48:90:cd:51:8f:
                    99:f4:83:13:bf:eb:c2:d6:99:93:8d:e8:8e:3d:2c:7c:
                    23:99:11:62:79:8e:45:2d:8d:ce:83:8b:ef:e2:e9:90:
                    f5:8f:cc:89:f4:d4:35:90:b4:42:78:4e:14:20:f9:41:
                    42:3b:14:e9:73:aa:d9:8b:01:98:b3:13:4f:1a:d2:a5:
                    ca:f7:78:08:b5:3d:33:c4:c7:95:90:ff:7b:5b:f6:93:
                    1d:1b:67:30:4e:9f:b0:ee:7b:77:08:45:06:e0:01:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:5a:ae:39:4e:64:20:27:cd:f0:74:1c:87:90:fd:6c:
        73:b7:42:6f:81:0b:a1:fd:11:43:f6:06:d3:cf:61:bd:
        3a:c5:e3:e4:86:5f:6c:04:81:e3:9b:ef:9d:5a:02:f7:
        04:43:c3:32:dc:61:d2:3e:79:f0:87:7d:b4:b7:7b:f1:
        c0:97:e0:e8:9e:71:6f:02:18:80:1f:60:30:48:89:f9:
        f1:c3:db:5f:d9:d4:c4:7a:f2:33:5b:2f:41:1a:fd:7c:
        5e:00:ff:98:df:9c:61:76:52:99:7d:78:82:d9:f4:6c:
        aa:ea:1c:b4:5f:0b:64:37:de:ec:01:ad:8e:c5:1d:c3:
        27:a6:e0:12:8c:6e:54:26:e3:72:f6:6f:e4:7a:78:cf:
        58:f7:ec:c3:2e:1e:80:25:ce:60:e6:5f:97:fb:d2:76:
        77:a5:1b:2c:83:c2:eb:bf:64:b9:f7:71:0a:9e:00:94:
        87:4b:e0:2c:c9:f9:a1:3e:e8:cb:72:3e:32:62:9f:25:
        0b:c5:58:8a:dc:64:46:4d:12:60:60:f3:23:09:0c:8b:
        45:9d:14:2c:d8:2e:66:ab:a0:2f:4f:59:ea:58:9f:6c:
        10:98:ce:24:2f:50:81:44:da:4c:e8:9c:09:cf:f1:b8:
        dc:04:14:2b:36:5b:5c:4e:a6:6b:de:d3:21:3f:9d:43
    Fingerprint (SHA-256):
        52:21:E1:E5:EB:9E:3A:3B:80:90:18:3F:B6:C3:29:93:0D:13:A7:AF:35:82:B5:06:84:C4:78:5A:5E:D5:A0:A4
    Fingerprint (SHA1):
        0D:E6:68:17:04:34:5F:2E:A6:84:F9:6E:89:62:49:62:F2:19:C1:5A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4548: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:d3
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:42 2017
            Not After : Wed Aug 02 15:45:42 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:4c:df:d6:29:b9:11:69:85:bd:82:4b:64:c0:5a:1f:
                    13:61:6d:8d:3f:89:62:45:32:15:23:29:c1:cc:c5:50:
                    0d:c4:6e:c0:15:8c:26:78:ad:7a:6c:29:4c:5f:85:24:
                    f3:e5:2e:06:db:f0:c7:03:6e:e8:61:aa:89:55:8c:b2:
                    b9:90:94:7d:79:28:3f:6e:84:e4:e1:eb:89:02:09:0c:
                    f8:fb:da:f0:5f:42:f8:ff:ea:f8:85:ea:79:50:db:13:
                    0b:bb:31:6b:11:b9:d3:3f:b0:f0:eb:07:b2:cf:21:85:
                    b3:a6:67:e0:6f:4f:14:75:e2:5a:b4:4b:50:a4:2d:31:
                    29:11:70:c9:0f:16:fe:93:65:5e:94:dd:ed:ef:0e:a3:
                    b8:8a:d9:86:5c:35:b0:3f:27:33:4e:da:bc:e7:4e:a8:
                    57:7c:52:53:10:c9:01:68:48:e9:c5:13:e6:5c:bd:7f:
                    2d:6e:ae:76:57:a7:5c:31:03:16:41:06:2a:b6:f2:71:
                    1d:7c:bb:1b:17:f1:bb:7a:d7:cf:f9:28:b7:08:94:f0:
                    f4:17:f0:18:86:28:03:ad:b4:8a:15:6b:55:ec:74:44:
                    b5:50:7a:b8:59:84:dd:c8:eb:ca:5c:49:1e:42:e5:b8:
                    d9:f1:f6:0d:a9:8d:4b:a9:13:16:09:42:b2:3c:1f:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:45:2f:07:6a:2f:ac:23:40:09:70:c9:25:e4:d0:80:
        7d:e5:65:ab:52:37:95:91:c3:48:6a:28:46:70:ea:1f:
        3d:c2:65:47:e9:17:36:29:d6:43:ae:f9:44:7b:4d:7d:
        bf:36:a6:b0:95:73:af:b4:2a:8e:ff:c7:c8:1f:0c:11:
        c1:00:80:f5:59:08:0b:c3:2c:87:76:39:a2:16:95:80:
        26:16:e0:25:a7:65:91:86:ae:ae:b7:f1:58:67:c5:92:
        33:7f:e9:09:2f:98:3b:38:05:a5:32:d3:6b:b2:cc:52:
        1d:d7:45:88:57:a7:0d:dc:a6:80:3d:23:58:51:e4:1a:
        2c:2b:bc:bc:34:56:1a:dc:36:71:46:eb:82:84:6f:30:
        fb:9e:c7:ca:8d:db:4b:a3:b1:03:2a:44:2c:e5:b1:3b:
        9e:fa:e8:56:01:77:70:99:0a:39:4f:87:3a:79:dd:a6:
        e6:97:70:14:e4:16:95:d1:da:03:e3:ee:b4:c2:5a:b0:
        3c:da:a6:49:f2:53:cf:ae:e8:74:0e:df:94:fd:ed:1f:
        a2:59:88:30:0b:4d:85:ef:e0:55:8c:d6:53:65:89:8b:
        05:f5:af:ca:55:71:3c:5c:92:00:16:99:07:79:1c:f3:
        53:83:15:74:a6:58:0b:84:d8:27:d3:de:cc:f1:f4:dd
    Fingerprint (SHA-256):
        CF:F6:0D:D9:6A:DC:1F:EB:CF:09:0B:50:8B:F7:71:A4:A0:3B:D7:05:BF:51:CA:0A:F7:11:C1:E3:19:30:7F:EE
    Fingerprint (SHA1):
        83:90:42:5C:31:80:5B:F6:0A:C6:CF:2C:5C:46:52:48:7F:75:78:4C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4549: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:d4
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 15:45:42 2017
            Not After : Wed Aug 02 15:45:42 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:52:14:c8:8c:26:60:02:4b:a1:27:a7:e4:21:77:86:
                    db:c0:78:f6:e3:93:88:25:31:da:76:db:f1:a0:25:39:
                    ce:90:ed:99:51:00:a4:21:57:ec:ea:15:b7:86:eb:6f:
                    ed:22:a4:dc:a2:15:39:ad:60:f4:97:e3:44:b4:24:2b:
                    0f:6b:a3:0c:d4:fd:d5:e5:1f:a8:9a:44:da:f1:3b:e4:
                    41:41:e6:c4:20:7d:98:60:59:69:23:9b:93:e6:70:4f:
                    dc:ae:27:71:7c:1f:35:85:e2:73:47:8a:ae:38:bf:c6:
                    eb:dd:a5:f2:48:be:60:9c:9b:b0:92:c2:04:2e:1d:51:
                    a4:c0:1f:0d:cf:4f:5f:4f:cc:8c:d1:0e:1e:e7:d5:dd:
                    81:67:64:e4:35:0b:ce:fd:6f:dc:7e:b9:44:f9:da:aa:
                    3e:58:cb:9d:61:f4:6e:a2:8c:65:56:b4:fc:3f:01:3d:
                    5f:4a:98:ac:e1:8c:b7:3c:00:f8:66:24:72:76:e4:8b:
                    4b:83:e5:8d:ef:ee:1b:dc:13:6d:a7:11:44:0e:7e:40:
                    15:4f:cc:11:b7:d7:f8:6c:ca:4f:f9:fa:2b:1e:9b:a7:
                    af:a4:c3:4a:96:92:c8:73:ef:c9:57:7f:a3:a5:36:81:
                    2c:b5:72:b0:18:27:3f:3c:ad:e9:56:42:20:c3:49:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:98:84:bc:f3:d4:9a:9e:d4:80:7c:99:88:33:ad:05:
        b8:e0:a1:9e:8a:53:ac:7c:29:65:03:e4:16:32:40:78:
        1b:65:6c:48:e2:ac:20:cc:e2:20:c4:42:3a:4d:e1:36:
        2a:91:72:cf:f5:85:61:eb:65:3b:b5:cb:47:92:71:4a:
        4e:e5:a2:6c:35:e8:7e:20:53:8b:ab:ec:8b:52:c4:75:
        e9:8a:f9:5e:3e:ac:6e:fd:08:88:7a:5f:0e:71:9e:cc:
        66:48:28:b4:50:65:bc:8c:38:05:3e:99:9b:87:cf:56:
        51:30:aa:3b:ff:0f:56:5b:f4:f6:35:7e:59:96:60:e4:
        8f:8e:e7:e8:2d:e7:e9:1b:5e:a4:4a:9e:76:e2:71:42:
        8b:da:2c:d7:bc:27:43:ae:30:2e:54:ae:b6:68:3b:fe:
        a3:39:28:e9:f1:59:9f:31:01:9b:ba:51:c6:6d:42:fd:
        da:1f:29:dc:2e:5d:69:51:da:c4:fb:b8:66:65:82:4f:
        00:8d:36:da:4e:7e:04:d7:ad:88:51:30:b9:72:4c:77:
        8d:6f:e8:4b:66:11:0c:dc:67:ec:a2:fc:e5:58:34:a0:
        01:a2:50:de:35:29:0f:03:84:72:cc:ef:65:69:98:75:
        d2:dc:88:14:cc:78:ac:cf:9f:1e:1d:99:5b:9e:f4:c6
    Fingerprint (SHA-256):
        B6:A3:33:A4:F3:D2:9F:AB:A8:C4:DE:1E:85:C5:76:92:57:6E:FC:E9:B7:54:7D:EB:29:B6:61:8B:D3:02:CC:BC
    Fingerprint (SHA1):
        E7:12:84:58:BA:11:7D:77:AF:5B:F5:CE:57:5B:44:CA:C0:49:CB:CF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4550: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #4551: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #4552: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #4553: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:d8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:45:44 2017
            Not After : Wed Aug 02 15:45:44 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:be:f1:dd:03:20:f0:67:13:b9:20:bb:de:45:11:39:
                    8e:f1:dd:93:db:de:04:3d:81:ab:19:d1:f1:bc:9d:c2:
                    e7:20:1b:de:a5:25:5a:32:c9:ad:53:ec:c1:fc:6f:57:
                    58:10:81:eb:e7:1c:3d:92:ec:12:e3:80:0c:ce:90:85:
                    cc:16:73:83:3a:ee:88:28:f8:8b:72:ce:26:5f:7d:cc:
                    f4:13:4e:a6:52:1f:68:04:22:52:38:06:90:60:52:c5:
                    bf:9a:ef:fb:7f:0b:27:0b:cc:19:6f:ee:32:53:c1:28:
                    ff:d9:4f:ab:c6:f7:37:85:d3:be:fa:1d:86:61:2b:6b:
                    66:5b:30:0b:22:91:9a:89:5e:1b:aa:f4:1c:34:ad:89:
                    f0:60:2b:b2:17:88:0d:bc:ad:d7:3e:3f:8c:fa:87:ca:
                    ed:a8:32:e0:fc:77:ca:c5:31:9e:ee:81:c1:e5:6a:39:
                    ff:74:fc:12:31:e8:bb:1c:a5:bf:51:64:f0:6f:1d:c4:
                    18:83:7d:57:c5:c6:79:b3:4a:79:85:9b:fd:b8:48:f9:
                    db:e9:90:6f:51:cb:a1:74:c3:7f:38:f4:14:3d:e1:ba:
                    a6:3c:c5:ae:a5:38:98:e1:45:93:f3:9d:48:c0:f4:d0:
                    a9:42:24:71:0e:cf:df:15:38:bb:75:90:02:a1:e3:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        42:75:4a:b2:e6:07:e2:be:03:8c:66:df:8c:69:0c:63:
        55:ff:cd:58:a7:c3:e1:d5:e3:c9:be:6a:e7:f1:dc:ef:
        27:f6:1c:f2:c4:f4:8c:2a:f2:b6:6e:09:08:fa:97:57:
        75:50:7c:27:a1:86:82:05:58:45:ae:e2:88:7d:ce:16:
        dc:e2:41:78:55:b9:24:2e:25:7f:a3:8c:b4:4c:6a:87:
        f9:8a:e1:8c:6a:c3:03:be:82:e1:a0:bf:e8:bd:ae:78:
        a9:83:eb:cf:d8:c7:91:19:20:af:75:0e:d5:5d:66:d0:
        37:e1:71:61:eb:1c:fe:57:df:c6:66:da:be:3d:b3:a2:
        7f:de:a2:af:db:47:3a:56:24:6c:4c:52:4b:ff:2b:9d:
        40:99:05:99:ce:38:21:cb:34:9b:c3:24:c0:23:b6:25:
        75:8f:94:28:ab:3c:c3:07:fb:56:de:57:49:82:cd:94:
        1a:a1:26:57:28:70:67:6f:28:64:f5:3c:89:a4:8f:35:
        44:59:32:98:5f:bf:ee:8d:6a:4e:e3:4d:56:7f:8d:32:
        f2:75:ea:7e:8e:aa:26:d2:5d:cd:a0:fd:bb:da:66:b0:
        10:fd:61:51:92:8a:53:1d:a9:80:9b:79:1e:8a:9c:7b:
        cf:12:a3:6d:ff:33:cb:ad:03:ef:7a:98:a6:9c:be:8d
    Fingerprint (SHA-256):
        9D:84:EB:13:5B:37:32:A2:94:6B:64:66:13:80:BD:DB:A7:8F:E3:82:66:C7:BF:CF:91:FC:79:D3:9E:B1:81:6D
    Fingerprint (SHA1):
        9E:5D:A7:8D:02:14:93:90:AE:FA:71:89:FA:EF:C0:5B:89:8A:10:06
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4554: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
cert.sh: #4555: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #4556: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #4557: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4558: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4559: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der: error 0: Success
cert.sh: #4560: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #4561: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:8d:db
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 15:45:46 2017
            Not After : Wed Aug 02 15:45:46 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:c7:f1:58:c2:5e:23:07:c2:91:7a:fa:fc:07:6f:4a:
                    11:b2:dd:32:fc:9f:e5:bf:6a:98:4c:36:32:04:51:57:
                    7b:84:b5:6d:4e:83:aa:d7:d5:cf:38:72:92:1c:5e:30:
                    7c:e5:f0:dd:0c:31:5b:93:db:cf:67:72:fb:3f:ee:be:
                    85:c4:2b:b1:12:5a:d6:0e:b6:e5:2d:11:cd:57:c4:fa:
                    a4:44:a5:48:31:92:07:c6:2e:23:f8:73:23:5f:bb:7a:
                    f9:d0:94:f8:5d:76:e2:7d:33:a9:87:b6:f5:a3:cd:a4:
                    5a:bc:fa:eb:a8:b0:62:2c:95:21:e4:a8:31:9a:d8:91:
                    2b:ef:aa:94:53:0b:d0:b6:43:f9:22:0d:b2:91:2c:30:
                    09:49:10:29:4b:1e:38:89:c5:c0:69:0a:fd:43:9e:32:
                    9b:a6:15:4a:71:22:a6:2b:84:94:6f:3a:05:a8:a9:3c:
                    47:7b:27:83:c4:ae:ad:1a:44:67:e0:cb:85:54:07:ed:
                    a5:24:0d:fd:1a:2d:4d:9b:43:dc:25:ae:8e:ff:c0:a5:
                    e4:08:62:26:8a:e1:5e:3f:78:98:66:ef:64:dc:b4:e3:
                    df:f6:04:e8:31:fd:3d:75:29:ee:dc:ae:97:1a:5d:06:
                    af:59:08:b3:24:1e:9f:a2:99:77:07:7b:59:5d:55:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c7:8e:eb:1c:16:56:a1:de:58:ce:8e:e8:27:4b:18:a5:
        ea:a7:a9:fe:2c:b1:81:64:5b:a0:6c:a8:5d:ca:40:a6:
        8b:42:2d:dd:60:c6:9d:1d:74:e9:50:27:9c:1d:27:ec:
        28:13:a9:b0:4f:cb:6f:26:7a:d3:96:e2:27:3e:ec:8b:
        19:e4:61:d1:54:d7:8c:b8:7c:62:30:24:ad:2c:c5:e1:
        ed:87:e1:8c:b4:de:35:0b:b3:75:cd:0f:7e:34:cb:2a:
        8a:c5:5f:a8:40:cf:aa:1f:b2:35:bd:59:1b:a7:7d:fb:
        7a:40:97:e3:b8:92:25:f8:e5:18:28:e6:51:03:70:ab:
        1f:46:b6:8e:6f:22:d6:75:91:14:67:36:c4:81:55:a2:
        e5:e1:13:b6:5e:aa:da:db:2f:d3:2e:dd:71:c3:05:86:
        9b:f5:e6:8a:11:c5:70:51:bb:07:24:41:6a:50:d3:fa:
        77:f4:66:26:cc:60:ce:a7:18:5e:a2:9c:a8:de:0a:ad:
        05:e1:29:51:35:d5:99:6a:b3:8c:c9:19:68:fb:1f:bb:
        dd:12:2f:be:0d:5f:10:05:f2:21:4b:d3:2c:f7:27:dc:
        73:b9:79:8d:5b:f4:e6:d5:16:80:41:42:e6:40:df:29:
        80:4b:81:82:ba:2e:32:f7:eb:51:ff:40:0e:69:bd:8f
    Fingerprint (SHA-256):
        EA:5E:9C:B6:99:F2:F3:BF:D5:D4:DE:C7:77:AF:EB:CB:2B:93:FE:E3:DE:B3:20:D7:C0:C7:8E:72:03:DA:36:A9
    Fingerprint (SHA1):
        B0:56:5B:5E:9E:9C:4F:1A:D0:04:B8:00:44:81:D6:8C:A0:5B:2F:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #4562: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #4563: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #4564: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw
cert.sh: #4565: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4566: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #4567: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -o root.cert
cert.sh: #4568: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #4569: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4570: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #4571: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #4572: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #4573: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA.ca.cert
cert.sh: #4574: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #4575: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #4576: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4577: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #4578: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4579: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4580: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #4581: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4582: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4583: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #4584: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4585: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4586: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #4587: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4588: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4589: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #4590: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4591: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
cert.sh: #4592: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #4593: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -o root.cert
cert.sh: #4594: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #4595: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4596: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #4597: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4598: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4599: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4600: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4601: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4602: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4603: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4604: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4605: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4606: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4607: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4608: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #4609: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #4610: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #4611: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4612: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #4613: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4614: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4615: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #4616: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4617: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4618: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #4619: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4620: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4621: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #4622: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4623: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4624: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #4625: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4626: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4627: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #4628: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4629: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4630: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #4631: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4632: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4633: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #4634: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4635: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4636: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #4637: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4638: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4639: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #4640: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4641: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4642: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #4643: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4644: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4645: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #4646: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4647: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4648: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #4649: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4650: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4651: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #4652: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4653: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4654: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #4655: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4656: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4657: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #4658: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4659: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4660: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #4661: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4662: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4663: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #4664: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4665: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4666: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #4667: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4668: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4669: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #4670: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4671: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4672: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #4673: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4674: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4675: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #4676: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4677: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4678: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #4679: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4680: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4681: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #4682: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4683: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4684: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #4685: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4686: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4687: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #4688: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4689: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4690: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #4691: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4692: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4693: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #4694: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4695: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4696: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #4697: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4698: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4699: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #4700: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4701: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4702: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #4703: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4704: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4705: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #4706: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4707: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4708: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #4709: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4710: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4711: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #4712: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4713: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4714: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #4715: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4716: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4717: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #4718: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4719: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4720: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #4721: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4722: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4723: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #4724: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4725: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4726: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #4727: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4728: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4729: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #4730: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4731: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4732: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #4733: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4734: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4735: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #4736: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4737: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4738: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #4739: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4740: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4741: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #4742: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4743: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4744: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #4745: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4746: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4747: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #4748: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4749: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4750: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #4751: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4752: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4753: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #4754: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4755: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4756: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #4757: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4758: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4759: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #4760: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4761: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4762: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #4763: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4764: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4765: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #4766: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4767: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4768: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #4769: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4770: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4771: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #4772: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4773: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4774: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #4775: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4776: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4777: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #4778: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4779: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4780: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #4781: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4782: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4783: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #4784: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4785: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4786: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #4787: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4788: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4789: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #4790: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4791: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4792: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #4793: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4794: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4795: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #4796: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4797: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4798: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #4799: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4800: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4801: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #4802: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4803: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #4804: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #4805: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #4806: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #4807: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #4808: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #4809: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #4810: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #4811: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #4812: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #4813: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #4814: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #4815: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #4816: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #4817: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #4818: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #4819: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #4820: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #4821: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #4822: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #4823: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Tue May  2 15:46:17 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:46:17 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4824: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                f2:f3:30:00:40:fc:df:b4:b0:08:da:57:65:91:dc:3e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4825: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4826: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4827: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4828: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                07:0b:62:ee:e6:27:71:14:de:9a:f3:31:aa:2f:e9:29
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:45:19 2017
            Not After : Mon May 02 15:45:19 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:58:a7:09:95:cc:eb:86:65:bd:8c:9a:85:55:0f:
                    71:3e:2d:b9:93:44:93:b7:d1:49:88:89:75:f3:e7:32:
                    df:5f:7c:d4:ff:45:24:f1:41:fe:fc:7a:39:8b:2d:73:
                    ad:4b:ff:89:57:7d:ce:4c:1d:f2:6d:1b:54:5c:dc:f9:
                    65:6a:53:00:e2:61:4c:29:b5:23:24:14:b3:73:55:3d:
                    38:bc:0b:4b:73:9a:e7:45:29:11:75:2f:9d:67:63:8a:
                    07:03:a2:b0:fc:8f:3c:d5:e4:fc:1a:66:7a:8a:57:f9:
                    1c:4f:6d:06:4b:04:d3:c6:70:89:6b:85:ac:d5:3c:90:
                    1d:8f:c4:90:30
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:86:02:41:7e:be:e4:46:1a:35:00:23:b6:39:ea:
        6a:48:89:19:74:4e:11:6a:d2:81:ca:82:39:87:b4:de:
        32:01:5b:b0:b1:62:0b:c7:86:47:29:21:62:ef:c3:a8:
        5c:5b:d0:e0:0e:a1:fe:49:67:58:e1:ba:77:93:0b:df:
        49:69:6c:e4:77:06:02:41:28:fe:90:f8:6a:48:09:09:
        58:aa:48:cf:c9:68:98:bb:10:38:9c:59:58:f9:c6:a5:
        cb:95:26:df:95:6d:86:fe:34:54:96:b4:28:cd:3c:8a:
        6a:3b:40:c5:0c:21:8d:e1:77:5c:2e:11:e2:69:b5:04:
        0f:3b:71:ef:ca:c4:4e:2b:11
    Fingerprint (SHA-256):
        FD:BF:11:DE:77:E4:26:EC:05:D5:D8:82:BE:B9:7F:2D:FD:E7:46:0A:41:88:81:C0:79:7F:7A:22:E7:DD:0E:DB
    Fingerprint (SHA1):
        C6:30:31:F1:EF:84:F4:22:16:68:C1:49:97:0B:53:A5:81:9C:58:87
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:45:29 2017
            Not After : Mon May 02 15:45:29 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:b7:c0:35:55:10:f7:d3:b7:76:12:41:24:8c:85:93:
                    12:f2:bb:09:7b:71:2d:ac:a9:9f:7e:21:42:c5:c2:0a:
                    e8:80:b2:7f:93:bb:46:2a:0c:a3:83:ad:b2:5a:ec:4b:
                    2d:93:4b:c3:ae:d7:4d:99:1b:87:0a:f8:36:eb:d0:9c:
                    99:fb:5c:0f:f7:d3:ce:a1:6e:d4:da:b3:24:a3:53:17:
                    d3:9e:d6:1f:28:e2:cf:df:56:8d:b4:9d:0a:59:2b:c1:
                    b7
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:42:01:47:b7:8b:d2:5b:fe:82:10:01:62:
        40:66:7a:5e:ec:22:47:dd:23:ee:85:93:b4:fe:41:ac:
        b0:dd:e4:1f:a4:ba:04:46:00:bc:30:e7:fb:91:75:40:
        13:df:96:89:d7:74:08:ba:c8:f7:e9:d4:d0:50:37:35:
        d1:98:f7:0c:9f:39:4f:02:41:01:0a:c5:de:25:2a:18:
        87:d2:12:21:df:ec:11:98:07:d8:8c:fd:2f:71:5a:21:
        e8:65:ee:4e:2d:de:89:de:c7:cb:b6:92:1a:b9:1a:d8:
        1b:83:a0:05:23:58:18:ad:1b:0b:1c:c1:1f:77:06:6e:
        a8:ef:c7:c0:f7:8f:d2:ae:67:0f
    Fingerprint (SHA-256):
        7E:A0:79:E6:B8:79:D3:7C:6B:42:C4:0C:82:7B:00:38:66:61:56:DE:2A:50:F1:C9:B7:BB:D6:4E:68:D8:29:CF
    Fingerprint (SHA1):
        4E:00:CE:D3:21:04:8B:1B:6D:2C:11:E8:C0:04:AF:21:CE:4E:53:FD
    Friendly Name: Alice-ec
tools.sh: #4829: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4830: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                77:9f:df:04:f6:be:2b:bf:97:89:4f:bb:92:a7:8f:f6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4831: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4832: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4833: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                cc:e5:b8:8a:ed:c5:fd:94:6b:f7:70:3e:fe:ad:28:59
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4834: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4835: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4836: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                d5:8d:74:58:80:c9:fd:65:29:9f:2a:a9:c9:32:0e:bf
            Iteration Count: 2000 (0x7d0)
tools.sh: #4837: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4838: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4839: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3b:59:46:6e:a4:ca:9f:40:7d:1f:74:d7:be:84:67:46
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4840: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4841: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4842: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                02:44:2e:80:7a:3f:9c:42:fc:b6:7a:c7:7c:b8:0b:de
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4843: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4844: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4845: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7a:55:68:ad:7e:35:67:53:89:d4:b2:39:4b:8f:a3:1b
            Iteration Count: 2000 (0x7d0)
tools.sh: #4846: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4847: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4848: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        15:71:b0:a4:e1:00:f9:3a:6d:ec:47:59:86:42:8a:dc
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:2f:35:1b:14:ce:5f:6d:b1:24:f5:64:56:c6:4e:
                    00:f0
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4849: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4850: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4851: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5c:2f:3d:11:01:3f:60:45:97:5e:0d:cb:10:ad:f6:34
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:b7:73:05:e4:3b:84:8e:1a:ef:c9:e9:d3:9b:fa:
                    77:f2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4852: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4853: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4854: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        26:4d:05:ce:a1:9d:49:44:3e:62:d5:f0:c3:69:23:8f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:2f:ad:21:ef:5f:0e:11:1b:2d:a9:92:6d:81:34:
                    b9:6e
tools.sh: #4855: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4856: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4857: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ce:da:31:d1:1d:17:97:ef:a4:60:24:03:1e:2f:ca:9a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:a6:e4:26:87:31:8b:1e:02:e0:9d:ea:70:19:31:
                    3f:2a
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4858: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4859: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4860: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c0:75:4e:8e:82:74:df:f7:57:e3:6a:89:70:57:84:47
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:23:35:fa:c8:43:39:41:a6:30:e5:25:33:ec:4f:
                    8d:3d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4861: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4862: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4863: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        99:c1:57:5c:79:6c:0c:0f:d1:1b:df:7f:07:03:3e:2f
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:40:7e:e4:9f:29:41:1a:fc:b2:85:7a:e2:c8:9d:
                    bd:4a
tools.sh: #4864: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4865: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4866: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c0:e2:af:3b:4b:8d:73:1b:d2:8a:c4:b5:2b:3e:f3:83
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:e3:c2:6b:8f:65:b9:d9:73:c9:35:2f:b4:90:5b:
                    87:d8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4867: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4868: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4869: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f9:db:1d:f3:11:5b:36:fe:d6:09:42:23:6d:18:9b:c2
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:a0:a1:8c:02:c6:e6:54:0f:66:cc:08:86:41:60:
                    3f:af
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4870: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4871: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4872: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        86:c4:50:68:08:33:00:6f:90:0d:71:93:f0:fd:65:90
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:c4:01:81:2b:da:af:50:fe:91:02:fb:20:45:98:
                    62:0a
tools.sh: #4873: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4874: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4875: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e1:65:16:e8:bd:09:71:ea:d8:78:6c:61:80:49:16:15
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:34:63:50:71:6d:f0:2e:31:0f:87:07:58:93:c6:
                    7e:9b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4876: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4877: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4878: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        28:eb:32:45:4a:fc:e2:16:53:6d:38:d1:cd:ee:6d:5c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:6d:5c:c4:d8:bf:11:8d:c8:43:0f:fe:12:c4:01:
                    92:85
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4879: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4880: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4881: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c3:43:d8:bf:69:23:99:81:5f:b8:41:80:18:ba:b4:9b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:4f:b9:bb:0d:f4:1b:d8:b3:06:7c:64:31:a1:3b:
                    f8:7e
tools.sh: #4882: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4883: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4884: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e3:14:a6:e6:20:09:5b:54:3e:47:7f:56:53:04:9e:c5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:d0:35:e1:36:5f:a9:17:b3:4e:94:f4:f1:cf:9d:
                    63:4f
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4885: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4886: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4887: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        34:43:b6:f6:29:10:be:55:96:3b:aa:d9:23:2e:e5:da
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:90:5f:a5:47:ba:fd:de:10:2c:08:3a:ac:b1:f4:
                    8d:bf
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4888: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4889: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4890: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        db:88:25:f1:f8:02:b2:9f:f6:fb:46:4a:a8:b3:51:ee
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:40:e7:45:c3:48:b9:af:7d:af:1c:7a:8b:e4:44:
                    8f:5e
tools.sh: #4891: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4892: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4893: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        e4:f8:31:1d:d7:78:9b:0a:8c:e5:a5:63:a5:83:32:32
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:4b:6f:88:08:70:63:04:c8:b8:62:81:e5:2c:91:
                    ee:5d
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4894: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4895: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4896: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        95:e5:2a:a3:05:ea:19:9b:30:b3:55:69:f1:7d:2e:b5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:29:5e:ba:72:c0:a9:f3:71:d3:f9:6d:bc:d2:c2:
                    4e:d7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4897: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4898: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4899: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        88:77:08:1f:82:99:66:fe:4a:80:fb:3c:28:2b:8f:85
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:9f:7b:76:2a:3a:97:ec:f2:f2:1b:88:41:99:7d:
                    41:e2
tools.sh: #4900: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4901: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4902: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                f6:18:a4:43:b6:50:c4:3c:62:e0:32:2a:f5:e0:73:9f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4903: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4904: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4905: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                94:22:fc:1b:52:c2:c6:d7:47:d3:86:0c:16:1f:95:b4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4906: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4907: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4908: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                78:f8:e6:2c:95:1b:ce:fa:38:65:bb:47:15:2b:bc:31
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4909: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4910: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4911: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                0d:62:18:16:80:52:e6:59:53:c4:5a:5f:b3:f2:d8:6e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4912: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4913: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4914: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                3e:0d:a5:90:81:4b:8e:dd:15:49:af:00:1d:ef:83:c1
            Iteration Count: 2000 (0x7d0)
tools.sh: #4915: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4916: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4917: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                47:c6:d2:cb:81:cf:0d:af:de:29:d0:d9:ec:c6:66:54
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4918: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4919: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4920: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                93:51:9e:16:96:c2:2e:97:06:1f:26:50:29:14:d2:2e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4921: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4922: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4923: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                08:77:1c:11:99:0d:3d:fa:47:58:ae:42:e0:83:84:e4
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4924: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4925: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4926: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                d6:22:c4:bc:9b:03:c7:e3:22:39:83:8c:a1:a5:f6:84
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4927: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4928: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4929: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                82:a5:d9:ea:d5:d8:53:b9:45:c1:68:b1:6a:ae:9a:3c
            Iteration Count: 2000 (0x7d0)
tools.sh: #4930: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4931: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4932: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                1a:d2:51:3c:77:7a:65:69:1d:7e:12:a9:36:18:a3:02
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4933: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4934: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4935: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                30:5c:52:b4:79:9f:bd:15:9c:c2:3a:50:a8:c5:26:e3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4936: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4937: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4938: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                f9:22:9f:fb:74:d6:56:e0:85:80:e3:15:09:b8:2c:28
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4939: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4940: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4941: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                a6:b6:de:d5:0a:df:00:2f:9d:0b:84:d8:5f:13:71:73
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4942: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4943: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4944: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                05:f0:5a:18:b2:67:06:29:be:60:e1:8b:83:b5:66:2c
            Iteration Count: 2000 (0x7d0)
tools.sh: #4945: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4946: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4947: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                08:ae:0b:7a:7e:af:86:91:90:35:07:e2:03:b8:dd:d5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4948: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4949: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4950: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                cf:39:17:25:40:fe:a5:67:59:0c:91:ec:a2:c5:79:3d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4951: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4952: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4953: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                80:28:0b:0d:ef:87:dc:a5:fb:16:6f:f2:81:e3:6c:25
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4954: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4955: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4956: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9a:ae:0b:27:49:01:29:b7:14:b6:91:36:15:16:e2:f7
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4957: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4958: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4959: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                11:25:27:5e:e3:71:33:89:4e:e8:af:a2:45:1a:45:a8
            Iteration Count: 2000 (0x7d0)
tools.sh: #4960: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4961: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4962: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5e:a0:36:58:47:f7:01:60:4c:ea:fe:a3:2b:ee:45:61
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4963: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4964: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4965: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fd:f9:04:44:3d:78:e0:93:a9:5b:21:a1:ca:e1:9a:de
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4966: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4967: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4968: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a1:bb:be:10:1b:85:91:a0:11:6a:45:72:6c:31:a0:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4969: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4970: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4971: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                dd:b4:4d:cf:1f:07:3b:20:dc:0d:17:32:e1:8c:39:69
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4972: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4973: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4974: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9a:69:fa:c2:6d:62:68:c6:ec:04:3b:05:fa:85:54:7a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4975: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4976: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4977: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                91:9f:dc:b6:25:4c:31:58:41:b3:2b:6d:1c:31:e8:85
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4978: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4979: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4980: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a9:cc:a7:ab:94:0c:ef:4a:ed:ad:af:c1:77:f4:ef:e8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4981: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4982: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4983: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                77:04:fb:c4:0d:cb:ff:b3:71:3d:75:a4:44:00:3b:f8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4984: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4985: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4986: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                86:3b:a7:37:88:ea:16:d7:d9:76:2c:0e:23:99:82:17
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4987: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4988: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4989: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                20:42:0c:4d:28:ad:b8:31:a4:9c:bc:9d:19:8e:bc:f0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:14 2017
            Not After : Mon May 02 15:45:14 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:d3:f6:72:f6:46:33:a1:cc:16:38:ac:51:9c:ac:35:
                    3e:52:42:af:10:ae:f9:9d:69:b5:3f:a4:0a:8e:e4:e4:
                    73:52:80:2e:54:a6:61:72:97:87:ec:1a:61:b1:55:a2:
                    da:42:2f:3c:c2:83:e5:b3:88:ba:83:92:43:d3:15:83:
                    23:ad:ce:38:61:84:27:d3:98:86:b2:9d:e6:5e:bc:66:
                    65:d6:2b:09:21:a7:9a:9e:3d:13:82:9e:9d:05:df:ab:
                    fa:a9:b9:b0:20:7c:49:30:f3:1d:15:3b:dd:2e:00:f4:
                    2f:10:4b:d8:b2:a1:fb:0a:df:01:ec:ee:88:df:bf:9a:
                    29:e7:5e:ad:7f:e8:73:f5:1d:05:30:b9:52:dc:d7:12:
                    9f:b5:ba:c3:34:6e:ac:8f:46:a8:6e:9e:b7:23:d3:a1:
                    80:9b:4d:d8:6f:8c:42:c3:ef:a3:19:12:31:34:77:98:
                    ef:4e:d9:e7:0c:49:b3:a3:fc:8f:cf:59:3f:74:19:f8:
                    46:19:b2:aa:bb:f4:aa:dd:29:1b:a5:8b:b0:57:5b:f0:
                    e3:bc:64:d8:78:ab:8e:9c:1f:4b:ca:a2:fc:4b:db:a8:
                    29:dd:f9:c7:2a:e1:9b:94:b8:ef:a5:3f:2a:b3:04:a5:
                    8a:53:13:22:8c:e9:40:9b:47:47:55:f9:e2:04:fa:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:9d:68:89:15:0c:40:6f:cb:f2:e5:ab:d9:6f:9b:59:
        01:e2:13:b5:53:ec:83:9b:8c:01:ee:e3:43:e7:90:23:
        e9:5e:d9:be:f9:48:d7:a9:fd:d6:51:3d:78:93:6b:37:
        fd:30:60:f5:4a:5c:fb:e1:3b:33:c5:38:f3:8f:6f:8d:
        d9:79:64:de:66:64:e5:e5:80:27:dc:fa:5a:06:a9:4e:
        42:ce:a9:01:ac:be:85:f1:45:28:b9:c7:58:70:30:99:
        72:0d:ed:c4:27:6c:69:55:c6:8a:b2:2c:2a:b1:e9:e5:
        7b:f0:8f:07:63:f5:f9:e9:e9:72:88:b3:05:44:35:7c:
        a0:fa:30:c2:b4:89:c9:79:d9:41:9e:cb:b0:80:66:e8:
        3d:4e:31:e2:9f:93:2d:ef:09:3d:e0:23:47:c6:c9:1d:
        93:34:f4:38:df:4e:d6:6b:47:1f:ae:12:7e:00:95:02:
        00:83:dd:9b:04:57:15:e7:78:42:cb:d2:15:4e:db:f8:
        5c:e2:49:5b:d3:cb:91:f1:6a:9d:d0:0a:1c:74:8a:2a:
        18:85:11:72:7f:a9:e5:b4:31:af:ac:2d:1b:13:58:9e:
        18:eb:5d:d8:7f:1c:a6:1b:47:1a:18:d9:81:49:26:c2:
        bb:5a:9f:89:46:98:03:fc:4c:da:8f:e2:4a:d9:f8:a3
    Fingerprint (SHA-256):
        44:B8:4B:7A:CD:49:09:B3:28:CE:C8:72:96:B8:AB:34:21:81:9F:AC:B1:08:DF:1B:CB:16:8C:F8:56:63:58:96
    Fingerprint (SHA1):
        D7:23:0A:03:59:67:55:DF:27:9C:78:09:F5:39:9C:C5:19:E3:C0:E8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:45:28 2017
            Not After : Mon May 02 15:45:28 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:2e:fe:94:bf:a4:fe:28:bc:98:ba:aa:46:f2:88:4c:
                    92:33:57:d2:99:bc:a6:9f:39:75:c4:41:e5:d0:ac:d6:
                    63:57:99:cf:72:1b:1c:9b:76:f8:f0:7d:fe:53:62:e6:
                    13:8d:93:5c:ca:df:79:27:9b:e0:48:34:e5:80:43:c0:
                    c0:29:ba:27:21:68:96:d0:9b:23:93:62:bc:fa:4c:cd:
                    87:aa:e7:d4:71:07:f2:6b:d8:f9:85:a8:31:ef:b7:e0:
                    75:b6:d7:62:9d:c3:f2:f0:18:f1:00:6f:00:90:e0:f5:
                    62:37:69:12:68:5e:af:39:49:92:ab:27:47:31:35:94:
                    d1:d1:6b:00:87:5d:3e:10:22:ab:6e:e8:33:eb:36:45:
                    24:a8:af:69:54:14:41:69:b3:5b:21:f5:a2:17:d9:cc:
                    1e:02:f8:aa:81:c8:36:66:c9:4c:9f:c6:47:6c:8d:0e:
                    d1:b1:c7:8f:e8:00:d2:e9:43:d5:7a:10:52:bb:26:af:
                    cb:da:ac:1d:a2:8b:44:9a:44:e4:ea:47:53:60:ee:f8:
                    c4:42:1d:4c:d7:bc:00:d3:42:15:d7:82:1e:9f:fc:6f:
                    64:29:1b:eb:59:0b:4e:83:5c:00:1b:28:46:4d:c5:6f:
                    3e:b8:11:1e:57:44:f2:07:d8:47:86:2c:12:e4:b3:8d
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        06:41:34:e6:00:15:96:de:d0:06:15:25:9e:78:5e:10:
        c1:aa:9b:3c:66:53:8f:26:72:39:09:c9:cd:cd:c0:3c:
        de:1f:f1:b7:4d:63:ed:e0:e0:36:a1:30:df:23:3d:3c:
        7b:c9:f8:4e:be:1e:35:eb:18:00:6c:70:a5:69:f5:a6:
        a0:4e:93:99:74:9e:7c:ac:ed:35:23:8f:67:9c:ce:16:
        34:d0:ef:b7:d7:7b:5f:89:a2:dc:e1:bf:c9:cb:4d:61:
        e1:f6:da:e1:c8:2a:67:56:0b:f7:42:8c:aa:d7:a3:b3:
        02:d9:ea:09:16:e5:63:55:a5:3d:9b:7a:d1:e7:e5:5b:
        bc:0a:e0:25:bc:78:61:cd:91:0d:7f:0c:1b:fe:91:bb:
        72:c4:25:e8:11:75:9c:41:41:80:63:f0:58:d9:a5:53:
        57:23:d4:ff:54:7b:f8:53:71:19:95:67:31:2b:20:eb:
        fe:c1:87:cb:12:17:ff:21:f9:04:f1:b3:d7:10:18:da:
        bf:60:60:ee:70:53:37:f4:13:05:e2:64:12:56:56:24:
        02:ac:63:2d:7c:8e:6f:80:75:1b:80:27:03:de:bb:cd:
        d7:e2:63:05:ba:d4:5f:61:94:56:a1:c6:e9:31:66:a9:
        3e:e8:3c:f7:75:96:74:d4:1e:39:e6:25:2a:e0:91:44
    Fingerprint (SHA-256):
        16:8F:B5:D7:84:AE:E8:B4:BB:BC:6C:C3:A3:E6:B2:C6:56:A1:FF:C8:13:50:D8:C2:3B:86:49:E6:D2:71:50:73
    Fingerprint (SHA1):
        2E:4B:E0:B3:1D:F9:C2:FA:13:92:11:5C:27:03:1A:98:33:9C:97:2B
    Friendly Name: Alice
tools.sh: #4990: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #4991: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #4992: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #4993: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #4994: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #4995: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #4996: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #4997: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #4998: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #4999: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #5000: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:46:25 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:46:25 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #5001: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5002: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      e529b297493c86e8e655d01950247297f361c8f2   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #5003: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #5004: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #5005: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #5006: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #5007: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #5008: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #5009: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5010: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #5011: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5012: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5013: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      e529b297493c86e8e655d01950247297f361c8f2   FIPS_PUB_140_Test_Certificate
fips.sh: #5014: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #5015: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #5016: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #5017: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #5018: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      e529b297493c86e8e655d01950247297f361c8f2   FIPS_PUB_140_Test_Certificate
fips.sh: #5019: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #5020: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #5021: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle
Changing byte 0x00042cf8 (273656): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/fips/mangle dbtest -r -d ../fips
fips.sh: #5022: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:46:43 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:46:43 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1184 >/dev/null 2>/dev/null
selfserv_9590 with PID 1184 found at Tue May  2 15:46:44 UTC 2017
selfserv_9590 with PID 1184 started at Tue May  2 15:46:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5023: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1184 at Tue May  2 15:46:44 UTC 2017
kill -USR1 1184
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1184 killed at Tue May  2 15:46:44 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1240 >/dev/null 2>/dev/null
selfserv_9590 with PID 1240 found at Tue May  2 15:46:44 UTC 2017
selfserv_9590 with PID 1240 started at Tue May  2 15:46:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5024: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1240 at Tue May  2 15:46:44 UTC 2017
kill -USR1 1240
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1240 killed at Tue May  2 15:46:44 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1296 >/dev/null 2>/dev/null
selfserv_9590 with PID 1296 found at Tue May  2 15:46:44 UTC 2017
selfserv_9590 with PID 1296 started at Tue May  2 15:46:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5025: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1296 at Tue May  2 15:46:44 UTC 2017
kill -USR1 1296
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1296 killed at Tue May  2 15:46:44 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1364 >/dev/null 2>/dev/null
selfserv_9590 with PID 1364 found at Tue May  2 15:46:44 UTC 2017
selfserv_9590 with PID 1364 started at Tue May  2 15:46:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5026: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1364 at Tue May  2 15:46:45 UTC 2017
kill -USR1 1364
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1364 killed at Tue May  2 15:46:45 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1420 >/dev/null 2>/dev/null
selfserv_9590 with PID 1420 found at Tue May  2 15:46:45 UTC 2017
selfserv_9590 with PID 1420 started at Tue May  2 15:46:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5027: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1420 at Tue May  2 15:46:45 UTC 2017
kill -USR1 1420
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1420 killed at Tue May  2 15:46:45 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1476 >/dev/null 2>/dev/null
selfserv_9590 with PID 1476 found at Tue May  2 15:46:45 UTC 2017
selfserv_9590 with PID 1476 started at Tue May  2 15:46:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5028: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1476 at Tue May  2 15:46:45 UTC 2017
kill -USR1 1476
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1476 killed at Tue May  2 15:46:45 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1544 >/dev/null 2>/dev/null
selfserv_9590 with PID 1544 found at Tue May  2 15:46:45 UTC 2017
selfserv_9590 with PID 1544 started at Tue May  2 15:46:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5029: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1544 at Tue May  2 15:46:45 UTC 2017
kill -USR1 1544
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1544 killed at Tue May  2 15:46:45 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1600 >/dev/null 2>/dev/null
selfserv_9590 with PID 1600 found at Tue May  2 15:46:45 UTC 2017
selfserv_9590 with PID 1600 started at Tue May  2 15:46:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5030: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 1600 at Tue May  2 15:46:46 UTC 2017
kill -USR1 1600
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1600 killed at Tue May  2 15:46:46 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1656 >/dev/null 2>/dev/null
selfserv_9590 with PID 1656 found at Tue May  2 15:46:46 UTC 2017
selfserv_9590 with PID 1656 started at Tue May  2 15:46:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5031: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1656 at Tue May  2 15:46:46 UTC 2017
kill -USR1 1656
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1656 killed at Tue May  2 15:46:46 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1724 >/dev/null 2>/dev/null
selfserv_9590 with PID 1724 found at Tue May  2 15:46:46 UTC 2017
selfserv_9590 with PID 1724 started at Tue May  2 15:46:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5032: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1724 at Tue May  2 15:46:46 UTC 2017
kill -USR1 1724
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1724 killed at Tue May  2 15:46:46 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1780 >/dev/null 2>/dev/null
selfserv_9590 with PID 1780 found at Tue May  2 15:46:46 UTC 2017
selfserv_9590 with PID 1780 started at Tue May  2 15:46:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5033: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1780 at Tue May  2 15:46:46 UTC 2017
kill -USR1 1780
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1780 killed at Tue May  2 15:46:46 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1836 >/dev/null 2>/dev/null
selfserv_9590 with PID 1836 found at Tue May  2 15:46:46 UTC 2017
selfserv_9590 with PID 1836 started at Tue May  2 15:46:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5034: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1836 at Tue May  2 15:46:47 UTC 2017
kill -USR1 1836
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1836 killed at Tue May  2 15:46:47 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1904 >/dev/null 2>/dev/null
selfserv_9590 with PID 1904 found at Tue May  2 15:46:47 UTC 2017
selfserv_9590 with PID 1904 started at Tue May  2 15:46:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5035: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1904 at Tue May  2 15:46:47 UTC 2017
kill -USR1 1904
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1904 killed at Tue May  2 15:46:47 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1960 >/dev/null 2>/dev/null
selfserv_9590 with PID 1960 found at Tue May  2 15:46:47 UTC 2017
selfserv_9590 with PID 1960 started at Tue May  2 15:46:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5036: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 1960 at Tue May  2 15:46:47 UTC 2017
kill -USR1 1960
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1960 killed at Tue May  2 15:46:47 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2016 >/dev/null 2>/dev/null
selfserv_9590 with PID 2016 found at Tue May  2 15:46:47 UTC 2017
selfserv_9590 with PID 2016 started at Tue May  2 15:46:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5037: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 2016 at Tue May  2 15:46:47 UTC 2017
kill -USR1 2016
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2016 killed at Tue May  2 15:46:47 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2084 >/dev/null 2>/dev/null
selfserv_9590 with PID 2084 found at Tue May  2 15:46:47 UTC 2017
selfserv_9590 with PID 2084 started at Tue May  2 15:46:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5038: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 2084 at Tue May  2 15:46:48 UTC 2017
kill -USR1 2084
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2084 killed at Tue May  2 15:46:48 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2140 >/dev/null 2>/dev/null
selfserv_9590 with PID 2140 found at Tue May  2 15:46:48 UTC 2017
selfserv_9590 with PID 2140 started at Tue May  2 15:46:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5039: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2140 at Tue May  2 15:46:48 UTC 2017
kill -USR1 2140
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2140 killed at Tue May  2 15:46:48 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2196 >/dev/null 2>/dev/null
selfserv_9590 with PID 2196 found at Tue May  2 15:46:48 UTC 2017
selfserv_9590 with PID 2196 started at Tue May  2 15:46:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5040: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 2196 at Tue May  2 15:46:48 UTC 2017
kill -USR1 2196
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2196 killed at Tue May  2 15:46:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2264 >/dev/null 2>/dev/null
selfserv_9590 with PID 2264 found at Tue May  2 15:46:48 UTC 2017
selfserv_9590 with PID 2264 started at Tue May  2 15:46:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5041: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2264 at Tue May  2 15:46:48 UTC 2017
kill -USR1 2264
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2264 killed at Tue May  2 15:46:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2320 >/dev/null 2>/dev/null
selfserv_9590 with PID 2320 found at Tue May  2 15:46:48 UTC 2017
selfserv_9590 with PID 2320 started at Tue May  2 15:46:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5042: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2320 at Tue May  2 15:46:49 UTC 2017
kill -USR1 2320
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2320 killed at Tue May  2 15:46:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2376 >/dev/null 2>/dev/null
selfserv_9590 with PID 2376 found at Tue May  2 15:46:49 UTC 2017
selfserv_9590 with PID 2376 started at Tue May  2 15:46:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5043: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2376 at Tue May  2 15:46:49 UTC 2017
kill -USR1 2376
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2376 killed at Tue May  2 15:46:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2444 >/dev/null 2>/dev/null
selfserv_9590 with PID 2444 found at Tue May  2 15:46:49 UTC 2017
selfserv_9590 with PID 2444 started at Tue May  2 15:46:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5044: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2444 at Tue May  2 15:46:49 UTC 2017
kill -USR1 2444
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2444 killed at Tue May  2 15:46:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2500 >/dev/null 2>/dev/null
selfserv_9590 with PID 2500 found at Tue May  2 15:46:49 UTC 2017
selfserv_9590 with PID 2500 started at Tue May  2 15:46:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5045: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2500 at Tue May  2 15:46:49 UTC 2017
kill -USR1 2500
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2500 killed at Tue May  2 15:46:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2556 >/dev/null 2>/dev/null
selfserv_9590 with PID 2556 found at Tue May  2 15:46:49 UTC 2017
selfserv_9590 with PID 2556 started at Tue May  2 15:46:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5046: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2556 at Tue May  2 15:46:49 UTC 2017
kill -USR1 2556
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2556 killed at Tue May  2 15:46:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2624 >/dev/null 2>/dev/null
selfserv_9590 with PID 2624 found at Tue May  2 15:46:50 UTC 2017
selfserv_9590 with PID 2624 started at Tue May  2 15:46:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5047: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 2624 at Tue May  2 15:46:50 UTC 2017
kill -USR1 2624
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2624 killed at Tue May  2 15:46:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2680 >/dev/null 2>/dev/null
selfserv_9590 with PID 2680 found at Tue May  2 15:46:50 UTC 2017
selfserv_9590 with PID 2680 started at Tue May  2 15:46:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5048: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 2680 at Tue May  2 15:46:50 UTC 2017
kill -USR1 2680
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2680 killed at Tue May  2 15:46:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2736 >/dev/null 2>/dev/null
selfserv_9590 with PID 2736 found at Tue May  2 15:46:50 UTC 2017
selfserv_9590 with PID 2736 started at Tue May  2 15:46:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5049: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 2736 at Tue May  2 15:46:50 UTC 2017
kill -USR1 2736
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2736 killed at Tue May  2 15:46:50 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2804 >/dev/null 2>/dev/null
selfserv_9590 with PID 2804 found at Tue May  2 15:46:50 UTC 2017
selfserv_9590 with PID 2804 started at Tue May  2 15:46:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5050: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 2804 at Tue May  2 15:46:50 UTC 2017
kill -USR1 2804
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2804 killed at Tue May  2 15:46:50 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2860 >/dev/null 2>/dev/null
selfserv_9590 with PID 2860 found at Tue May  2 15:46:50 UTC 2017
selfserv_9590 with PID 2860 started at Tue May  2 15:46:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5051: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 2860 at Tue May  2 15:46:51 UTC 2017
kill -USR1 2860
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2860 killed at Tue May  2 15:46:51 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2916 >/dev/null 2>/dev/null
selfserv_9590 with PID 2916 found at Tue May  2 15:46:51 UTC 2017
selfserv_9590 with PID 2916 started at Tue May  2 15:46:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5052: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 2916 at Tue May  2 15:46:51 UTC 2017
kill -USR1 2916
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2916 killed at Tue May  2 15:46:51 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2984 >/dev/null 2>/dev/null
selfserv_9590 with PID 2984 found at Tue May  2 15:46:51 UTC 2017
selfserv_9590 with PID 2984 started at Tue May  2 15:46:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5053: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 2984 at Tue May  2 15:46:51 UTC 2017
kill -USR1 2984
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2984 killed at Tue May  2 15:46:51 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3040 >/dev/null 2>/dev/null
selfserv_9590 with PID 3040 found at Tue May  2 15:46:51 UTC 2017
selfserv_9590 with PID 3040 started at Tue May  2 15:46:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5054: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 3040 at Tue May  2 15:46:51 UTC 2017
kill -USR1 3040
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3040 killed at Tue May  2 15:46:51 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3096 >/dev/null 2>/dev/null
selfserv_9590 with PID 3096 found at Tue May  2 15:46:51 UTC 2017
selfserv_9590 with PID 3096 started at Tue May  2 15:46:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5055: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 3096 at Tue May  2 15:46:51 UTC 2017
kill -USR1 3096
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3096 killed at Tue May  2 15:46:51 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3164 >/dev/null 2>/dev/null
selfserv_9590 with PID 3164 found at Tue May  2 15:46:51 UTC 2017
selfserv_9590 with PID 3164 started at Tue May  2 15:46:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5056: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 3164 at Tue May  2 15:46:52 UTC 2017
kill -USR1 3164
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3164 killed at Tue May  2 15:46:52 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3220 >/dev/null 2>/dev/null
selfserv_9590 with PID 3220 found at Tue May  2 15:46:52 UTC 2017
selfserv_9590 with PID 3220 started at Tue May  2 15:46:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5057: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3220 at Tue May  2 15:46:52 UTC 2017
kill -USR1 3220
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3220 killed at Tue May  2 15:46:52 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3276 >/dev/null 2>/dev/null
selfserv_9590 with PID 3276 found at Tue May  2 15:46:52 UTC 2017
selfserv_9590 with PID 3276 started at Tue May  2 15:46:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5058: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 3276 at Tue May  2 15:46:52 UTC 2017
kill -USR1 3276
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3276 killed at Tue May  2 15:46:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3344 >/dev/null 2>/dev/null
selfserv_9590 with PID 3344 found at Tue May  2 15:46:52 UTC 2017
selfserv_9590 with PID 3344 started at Tue May  2 15:46:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5059: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3344 at Tue May  2 15:46:52 UTC 2017
kill -USR1 3344
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3344 killed at Tue May  2 15:46:52 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3400 >/dev/null 2>/dev/null
selfserv_9590 with PID 3400 found at Tue May  2 15:46:52 UTC 2017
selfserv_9590 with PID 3400 started at Tue May  2 15:46:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5060: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3400 at Tue May  2 15:46:53 UTC 2017
kill -USR1 3400
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3400 killed at Tue May  2 15:46:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3456 >/dev/null 2>/dev/null
selfserv_9590 with PID 3456 found at Tue May  2 15:46:53 UTC 2017
selfserv_9590 with PID 3456 started at Tue May  2 15:46:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5061: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3456 at Tue May  2 15:46:53 UTC 2017
kill -USR1 3456
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3456 killed at Tue May  2 15:46:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3524 >/dev/null 2>/dev/null
selfserv_9590 with PID 3524 found at Tue May  2 15:46:53 UTC 2017
selfserv_9590 with PID 3524 started at Tue May  2 15:46:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5062: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3524 at Tue May  2 15:46:53 UTC 2017
kill -USR1 3524
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3524 killed at Tue May  2 15:46:53 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3580 >/dev/null 2>/dev/null
selfserv_9590 with PID 3580 found at Tue May  2 15:46:53 UTC 2017
selfserv_9590 with PID 3580 started at Tue May  2 15:46:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5063: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3580 at Tue May  2 15:46:54 UTC 2017
kill -USR1 3580
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3580 killed at Tue May  2 15:46:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3636 >/dev/null 2>/dev/null
selfserv_9590 with PID 3636 found at Tue May  2 15:46:54 UTC 2017
selfserv_9590 with PID 3636 started at Tue May  2 15:46:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5064: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3636 at Tue May  2 15:46:54 UTC 2017
kill -USR1 3636
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3636 killed at Tue May  2 15:46:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3704 >/dev/null 2>/dev/null
selfserv_9590 with PID 3704 found at Tue May  2 15:46:54 UTC 2017
selfserv_9590 with PID 3704 started at Tue May  2 15:46:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5065: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3704 at Tue May  2 15:46:54 UTC 2017
kill -USR1 3704
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3704 killed at Tue May  2 15:46:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3760 >/dev/null 2>/dev/null
selfserv_9590 with PID 3760 found at Tue May  2 15:46:54 UTC 2017
selfserv_9590 with PID 3760 started at Tue May  2 15:46:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5066: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 3760 at Tue May  2 15:46:54 UTC 2017
kill -USR1 3760
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3760 killed at Tue May  2 15:46:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3816 >/dev/null 2>/dev/null
selfserv_9590 with PID 3816 found at Tue May  2 15:46:54 UTC 2017
selfserv_9590 with PID 3816 started at Tue May  2 15:46:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5067: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3816 at Tue May  2 15:46:55 UTC 2017
kill -USR1 3816
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3816 killed at Tue May  2 15:46:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3884 >/dev/null 2>/dev/null
selfserv_9590 with PID 3884 found at Tue May  2 15:46:55 UTC 2017
selfserv_9590 with PID 3884 started at Tue May  2 15:46:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5068: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3884 at Tue May  2 15:46:55 UTC 2017
kill -USR1 3884
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3884 killed at Tue May  2 15:46:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3940 >/dev/null 2>/dev/null
selfserv_9590 with PID 3940 found at Tue May  2 15:46:55 UTC 2017
selfserv_9590 with PID 3940 started at Tue May  2 15:46:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5069: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3940 at Tue May  2 15:46:55 UTC 2017
kill -USR1 3940
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3940 killed at Tue May  2 15:46:55 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3996 >/dev/null 2>/dev/null
selfserv_9590 with PID 3996 found at Tue May  2 15:46:55 UTC 2017
selfserv_9590 with PID 3996 started at Tue May  2 15:46:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5070: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3996 at Tue May  2 15:46:56 UTC 2017
kill -USR1 3996
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3996 killed at Tue May  2 15:46:56 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4064 >/dev/null 2>/dev/null
selfserv_9590 with PID 4064 found at Tue May  2 15:46:56 UTC 2017
selfserv_9590 with PID 4064 started at Tue May  2 15:46:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5071: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 4064 at Tue May  2 15:46:56 UTC 2017
kill -USR1 4064
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4064 killed at Tue May  2 15:46:56 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4120 >/dev/null 2>/dev/null
selfserv_9590 with PID 4120 found at Tue May  2 15:46:56 UTC 2017
selfserv_9590 with PID 4120 started at Tue May  2 15:46:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5072: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 4120 at Tue May  2 15:46:56 UTC 2017
kill -USR1 4120
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4120 killed at Tue May  2 15:46:56 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4176 >/dev/null 2>/dev/null
selfserv_9590 with PID 4176 found at Tue May  2 15:46:56 UTC 2017
selfserv_9590 with PID 4176 started at Tue May  2 15:46:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5073: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 4176 at Tue May  2 15:46:56 UTC 2017
kill -USR1 4176
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4176 killed at Tue May  2 15:46:56 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4244 >/dev/null 2>/dev/null
selfserv_9590 with PID 4244 found at Tue May  2 15:46:56 UTC 2017
selfserv_9590 with PID 4244 started at Tue May  2 15:46:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5074: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 4244 at Tue May  2 15:46:57 UTC 2017
kill -USR1 4244
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4244 killed at Tue May  2 15:46:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4300 >/dev/null 2>/dev/null
selfserv_9590 with PID 4300 found at Tue May  2 15:46:57 UTC 2017
selfserv_9590 with PID 4300 started at Tue May  2 15:46:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5075: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4300 at Tue May  2 15:46:57 UTC 2017
kill -USR1 4300
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4300 killed at Tue May  2 15:46:57 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4356 >/dev/null 2>/dev/null
selfserv_9590 with PID 4356 found at Tue May  2 15:46:57 UTC 2017
selfserv_9590 with PID 4356 started at Tue May  2 15:46:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5076: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 4356 at Tue May  2 15:46:57 UTC 2017
kill -USR1 4356
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4356 killed at Tue May  2 15:46:57 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4424 >/dev/null 2>/dev/null
selfserv_9590 with PID 4424 found at Tue May  2 15:46:57 UTC 2017
selfserv_9590 with PID 4424 started at Tue May  2 15:46:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5077: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4424 at Tue May  2 15:46:58 UTC 2017
kill -USR1 4424
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4424 killed at Tue May  2 15:46:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4480 >/dev/null 2>/dev/null
selfserv_9590 with PID 4480 found at Tue May  2 15:46:58 UTC 2017
selfserv_9590 with PID 4480 started at Tue May  2 15:46:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5078: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4480 at Tue May  2 15:46:58 UTC 2017
kill -USR1 4480
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4480 killed at Tue May  2 15:46:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:46:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4536 >/dev/null 2>/dev/null
selfserv_9590 with PID 4536 found at Tue May  2 15:46:58 UTC 2017
selfserv_9590 with PID 4536 started at Tue May  2 15:46:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5079: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4536 at Tue May  2 15:46:58 UTC 2017
kill -USR1 4536
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4536 killed at Tue May  2 15:46:58 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4605 >/dev/null 2>/dev/null
selfserv_9590 with PID 4605 found at Tue May  2 15:46:58 UTC 2017
selfserv_9590 with PID 4605 started at Tue May  2 15:46:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5080: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4605 at Tue May  2 15:46:59 UTC 2017
kill -USR1 4605
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4605 killed at Tue May  2 15:46:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4661 >/dev/null 2>/dev/null
selfserv_9590 with PID 4661 found at Tue May  2 15:46:59 UTC 2017
selfserv_9590 with PID 4661 started at Tue May  2 15:46:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5081: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4661 at Tue May  2 15:46:59 UTC 2017
kill -USR1 4661
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4661 killed at Tue May  2 15:46:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:46:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4717 >/dev/null 2>/dev/null
selfserv_9590 with PID 4717 found at Tue May  2 15:46:59 UTC 2017
selfserv_9590 with PID 4717 started at Tue May  2 15:46:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5082: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4717 at Tue May  2 15:46:59 UTC 2017
kill -USR1 4717
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4717 killed at Tue May  2 15:46:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:46:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:46:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4785 >/dev/null 2>/dev/null
selfserv_9590 with PID 4785 found at Tue May  2 15:46:59 UTC 2017
selfserv_9590 with PID 4785 started at Tue May  2 15:46:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5083: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 4785 at Tue May  2 15:46:59 UTC 2017
kill -USR1 4785
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4785 killed at Tue May  2 15:46:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4841 >/dev/null 2>/dev/null
selfserv_9590 with PID 4841 found at Tue May  2 15:47:00 UTC 2017
selfserv_9590 with PID 4841 started at Tue May  2 15:47:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5084: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4841 at Tue May  2 15:47:00 UTC 2017
kill -USR1 4841
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4841 killed at Tue May  2 15:47:00 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4897 >/dev/null 2>/dev/null
selfserv_9590 with PID 4897 found at Tue May  2 15:47:00 UTC 2017
selfserv_9590 with PID 4897 started at Tue May  2 15:47:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5085: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 4897 at Tue May  2 15:47:00 UTC 2017
kill -USR1 4897
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4897 killed at Tue May  2 15:47:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:47:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5025 >/dev/null 2>/dev/null
selfserv_9590 with PID 5025 found at Tue May  2 15:47:00 UTC 2017
selfserv_9590 with PID 5025 started at Tue May  2 15:47:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5086: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 5025 at Tue May  2 15:47:00 UTC 2017
kill -USR1 5025
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5025 killed at Tue May  2 15:47:00 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:47:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5084 >/dev/null 2>/dev/null
selfserv_9590 with PID 5084 found at Tue May  2 15:47:01 UTC 2017
selfserv_9590 with PID 5084 started at Tue May  2 15:47:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5087: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 5084 at Tue May  2 15:47:01 UTC 2017
kill -USR1 5084
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5084 killed at Tue May  2 15:47:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:47:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5145 >/dev/null 2>/dev/null
selfserv_9590 with PID 5145 found at Tue May  2 15:47:01 UTC 2017
selfserv_9590 with PID 5145 started at Tue May  2 15:47:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5088: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 5145 at Tue May  2 15:47:01 UTC 2017
kill -USR1 5145
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5145 killed at Tue May  2 15:47:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5217 >/dev/null 2>/dev/null
selfserv_9590 with PID 5217 found at Tue May  2 15:47:01 UTC 2017
selfserv_9590 with PID 5217 started at Tue May  2 15:47:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5089: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 5217 at Tue May  2 15:47:01 UTC 2017
kill -USR1 5217
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5217 killed at Tue May  2 15:47:01 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5281 >/dev/null 2>/dev/null
selfserv_9590 with PID 5281 found at Tue May  2 15:47:02 UTC 2017
selfserv_9590 with PID 5281 started at Tue May  2 15:47:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5090: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 5281 at Tue May  2 15:47:02 UTC 2017
kill -USR1 5281
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5281 killed at Tue May  2 15:47:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5362 >/dev/null 2>/dev/null
selfserv_9590 with PID 5362 found at Tue May  2 15:47:02 UTC 2017
selfserv_9590 with PID 5362 started at Tue May  2 15:47:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5091: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 5362 at Tue May  2 15:47:02 UTC 2017
kill -USR1 5362
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5362 killed at Tue May  2 15:47:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5479 >/dev/null 2>/dev/null
selfserv_9590 with PID 5479 found at Tue May  2 15:47:02 UTC 2017
selfserv_9590 with PID 5479 started at Tue May  2 15:47:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5092: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 5479 at Tue May  2 15:47:02 UTC 2017
kill -USR1 5479
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5479 killed at Tue May  2 15:47:02 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5535 >/dev/null 2>/dev/null
selfserv_9590 with PID 5535 found at Tue May  2 15:47:02 UTC 2017
selfserv_9590 with PID 5535 started at Tue May  2 15:47:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5093: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5535 at Tue May  2 15:47:03 UTC 2017
kill -USR1 5535
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5535 killed at Tue May  2 15:47:03 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5591 >/dev/null 2>/dev/null
selfserv_9590 with PID 5591 found at Tue May  2 15:47:03 UTC 2017
selfserv_9590 with PID 5591 started at Tue May  2 15:47:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5094: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 5591 at Tue May  2 15:47:03 UTC 2017
kill -USR1 5591
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5591 killed at Tue May  2 15:47:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:47:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5659 >/dev/null 2>/dev/null
selfserv_9590 with PID 5659 found at Tue May  2 15:47:03 UTC 2017
selfserv_9590 with PID 5659 started at Tue May  2 15:47:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5095: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5659 at Tue May  2 15:47:03 UTC 2017
kill -USR1 5659
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5659 killed at Tue May  2 15:47:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:47:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5715 >/dev/null 2>/dev/null
selfserv_9590 with PID 5715 found at Tue May  2 15:47:03 UTC 2017
selfserv_9590 with PID 5715 started at Tue May  2 15:47:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5096: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5715 at Tue May  2 15:47:04 UTC 2017
kill -USR1 5715
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5715 killed at Tue May  2 15:47:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:47:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5771 >/dev/null 2>/dev/null
selfserv_9590 with PID 5771 found at Tue May  2 15:47:04 UTC 2017
selfserv_9590 with PID 5771 started at Tue May  2 15:47:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5097: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5771 at Tue May  2 15:47:04 UTC 2017
kill -USR1 5771
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5771 killed at Tue May  2 15:47:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5839 >/dev/null 2>/dev/null
selfserv_9590 with PID 5839 found at Tue May  2 15:47:04 UTC 2017
selfserv_9590 with PID 5839 started at Tue May  2 15:47:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5098: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5839 at Tue May  2 15:47:04 UTC 2017
kill -USR1 5839
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5839 killed at Tue May  2 15:47:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5895 >/dev/null 2>/dev/null
selfserv_9590 with PID 5895 found at Tue May  2 15:47:04 UTC 2017
selfserv_9590 with PID 5895 started at Tue May  2 15:47:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5099: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5895 at Tue May  2 15:47:04 UTC 2017
kill -USR1 5895
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5895 killed at Tue May  2 15:47:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5951 >/dev/null 2>/dev/null
selfserv_9590 with PID 5951 found at Tue May  2 15:47:04 UTC 2017
selfserv_9590 with PID 5951 started at Tue May  2 15:47:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5100: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5951 at Tue May  2 15:47:05 UTC 2017
kill -USR1 5951
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5951 killed at Tue May  2 15:47:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6019 >/dev/null 2>/dev/null
selfserv_9590 with PID 6019 found at Tue May  2 15:47:05 UTC 2017
selfserv_9590 with PID 6019 started at Tue May  2 15:47:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5101: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6019 at Tue May  2 15:47:05 UTC 2017
kill -USR1 6019
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6019 killed at Tue May  2 15:47:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6075 >/dev/null 2>/dev/null
selfserv_9590 with PID 6075 found at Tue May  2 15:47:05 UTC 2017
selfserv_9590 with PID 6075 started at Tue May  2 15:47:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5102: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6075 at Tue May  2 15:47:05 UTC 2017
kill -USR1 6075
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6075 killed at Tue May  2 15:47:05 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6131 >/dev/null 2>/dev/null
selfserv_9590 with PID 6131 found at Tue May  2 15:47:05 UTC 2017
selfserv_9590 with PID 6131 started at Tue May  2 15:47:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5103: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6131 at Tue May  2 15:47:05 UTC 2017
kill -USR1 6131
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6131 killed at Tue May  2 15:47:05 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:47:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6199 >/dev/null 2>/dev/null
selfserv_9590 with PID 6199 found at Tue May  2 15:47:05 UTC 2017
selfserv_9590 with PID 6199 started at Tue May  2 15:47:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5104: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6199 at Tue May  2 15:47:06 UTC 2017
kill -USR1 6199
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6199 killed at Tue May  2 15:47:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:47:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6255 >/dev/null 2>/dev/null
selfserv_9590 with PID 6255 found at Tue May  2 15:47:06 UTC 2017
selfserv_9590 with PID 6255 started at Tue May  2 15:47:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5105: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6255 at Tue May  2 15:47:06 UTC 2017
kill -USR1 6255
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6255 killed at Tue May  2 15:47:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:47:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6311 >/dev/null 2>/dev/null
selfserv_9590 with PID 6311 found at Tue May  2 15:47:06 UTC 2017
selfserv_9590 with PID 6311 started at Tue May  2 15:47:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5106: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6311 at Tue May  2 15:47:06 UTC 2017
kill -USR1 6311
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6311 killed at Tue May  2 15:47:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6379 >/dev/null 2>/dev/null
selfserv_9590 with PID 6379 found at Tue May  2 15:47:06 UTC 2017
selfserv_9590 with PID 6379 started at Tue May  2 15:47:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5107: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6379 at Tue May  2 15:47:06 UTC 2017
kill -USR1 6379
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6379 killed at Tue May  2 15:47:06 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6435 >/dev/null 2>/dev/null
selfserv_9590 with PID 6435 found at Tue May  2 15:47:06 UTC 2017
selfserv_9590 with PID 6435 started at Tue May  2 15:47:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5108: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6435 at Tue May  2 15:47:07 UTC 2017
kill -USR1 6435
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6435 killed at Tue May  2 15:47:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6491 >/dev/null 2>/dev/null
selfserv_9590 with PID 6491 found at Tue May  2 15:47:07 UTC 2017
selfserv_9590 with PID 6491 started at Tue May  2 15:47:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5109: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6491 at Tue May  2 15:47:07 UTC 2017
kill -USR1 6491
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6491 killed at Tue May  2 15:47:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6559 >/dev/null 2>/dev/null
selfserv_9590 with PID 6559 found at Tue May  2 15:47:07 UTC 2017
selfserv_9590 with PID 6559 started at Tue May  2 15:47:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5110: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6559 at Tue May  2 15:47:07 UTC 2017
kill -USR1 6559
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6559 killed at Tue May  2 15:47:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6615 >/dev/null 2>/dev/null
selfserv_9590 with PID 6615 found at Tue May  2 15:47:07 UTC 2017
selfserv_9590 with PID 6615 started at Tue May  2 15:47:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5111: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6615 at Tue May  2 15:47:07 UTC 2017
kill -USR1 6615
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6615 killed at Tue May  2 15:47:07 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6671 >/dev/null 2>/dev/null
selfserv_9590 with PID 6671 found at Tue May  2 15:47:07 UTC 2017
selfserv_9590 with PID 6671 started at Tue May  2 15:47:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5112: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6671 at Tue May  2 15:47:08 UTC 2017
kill -USR1 6671
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6671 killed at Tue May  2 15:47:08 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6748 >/dev/null 2>/dev/null
selfserv_9590 with PID 6748 found at Tue May  2 15:47:08 UTC 2017
selfserv_9590 with PID 6748 started at Tue May  2 15:47:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5113: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6748 at Tue May  2 15:47:08 UTC 2017
kill -USR1 6748
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6748 killed at Tue May  2 15:47:08 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6804 >/dev/null 2>/dev/null
selfserv_9590 with PID 6804 found at Tue May  2 15:47:08 UTC 2017
selfserv_9590 with PID 6804 started at Tue May  2 15:47:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5114: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6804 at Tue May  2 15:47:08 UTC 2017
kill -USR1 6804
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6804 killed at Tue May  2 15:47:08 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6860 >/dev/null 2>/dev/null
selfserv_9590 with PID 6860 found at Tue May  2 15:47:08 UTC 2017
selfserv_9590 with PID 6860 started at Tue May  2 15:47:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5115: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6860 at Tue May  2 15:47:09 UTC 2017
kill -USR1 6860
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6860 killed at Tue May  2 15:47:09 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6928 >/dev/null 2>/dev/null
selfserv_9590 with PID 6928 found at Tue May  2 15:47:09 UTC 2017
selfserv_9590 with PID 6928 started at Tue May  2 15:47:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5116: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 6928 at Tue May  2 15:47:09 UTC 2017
kill -USR1 6928
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6928 killed at Tue May  2 15:47:09 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6984 >/dev/null 2>/dev/null
selfserv_9590 with PID 6984 found at Tue May  2 15:47:09 UTC 2017
selfserv_9590 with PID 6984 started at Tue May  2 15:47:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5117: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6984 at Tue May  2 15:47:09 UTC 2017
kill -USR1 6984
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6984 killed at Tue May  2 15:47:09 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7040 >/dev/null 2>/dev/null
selfserv_9590 with PID 7040 found at Tue May  2 15:47:09 UTC 2017
selfserv_9590 with PID 7040 started at Tue May  2 15:47:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5118: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7040 at Tue May  2 15:47:09 UTC 2017
kill -USR1 7040
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7040 killed at Tue May  2 15:47:09 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7108 >/dev/null 2>/dev/null
selfserv_9590 with PID 7108 found at Tue May  2 15:47:09 UTC 2017
selfserv_9590 with PID 7108 started at Tue May  2 15:47:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5119: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7108 at Tue May  2 15:47:10 UTC 2017
kill -USR1 7108
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7108 killed at Tue May  2 15:47:10 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7164 >/dev/null 2>/dev/null
selfserv_9590 with PID 7164 found at Tue May  2 15:47:10 UTC 2017
selfserv_9590 with PID 7164 started at Tue May  2 15:47:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5120: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7164 at Tue May  2 15:47:10 UTC 2017
kill -USR1 7164
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7164 killed at Tue May  2 15:47:10 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7220 >/dev/null 2>/dev/null
selfserv_9590 with PID 7220 found at Tue May  2 15:47:10 UTC 2017
selfserv_9590 with PID 7220 started at Tue May  2 15:47:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5121: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7220 at Tue May  2 15:47:10 UTC 2017
kill -USR1 7220
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7220 killed at Tue May  2 15:47:10 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7288 >/dev/null 2>/dev/null
selfserv_9590 with PID 7288 found at Tue May  2 15:47:10 UTC 2017
selfserv_9590 with PID 7288 started at Tue May  2 15:47:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5122: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7288 at Tue May  2 15:47:10 UTC 2017
kill -USR1 7288
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7288 killed at Tue May  2 15:47:10 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7344 >/dev/null 2>/dev/null
selfserv_9590 with PID 7344 found at Tue May  2 15:47:10 UTC 2017
selfserv_9590 with PID 7344 started at Tue May  2 15:47:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5123: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7344 at Tue May  2 15:47:11 UTC 2017
kill -USR1 7344
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7344 killed at Tue May  2 15:47:11 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7400 >/dev/null 2>/dev/null
selfserv_9590 with PID 7400 found at Tue May  2 15:47:11 UTC 2017
selfserv_9590 with PID 7400 started at Tue May  2 15:47:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5124: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7400 at Tue May  2 15:47:11 UTC 2017
kill -USR1 7400
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7400 killed at Tue May  2 15:47:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7469 >/dev/null 2>/dev/null
selfserv_9590 with PID 7469 found at Tue May  2 15:47:11 UTC 2017
selfserv_9590 with PID 7469 started at Tue May  2 15:47:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5125: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7469 at Tue May  2 15:47:12 UTC 2017
kill -USR1 7469
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7469 killed at Tue May  2 15:47:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7525 >/dev/null 2>/dev/null
selfserv_9590 with PID 7525 found at Tue May  2 15:47:12 UTC 2017
selfserv_9590 with PID 7525 started at Tue May  2 15:47:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5126: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7525 at Tue May  2 15:47:12 UTC 2017
kill -USR1 7525
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7525 killed at Tue May  2 15:47:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7581 >/dev/null 2>/dev/null
selfserv_9590 with PID 7581 found at Tue May  2 15:47:12 UTC 2017
selfserv_9590 with PID 7581 started at Tue May  2 15:47:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5127: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7581 at Tue May  2 15:47:12 UTC 2017
kill -USR1 7581
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7581 killed at Tue May  2 15:47:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 15:47:13 UTC 2017
selfserv_9590 with PID 7649 started at Tue May  2 15:47:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5128: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7649 at Tue May  2 15:47:13 UTC 2017
kill -USR1 7649
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7649 killed at Tue May  2 15:47:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7705 >/dev/null 2>/dev/null
selfserv_9590 with PID 7705 found at Tue May  2 15:47:13 UTC 2017
selfserv_9590 with PID 7705 started at Tue May  2 15:47:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5129: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7705 at Tue May  2 15:47:13 UTC 2017
kill -USR1 7705
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7705 killed at Tue May  2 15:47:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7761 >/dev/null 2>/dev/null
selfserv_9590 with PID 7761 found at Tue May  2 15:47:13 UTC 2017
selfserv_9590 with PID 7761 started at Tue May  2 15:47:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5130: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7761 at Tue May  2 15:47:13 UTC 2017
kill -USR1 7761
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7761 killed at Tue May  2 15:47:13 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7829 >/dev/null 2>/dev/null
selfserv_9590 with PID 7829 found at Tue May  2 15:47:13 UTC 2017
selfserv_9590 with PID 7829 started at Tue May  2 15:47:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5131: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7829 at Tue May  2 15:47:14 UTC 2017
kill -USR1 7829
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7829 killed at Tue May  2 15:47:14 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7885 >/dev/null 2>/dev/null
selfserv_9590 with PID 7885 found at Tue May  2 15:47:14 UTC 2017
selfserv_9590 with PID 7885 started at Tue May  2 15:47:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5132: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7885 at Tue May  2 15:47:16 UTC 2017
kill -USR1 7885
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7885 killed at Tue May  2 15:47:16 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7941 >/dev/null 2>/dev/null
selfserv_9590 with PID 7941 found at Tue May  2 15:47:16 UTC 2017
selfserv_9590 with PID 7941 started at Tue May  2 15:47:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5133: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 7941 at Tue May  2 15:47:18 UTC 2017
kill -USR1 7941
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7941 killed at Tue May  2 15:47:18 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8009 >/dev/null 2>/dev/null
selfserv_9590 with PID 8009 found at Tue May  2 15:47:18 UTC 2017
selfserv_9590 with PID 8009 started at Tue May  2 15:47:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5134: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 8009 at Tue May  2 15:47:18 UTC 2017
kill -USR1 8009
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8009 killed at Tue May  2 15:47:18 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8065 >/dev/null 2>/dev/null
selfserv_9590 with PID 8065 found at Tue May  2 15:47:18 UTC 2017
selfserv_9590 with PID 8065 started at Tue May  2 15:47:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5135: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8065 at Tue May  2 15:47:19 UTC 2017
kill -USR1 8065
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8065 killed at Tue May  2 15:47:19 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8121 >/dev/null 2>/dev/null
selfserv_9590 with PID 8121 found at Tue May  2 15:47:19 UTC 2017
selfserv_9590 with PID 8121 started at Tue May  2 15:47:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5136: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 8121 at Tue May  2 15:47:19 UTC 2017
kill -USR1 8121
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8121 killed at Tue May  2 15:47:19 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8190 >/dev/null 2>/dev/null
selfserv_9590 with PID 8190 found at Tue May  2 15:47:20 UTC 2017
selfserv_9590 with PID 8190 started at Tue May  2 15:47:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5137: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8190 at Tue May  2 15:47:20 UTC 2017
kill -USR1 8190
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8190 killed at Tue May  2 15:47:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8246 >/dev/null 2>/dev/null
selfserv_9590 with PID 8246 found at Tue May  2 15:47:20 UTC 2017
selfserv_9590 with PID 8246 started at Tue May  2 15:47:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5138: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8246 at Tue May  2 15:47:20 UTC 2017
kill -USR1 8246
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8246 killed at Tue May  2 15:47:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8302 >/dev/null 2>/dev/null
selfserv_9590 with PID 8302 found at Tue May  2 15:47:20 UTC 2017
selfserv_9590 with PID 8302 started at Tue May  2 15:47:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5139: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8302 at Tue May  2 15:47:20 UTC 2017
kill -USR1 8302
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8302 killed at Tue May  2 15:47:20 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8370 >/dev/null 2>/dev/null
selfserv_9590 with PID 8370 found at Tue May  2 15:47:20 UTC 2017
selfserv_9590 with PID 8370 started at Tue May  2 15:47:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5140: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8370 at Tue May  2 15:47:21 UTC 2017
kill -USR1 8370
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8370 killed at Tue May  2 15:47:21 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8426 >/dev/null 2>/dev/null
selfserv_9590 with PID 8426 found at Tue May  2 15:47:21 UTC 2017
selfserv_9590 with PID 8426 started at Tue May  2 15:47:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5141: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8426 at Tue May  2 15:47:21 UTC 2017
kill -USR1 8426
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8426 killed at Tue May  2 15:47:21 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8482 >/dev/null 2>/dev/null
selfserv_9590 with PID 8482 found at Tue May  2 15:47:21 UTC 2017
selfserv_9590 with PID 8482 started at Tue May  2 15:47:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5142: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8482 at Tue May  2 15:47:21 UTC 2017
kill -USR1 8482
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8482 killed at Tue May  2 15:47:21 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8551 >/dev/null 2>/dev/null
selfserv_9590 with PID 8551 found at Tue May  2 15:47:21 UTC 2017
selfserv_9590 with PID 8551 started at Tue May  2 15:47:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5143: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8551 at Tue May  2 15:47:22 UTC 2017
kill -USR1 8551
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8551 killed at Tue May  2 15:47:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8607 >/dev/null 2>/dev/null
selfserv_9590 with PID 8607 found at Tue May  2 15:47:22 UTC 2017
selfserv_9590 with PID 8607 started at Tue May  2 15:47:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5144: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8607 at Tue May  2 15:47:22 UTC 2017
kill -USR1 8607
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8607 killed at Tue May  2 15:47:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8663 >/dev/null 2>/dev/null
selfserv_9590 with PID 8663 found at Tue May  2 15:47:22 UTC 2017
selfserv_9590 with PID 8663 started at Tue May  2 15:47:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5145: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8663 at Tue May  2 15:47:22 UTC 2017
kill -USR1 8663
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8663 killed at Tue May  2 15:47:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8731 >/dev/null 2>/dev/null
selfserv_9590 with PID 8731 found at Tue May  2 15:47:22 UTC 2017
selfserv_9590 with PID 8731 started at Tue May  2 15:47:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5146: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8731 at Tue May  2 15:47:22 UTC 2017
kill -USR1 8731
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8731 killed at Tue May  2 15:47:22 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8788 >/dev/null 2>/dev/null
selfserv_9590 with PID 8788 found at Tue May  2 15:47:22 UTC 2017
selfserv_9590 with PID 8788 started at Tue May  2 15:47:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5147: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8788 at Tue May  2 15:47:23 UTC 2017
kill -USR1 8788
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8788 killed at Tue May  2 15:47:23 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8845 >/dev/null 2>/dev/null
selfserv_9590 with PID 8845 found at Tue May  2 15:47:23 UTC 2017
selfserv_9590 with PID 8845 started at Tue May  2 15:47:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5148: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8845 at Tue May  2 15:47:23 UTC 2017
kill -USR1 8845
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8845 killed at Tue May  2 15:47:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8914 >/dev/null 2>/dev/null
selfserv_9590 with PID 8914 found at Tue May  2 15:47:23 UTC 2017
selfserv_9590 with PID 8914 started at Tue May  2 15:47:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5149: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8914 at Tue May  2 15:47:23 UTC 2017
kill -USR1 8914
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8914 killed at Tue May  2 15:47:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8970 >/dev/null 2>/dev/null
selfserv_9590 with PID 8970 found at Tue May  2 15:47:23 UTC 2017
selfserv_9590 with PID 8970 started at Tue May  2 15:47:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5150: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8970 at Tue May  2 15:47:24 UTC 2017
kill -USR1 8970
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8970 killed at Tue May  2 15:47:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9026 >/dev/null 2>/dev/null
selfserv_9590 with PID 9026 found at Tue May  2 15:47:24 UTC 2017
selfserv_9590 with PID 9026 started at Tue May  2 15:47:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5151: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9026 at Tue May  2 15:47:24 UTC 2017
kill -USR1 9026
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9026 killed at Tue May  2 15:47:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9095 >/dev/null 2>/dev/null
selfserv_9590 with PID 9095 found at Tue May  2 15:47:24 UTC 2017
selfserv_9590 with PID 9095 started at Tue May  2 15:47:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5152: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9095 at Tue May  2 15:47:24 UTC 2017
kill -USR1 9095
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9095 killed at Tue May  2 15:47:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9151 >/dev/null 2>/dev/null
selfserv_9590 with PID 9151 found at Tue May  2 15:47:24 UTC 2017
selfserv_9590 with PID 9151 started at Tue May  2 15:47:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5153: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9151 at Tue May  2 15:47:25 UTC 2017
kill -USR1 9151
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9151 killed at Tue May  2 15:47:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9207 >/dev/null 2>/dev/null
selfserv_9590 with PID 9207 found at Tue May  2 15:47:25 UTC 2017
selfserv_9590 with PID 9207 started at Tue May  2 15:47:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5154: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9207 at Tue May  2 15:47:25 UTC 2017
kill -USR1 9207
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9207 killed at Tue May  2 15:47:25 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9275 >/dev/null 2>/dev/null
selfserv_9590 with PID 9275 found at Tue May  2 15:47:25 UTC 2017
selfserv_9590 with PID 9275 started at Tue May  2 15:47:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5155: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9275 at Tue May  2 15:47:25 UTC 2017
kill -USR1 9275
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9275 killed at Tue May  2 15:47:25 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9331 >/dev/null 2>/dev/null
selfserv_9590 with PID 9331 found at Tue May  2 15:47:25 UTC 2017
selfserv_9590 with PID 9331 started at Tue May  2 15:47:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5156: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9331 at Tue May  2 15:47:26 UTC 2017
kill -USR1 9331
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9331 killed at Tue May  2 15:47:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9387 >/dev/null 2>/dev/null
selfserv_9590 with PID 9387 found at Tue May  2 15:47:26 UTC 2017
selfserv_9590 with PID 9387 started at Tue May  2 15:47:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5157: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9387 at Tue May  2 15:47:26 UTC 2017
kill -USR1 9387
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9387 killed at Tue May  2 15:47:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9455 >/dev/null 2>/dev/null
selfserv_9590 with PID 9455 found at Tue May  2 15:47:26 UTC 2017
selfserv_9590 with PID 9455 started at Tue May  2 15:47:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5158: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9455 at Tue May  2 15:47:26 UTC 2017
kill -USR1 9455
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9455 killed at Tue May  2 15:47:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9511 >/dev/null 2>/dev/null
selfserv_9590 with PID 9511 found at Tue May  2 15:47:26 UTC 2017
selfserv_9590 with PID 9511 started at Tue May  2 15:47:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5159: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9511 at Tue May  2 15:47:27 UTC 2017
kill -USR1 9511
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9511 killed at Tue May  2 15:47:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9567 >/dev/null 2>/dev/null
selfserv_9590 with PID 9567 found at Tue May  2 15:47:27 UTC 2017
selfserv_9590 with PID 9567 started at Tue May  2 15:47:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5160: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9567 at Tue May  2 15:47:27 UTC 2017
kill -USR1 9567
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9567 killed at Tue May  2 15:47:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9635 >/dev/null 2>/dev/null
selfserv_9590 with PID 9635 found at Tue May  2 15:47:27 UTC 2017
selfserv_9590 with PID 9635 started at Tue May  2 15:47:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5161: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9635 at Tue May  2 15:47:27 UTC 2017
kill -USR1 9635
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9635 killed at Tue May  2 15:47:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9691 >/dev/null 2>/dev/null
selfserv_9590 with PID 9691 found at Tue May  2 15:47:27 UTC 2017
selfserv_9590 with PID 9691 started at Tue May  2 15:47:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5162: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9691 at Tue May  2 15:47:27 UTC 2017
kill -USR1 9691
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9691 killed at Tue May  2 15:47:27 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9747 >/dev/null 2>/dev/null
selfserv_9590 with PID 9747 found at Tue May  2 15:47:27 UTC 2017
selfserv_9590 with PID 9747 started at Tue May  2 15:47:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5163: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9747 at Tue May  2 15:47:28 UTC 2017
kill -USR1 9747
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9747 killed at Tue May  2 15:47:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9815 >/dev/null 2>/dev/null
selfserv_9590 with PID 9815 found at Tue May  2 15:47:28 UTC 2017
selfserv_9590 with PID 9815 started at Tue May  2 15:47:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5164: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9815 at Tue May  2 15:47:28 UTC 2017
kill -USR1 9815
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9815 killed at Tue May  2 15:47:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9871 >/dev/null 2>/dev/null
selfserv_9590 with PID 9871 found at Tue May  2 15:47:28 UTC 2017
selfserv_9590 with PID 9871 started at Tue May  2 15:47:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5165: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9871 at Tue May  2 15:47:28 UTC 2017
kill -USR1 9871
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9871 killed at Tue May  2 15:47:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9927 >/dev/null 2>/dev/null
selfserv_9590 with PID 9927 found at Tue May  2 15:47:28 UTC 2017
selfserv_9590 with PID 9927 started at Tue May  2 15:47:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5166: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9927 at Tue May  2 15:47:28 UTC 2017
kill -USR1 9927
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9927 killed at Tue May  2 15:47:28 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9995 >/dev/null 2>/dev/null
selfserv_9590 with PID 9995 found at Tue May  2 15:47:29 UTC 2017
selfserv_9590 with PID 9995 started at Tue May  2 15:47:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5167: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9995 at Tue May  2 15:47:29 UTC 2017
kill -USR1 9995
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9995 killed at Tue May  2 15:47:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10051 >/dev/null 2>/dev/null
selfserv_9590 with PID 10051 found at Tue May  2 15:47:29 UTC 2017
selfserv_9590 with PID 10051 started at Tue May  2 15:47:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5168: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 10051 at Tue May  2 15:47:29 UTC 2017
kill -USR1 10051
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10051 killed at Tue May  2 15:47:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:47:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10107 >/dev/null 2>/dev/null
selfserv_9590 with PID 10107 found at Tue May  2 15:47:29 UTC 2017
selfserv_9590 with PID 10107 started at Tue May  2 15:47:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #5169: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 10107 at Tue May  2 15:47:29 UTC 2017
kill -USR1 10107
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10107 killed at Tue May  2 15:47:29 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10175 >/dev/null 2>/dev/null
selfserv_9590 with PID 10175 found at Tue May  2 15:47:29 UTC 2017
selfserv_9590 with PID 10175 started at Tue May  2 15:47:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5170: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 10175 at Tue May  2 15:47:30 UTC 2017
kill -USR1 10175
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10175 killed at Tue May  2 15:47:30 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10231 >/dev/null 2>/dev/null
selfserv_9590 with PID 10231 found at Tue May  2 15:47:30 UTC 2017
selfserv_9590 with PID 10231 started at Tue May  2 15:47:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #5171: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 10231 at Tue May  2 15:47:30 UTC 2017
kill -USR1 10231
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10231 killed at Tue May  2 15:47:30 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10287 >/dev/null 2>/dev/null
selfserv_9590 with PID 10287 found at Tue May  2 15:47:30 UTC 2017
selfserv_9590 with PID 10287 started at Tue May  2 15:47:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #5172: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 10287 at Tue May  2 15:47:30 UTC 2017
kill -USR1 10287
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10287 killed at Tue May  2 15:47:30 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/authin.tl.tmp
0
selfserv_9590 starting at Tue May  2 15:47:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:30 UTC 2017
selfserv_9590 with PID 10350 started at Tue May  2 15:47:30 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:30 UTC 2017
ssl.sh: #5173: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:30 UTC 2017
ssl.sh: #5174: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:31 UTC 2017
ssl.sh: #5175: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:31 UTC 2017
ssl.sh: #5176: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:31 UTC 2017
ssl.sh: #5177: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:31 UTC 2017
ssl.sh: #5178: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:31 UTC 2017
ssl.sh: #5179: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:31 UTC 2017
ssl.sh: #5180: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:31 UTC 2017
ssl.sh: #5181: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:31 UTC 2017
ssl.sh: #5182: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:32 UTC 2017
ssl.sh: #5183: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:32 UTC 2017
ssl.sh: #5184: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:32 UTC 2017
ssl.sh: #5185: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5186: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:32 UTC 2017
ssl.sh: #5187: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:32 UTC 2017
ssl.sh: #5188: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:32 UTC 2017
ssl.sh: #5189: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:32 UTC 2017
ssl.sh: #5190: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:33 UTC 2017
ssl.sh: #5191: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:33 UTC 2017
ssl.sh: #5192: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:33 UTC 2017
ssl.sh: #5193: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:33 UTC 2017
ssl.sh: #5194: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:33 UTC 2017
ssl.sh: #5195: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:33 UTC 2017
ssl.sh: #5196: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:33 UTC 2017
ssl.sh: #5197: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:34 UTC 2017
ssl.sh: #5198: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:34 UTC 2017
ssl.sh: #5199: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5200: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:34 UTC 2017
ssl.sh: #5201: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:34 UTC 2017
ssl.sh: #5202: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:34 UTC 2017
ssl.sh: #5203: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:34 UTC 2017
ssl.sh: #5204: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:34 UTC 2017
ssl.sh: #5205: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:34 UTC 2017
ssl.sh: #5206: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:35 UTC 2017
ssl.sh: #5207: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:35 UTC 2017
ssl.sh: #5208: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:35 UTC 2017
ssl.sh: #5209: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:35 UTC 2017
ssl.sh: #5210: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:35 UTC 2017
ssl.sh: #5211: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:35 UTC 2017
ssl.sh: #5212: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:47:35 UTC 2017
ssl.sh: #5213: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10350 at Tue May  2 15:47:35 UTC 2017
kill -USR1 10350
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10350 killed at Tue May  2 15:47:35 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:35 UTC 2017
selfserv_9590 with PID 11774 started at Tue May  2 15:47:35 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:36 UTC 2017
ssl.sh: #5214: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:36 UTC 2017
ssl.sh: #5215: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:36 UTC 2017
ssl.sh: #5216: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:36 UTC 2017
ssl.sh: #5217: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:36 UTC 2017
ssl.sh: #5218: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:36 UTC 2017
ssl.sh: #5219: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:36 UTC 2017
ssl.sh: #5220: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:36 UTC 2017
ssl.sh: #5221: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:36 UTC 2017
ssl.sh: #5222: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:37 UTC 2017
ssl.sh: #5223: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:37 UTC 2017
ssl.sh: #5224: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:37 UTC 2017
ssl.sh: #5225: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:37 UTC 2017
ssl.sh: #5226: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5227: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:37 UTC 2017
ssl.sh: #5228: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:37 UTC 2017
ssl.sh: #5229: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:37 UTC 2017
ssl.sh: #5230: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:37 UTC 2017
ssl.sh: #5231: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:38 UTC 2017
ssl.sh: #5232: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:38 UTC 2017
ssl.sh: #5233: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:38 UTC 2017
ssl.sh: #5234: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:38 UTC 2017
ssl.sh: #5235: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:38 UTC 2017
ssl.sh: #5236: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:38 UTC 2017
ssl.sh: #5237: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:38 UTC 2017
ssl.sh: #5238: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:38 UTC 2017
ssl.sh: #5239: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:38 UTC 2017
ssl.sh: #5240: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5241: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:39 UTC 2017
ssl.sh: #5242: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:39 UTC 2017
ssl.sh: #5243: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:39 UTC 2017
ssl.sh: #5244: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:39 UTC 2017
ssl.sh: #5245: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:39 UTC 2017
ssl.sh: #5246: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:39 UTC 2017
ssl.sh: #5247: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:39 UTC 2017
ssl.sh: #5248: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:39 UTC 2017
ssl.sh: #5249: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:39 UTC 2017
ssl.sh: #5250: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:40 UTC 2017
ssl.sh: #5251: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:40 UTC 2017
ssl.sh: #5252: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:40 UTC 2017
ssl.sh: #5253: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11774 >/dev/null 2>/dev/null
selfserv_9590 with PID 11774 found at Tue May  2 15:47:40 UTC 2017
ssl.sh: #5254: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 11774 at Tue May  2 15:47:40 UTC 2017
kill -USR1 11774
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11774 killed at Tue May  2 15:47:40 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:40 UTC 2017
selfserv_9590 with PID 13197 started at Tue May  2 15:47:40 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:40 UTC 2017
ssl.sh: #5255: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:40 UTC 2017
ssl.sh: #5256: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:40 UTC 2017
ssl.sh: #5257: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:41 UTC 2017
ssl.sh: #5258: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:41 UTC 2017
ssl.sh: #5259: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:41 UTC 2017
ssl.sh: #5260: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:41 UTC 2017
ssl.sh: #5261: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:41 UTC 2017
ssl.sh: #5262: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:41 UTC 2017
ssl.sh: #5263: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:42 UTC 2017
ssl.sh: #5264: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:42 UTC 2017
ssl.sh: #5265: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:42 UTC 2017
ssl.sh: #5266: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:42 UTC 2017
ssl.sh: #5267: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:42 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5268: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:42 UTC 2017
ssl.sh: #5269: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:42 UTC 2017
ssl.sh: #5270: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:43 UTC 2017
ssl.sh: #5271: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:43 UTC 2017
ssl.sh: #5272: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:43 UTC 2017
ssl.sh: #5273: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:43 UTC 2017
ssl.sh: #5274: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:43 UTC 2017
ssl.sh: #5275: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:43 UTC 2017
ssl.sh: #5276: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:43 UTC 2017
ssl.sh: #5277: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:44 UTC 2017
ssl.sh: #5278: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:44 UTC 2017
ssl.sh: #5279: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:44 UTC 2017
ssl.sh: #5280: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:44 UTC 2017
ssl.sh: #5281: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5282: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:44 UTC 2017
ssl.sh: #5283: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:44 UTC 2017
ssl.sh: #5284: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:44 UTC 2017
ssl.sh: #5285: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:45 UTC 2017
ssl.sh: #5286: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:45 UTC 2017
ssl.sh: #5287: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:45 UTC 2017
ssl.sh: #5288: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:45 UTC 2017
ssl.sh: #5289: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:45 UTC 2017
ssl.sh: #5290: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:45 UTC 2017
ssl.sh: #5291: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:45 UTC 2017
ssl.sh: #5292: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:46 UTC 2017
ssl.sh: #5293: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:46 UTC 2017
ssl.sh: #5294: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13197 >/dev/null 2>/dev/null
selfserv_9590 with PID 13197 found at Tue May  2 15:47:46 UTC 2017
ssl.sh: #5295: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 13197 at Tue May  2 15:47:46 UTC 2017
kill -USR1 13197
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13197 killed at Tue May  2 15:47:46 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:46 UTC 2017
selfserv_9590 with PID 14620 started at Tue May  2 15:47:46 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:46 UTC 2017
ssl.sh: #5296: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:46 UTC 2017
ssl.sh: #5297: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:46 UTC 2017
ssl.sh: #5298: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:46 UTC 2017
ssl.sh: #5299: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:47 UTC 2017
ssl.sh: #5300: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:47 UTC 2017
ssl.sh: #5301: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:47 UTC 2017
ssl.sh: #5302: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:47 UTC 2017
ssl.sh: #5303: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:47 UTC 2017
ssl.sh: #5304: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:47 UTC 2017
ssl.sh: #5305: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:47 UTC 2017
ssl.sh: #5306: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:47 UTC 2017
ssl.sh: #5307: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:48 UTC 2017
ssl.sh: #5308: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5309: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:48 UTC 2017
ssl.sh: #5310: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:48 UTC 2017
ssl.sh: #5311: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:48 UTC 2017
ssl.sh: #5312: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:48 UTC 2017
ssl.sh: #5313: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:48 UTC 2017
ssl.sh: #5314: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:48 UTC 2017
ssl.sh: #5315: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:49 UTC 2017
ssl.sh: #5316: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:49 UTC 2017
ssl.sh: #5317: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:49 UTC 2017
ssl.sh: #5318: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:49 UTC 2017
ssl.sh: #5319: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:49 UTC 2017
ssl.sh: #5320: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:49 UTC 2017
ssl.sh: #5321: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:49 UTC 2017
ssl.sh: #5322: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5323: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:50 UTC 2017
ssl.sh: #5324: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:50 UTC 2017
ssl.sh: #5325: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:50 UTC 2017
ssl.sh: #5326: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:50 UTC 2017
ssl.sh: #5327: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:50 UTC 2017
ssl.sh: #5328: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:50 UTC 2017
ssl.sh: #5329: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:50 UTC 2017
ssl.sh: #5330: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:50 UTC 2017
ssl.sh: #5331: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:54 UTC 2017
ssl.sh: #5332: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:54 UTC 2017
ssl.sh: #5333: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:54 UTC 2017
ssl.sh: #5334: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:54 UTC 2017
ssl.sh: #5335: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14620 >/dev/null 2>/dev/null
selfserv_9590 with PID 14620 found at Tue May  2 15:47:54 UTC 2017
ssl.sh: #5336: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14620 at Tue May  2 15:47:54 UTC 2017
kill -USR1 14620
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14620 killed at Tue May  2 15:47:54 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:47:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16042 >/dev/null 2>/dev/null
selfserv_9590 with PID 16042 found at Tue May  2 15:47:54 UTC 2017
selfserv_9590 with PID 16042 started at Tue May  2 15:47:54 UTC 2017
trying to kill selfserv_9590 with PID 16042 at Tue May  2 15:47:54 UTC 2017
kill -USR1 16042
./ssl.sh: line 183: 16042 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16042 killed at Tue May  2 15:47:54 UTC 2017
selfserv_9590 starting at Tue May  2 15:47:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:47:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:54 UTC 2017
selfserv_9590 with PID 16084 started at Tue May  2 15:47:54 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:55 UTC 2017
ssl.sh: #5337: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:55 UTC 2017
ssl.sh: #5338: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:55 UTC 2017
ssl.sh: #5339: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:55 UTC 2017
ssl.sh: #5340: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:55 UTC 2017
ssl.sh: #5341: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:55 UTC 2017
ssl.sh: #5342: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:56 UTC 2017
ssl.sh: #5343: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:56 UTC 2017
ssl.sh: #5344: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:56 UTC 2017
ssl.sh: #5345: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:56 UTC 2017
ssl.sh: #5346: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:56 UTC 2017
ssl.sh: #5347: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:56 UTC 2017
ssl.sh: #5348: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:57 UTC 2017
ssl.sh: #5349: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5350: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:57 UTC 2017
ssl.sh: #5351: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:57 UTC 2017
ssl.sh: #5352: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:57 UTC 2017
ssl.sh: #5353: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:57 UTC 2017
ssl.sh: #5354: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:58 UTC 2017
ssl.sh: #5355: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:58 UTC 2017
ssl.sh: #5356: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:58 UTC 2017
ssl.sh: #5357: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:58 UTC 2017
ssl.sh: #5358: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:58 UTC 2017
ssl.sh: #5359: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:58 UTC 2017
ssl.sh: #5360: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:58 UTC 2017
ssl.sh: #5361: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:59 UTC 2017
ssl.sh: #5362: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:59 UTC 2017
ssl.sh: #5363: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5364: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:59 UTC 2017
ssl.sh: #5365: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:59 UTC 2017
ssl.sh: #5366: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:47:59 UTC 2017
ssl.sh: #5367: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:48:00 UTC 2017
ssl.sh: #5368: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:48:00 UTC 2017
ssl.sh: #5369: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:48:00 UTC 2017
ssl.sh: #5370: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:48:00 UTC 2017
ssl.sh: #5371: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:48:00 UTC 2017
ssl.sh: #5372: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:48:00 UTC 2017
ssl.sh: #5373: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:48:01 UTC 2017
ssl.sh: #5374: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:48:01 UTC 2017
ssl.sh: #5375: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:48:01 UTC 2017
ssl.sh: #5376: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16084 >/dev/null 2>/dev/null
selfserv_9590 with PID 16084 found at Tue May  2 15:48:01 UTC 2017
ssl.sh: #5377: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16084 at Tue May  2 15:48:01 UTC 2017
kill -USR1 16084
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16084 killed at Tue May  2 15:48:01 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:48:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:48:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:01 UTC 2017
selfserv_9590 with PID 17511 started at Tue May  2 15:48:01 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:01 UTC 2017
ssl.sh: #5378: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:01 UTC 2017
ssl.sh: #5379: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:02 UTC 2017
ssl.sh: #5380: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:02 UTC 2017
ssl.sh: #5381: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:02 UTC 2017
ssl.sh: #5382: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:02 UTC 2017
ssl.sh: #5383: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:02 UTC 2017
ssl.sh: #5384: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:03 UTC 2017
ssl.sh: #5385: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:03 UTC 2017
ssl.sh: #5386: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:03 UTC 2017
ssl.sh: #5387: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:03 UTC 2017
ssl.sh: #5388: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:03 UTC 2017
ssl.sh: #5389: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:03 UTC 2017
ssl.sh: #5390: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5391: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:04 UTC 2017
ssl.sh: #5392: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:04 UTC 2017
ssl.sh: #5393: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:04 UTC 2017
ssl.sh: #5394: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:04 UTC 2017
ssl.sh: #5395: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:04 UTC 2017
ssl.sh: #5396: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:05 UTC 2017
ssl.sh: #5397: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:05 UTC 2017
ssl.sh: #5398: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:05 UTC 2017
ssl.sh: #5399: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:05 UTC 2017
ssl.sh: #5400: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:05 UTC 2017
ssl.sh: #5401: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:05 UTC 2017
ssl.sh: #5402: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:06 UTC 2017
ssl.sh: #5403: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:06 UTC 2017
ssl.sh: #5404: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5405: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:06 UTC 2017
ssl.sh: #5406: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:06 UTC 2017
ssl.sh: #5407: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:06 UTC 2017
ssl.sh: #5408: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:07 UTC 2017
ssl.sh: #5409: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:07 UTC 2017
ssl.sh: #5410: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:07 UTC 2017
ssl.sh: #5411: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:07 UTC 2017
ssl.sh: #5412: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:07 UTC 2017
ssl.sh: #5413: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:07 UTC 2017
ssl.sh: #5414: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:08 UTC 2017
ssl.sh: #5415: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:08 UTC 2017
ssl.sh: #5416: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:08 UTC 2017
ssl.sh: #5417: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17511 >/dev/null 2>/dev/null
selfserv_9590 with PID 17511 found at Tue May  2 15:48:08 UTC 2017
ssl.sh: #5418: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 17511 at Tue May  2 15:48:08 UTC 2017
kill -USR1 17511
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17511 killed at Tue May  2 15:48:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:48:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:48:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:08 UTC 2017
selfserv_9590 with PID 18933 started at Tue May  2 15:48:08 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:08 UTC 2017
ssl.sh: #5419: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:09 UTC 2017
ssl.sh: #5420: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:09 UTC 2017
ssl.sh: #5421: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:09 UTC 2017
ssl.sh: #5422: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:09 UTC 2017
ssl.sh: #5423: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:09 UTC 2017
ssl.sh: #5424: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:09 UTC 2017
ssl.sh: #5425: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:09 UTC 2017
ssl.sh: #5426: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:10 UTC 2017
ssl.sh: #5427: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:10 UTC 2017
ssl.sh: #5428: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:10 UTC 2017
ssl.sh: #5429: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:10 UTC 2017
ssl.sh: #5430: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:10 UTC 2017
ssl.sh: #5431: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5432: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:10 UTC 2017
ssl.sh: #5433: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:11 UTC 2017
ssl.sh: #5434: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:11 UTC 2017
ssl.sh: #5435: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:11 UTC 2017
ssl.sh: #5436: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:11 UTC 2017
ssl.sh: #5437: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:11 UTC 2017
ssl.sh: #5438: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:11 UTC 2017
ssl.sh: #5439: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:11 UTC 2017
ssl.sh: #5440: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:12 UTC 2017
ssl.sh: #5441: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:12 UTC 2017
ssl.sh: #5442: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:12 UTC 2017
ssl.sh: #5443: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:12 UTC 2017
ssl.sh: #5444: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:12 UTC 2017
ssl.sh: #5445: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:12 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5446: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:12 UTC 2017
ssl.sh: #5447: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:13 UTC 2017
ssl.sh: #5448: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:13 UTC 2017
ssl.sh: #5449: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:13 UTC 2017
ssl.sh: #5450: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:13 UTC 2017
ssl.sh: #5451: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:13 UTC 2017
ssl.sh: #5452: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:13 UTC 2017
ssl.sh: #5453: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:13 UTC 2017
ssl.sh: #5454: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:14 UTC 2017
ssl.sh: #5455: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:14 UTC 2017
ssl.sh: #5456: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:14 UTC 2017
ssl.sh: #5457: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:14 UTC 2017
ssl.sh: #5458: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 18933 >/dev/null 2>/dev/null
selfserv_9590 with PID 18933 found at Tue May  2 15:48:14 UTC 2017
ssl.sh: #5459: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18933 at Tue May  2 15:48:14 UTC 2017
kill -USR1 18933
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18933 killed at Tue May  2 15:48:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:48:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:48:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:14 UTC 2017
selfserv_9590 with PID 20355 started at Tue May  2 15:48:14 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:14 UTC 2017
ssl.sh: #5460: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:15 UTC 2017
ssl.sh: #5461: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:15 UTC 2017
ssl.sh: #5462: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:15 UTC 2017
ssl.sh: #5463: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:15 UTC 2017
ssl.sh: #5464: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:15 UTC 2017
ssl.sh: #5465: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:16 UTC 2017
ssl.sh: #5466: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:16 UTC 2017
ssl.sh: #5467: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:16 UTC 2017
ssl.sh: #5468: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:16 UTC 2017
ssl.sh: #5469: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:16 UTC 2017
ssl.sh: #5470: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:16 UTC 2017
ssl.sh: #5471: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:17 UTC 2017
ssl.sh: #5472: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:17 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5473: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:17 UTC 2017
ssl.sh: #5474: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:17 UTC 2017
ssl.sh: #5475: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:17 UTC 2017
ssl.sh: #5476: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:17 UTC 2017
ssl.sh: #5477: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:18 UTC 2017
ssl.sh: #5478: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:18 UTC 2017
ssl.sh: #5479: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:18 UTC 2017
ssl.sh: #5480: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:18 UTC 2017
ssl.sh: #5481: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:18 UTC 2017
ssl.sh: #5482: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:19 UTC 2017
ssl.sh: #5483: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:19 UTC 2017
ssl.sh: #5484: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:19 UTC 2017
ssl.sh: #5485: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:19 UTC 2017
ssl.sh: #5486: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:19 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5487: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:19 UTC 2017
ssl.sh: #5488: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:20 UTC 2017
ssl.sh: #5489: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:20 UTC 2017
ssl.sh: #5490: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:20 UTC 2017
ssl.sh: #5491: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:20 UTC 2017
ssl.sh: #5492: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:20 UTC 2017
ssl.sh: #5493: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:20 UTC 2017
ssl.sh: #5494: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:21 UTC 2017
ssl.sh: #5495: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:21 UTC 2017
ssl.sh: #5496: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:21 UTC 2017
ssl.sh: #5497: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:21 UTC 2017
ssl.sh: #5498: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:21 UTC 2017
ssl.sh: #5499: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20355 >/dev/null 2>/dev/null
selfserv_9590 with PID 20355 found at Tue May  2 15:48:21 UTC 2017
ssl.sh: #5500: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20355 at Tue May  2 15:48:21 UTC 2017
kill -USR1 20355
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20355 killed at Tue May  2 15:48:21 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:48:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:48:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:21 UTC 2017
selfserv_9590 with PID 21779 started at Tue May  2 15:48:21 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:22 UTC 2017
ssl.sh: #5501: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:22 UTC 2017
ssl.sh: #5502: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:22 UTC 2017
ssl.sh: #5503: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:22 UTC 2017
ssl.sh: #5504: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:22 UTC 2017
ssl.sh: #5505: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:23 UTC 2017
ssl.sh: #5506: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:23 UTC 2017
ssl.sh: #5507: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:23 UTC 2017
ssl.sh: #5508: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:23 UTC 2017
ssl.sh: #5509: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:23 UTC 2017
ssl.sh: #5510: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:24 UTC 2017
ssl.sh: #5511: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:24 UTC 2017
ssl.sh: #5512: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:24 UTC 2017
ssl.sh: #5513: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5514: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:24 UTC 2017
ssl.sh: #5515: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:25 UTC 2017
ssl.sh: #5516: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:25 UTC 2017
ssl.sh: #5517: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:25 UTC 2017
ssl.sh: #5518: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:25 UTC 2017
ssl.sh: #5519: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:25 UTC 2017
ssl.sh: #5520: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:26 UTC 2017
ssl.sh: #5521: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:26 UTC 2017
ssl.sh: #5522: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:26 UTC 2017
ssl.sh: #5523: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:26 UTC 2017
ssl.sh: #5524: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:26 UTC 2017
ssl.sh: #5525: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #5526: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #5527: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:27 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5528: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #5529: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #5530: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:27 UTC 2017
ssl.sh: #5531: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #5532: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #5533: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #5534: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #5535: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #5536: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:28 UTC 2017
ssl.sh: #5537: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #5538: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #5539: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #5540: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21779 >/dev/null 2>/dev/null
selfserv_9590 with PID 21779 found at Tue May  2 15:48:29 UTC 2017
ssl.sh: #5541: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21779 at Tue May  2 15:48:29 UTC 2017
kill -USR1 21779
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21779 killed at Tue May  2 15:48:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:48:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:48:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:29 UTC 2017
selfserv_9590 with PID 23201 started at Tue May  2 15:48:29 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #5542: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #5543: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #5544: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #5545: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #5546: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #5547: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:30 UTC 2017
ssl.sh: #5548: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #5549: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #5550: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #5551: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #5552: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #5553: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:31 UTC 2017
ssl.sh: #5554: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5555: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #5556: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #5557: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #5558: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #5559: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:32 UTC 2017
ssl.sh: #5560: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #5561: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #5562: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #5563: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #5564: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #5565: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:33 UTC 2017
ssl.sh: #5566: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #5567: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #5568: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5569: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #5570: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #5571: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:34 UTC 2017
ssl.sh: #5572: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #5573: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #5574: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #5575: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #5576: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #5577: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #5578: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:35 UTC 2017
ssl.sh: #5579: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #5580: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #5581: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23201 >/dev/null 2>/dev/null
selfserv_9590 with PID 23201 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #5582: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 23201 at Tue May  2 15:48:36 UTC 2017
kill -USR1 23201
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 23201 killed at Tue May  2 15:48:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:48:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:48:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24623 >/dev/null 2>/dev/null
selfserv_9590 with PID 24623 found at Tue May  2 15:48:36 UTC 2017
selfserv_9590 with PID 24623 started at Tue May  2 15:48:36 UTC 2017
trying to kill selfserv_9590 with PID 24623 at Tue May  2 15:48:36 UTC 2017
kill -USR1 24623
./ssl.sh: line 183: 24623 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 24623 killed at Tue May  2 15:48:36 UTC 2017
selfserv_9590 starting at Tue May  2 15:48:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:48:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:36 UTC 2017
selfserv_9590 with PID 24665 started at Tue May  2 15:48:36 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #5583: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:36 UTC 2017
ssl.sh: #5584: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #5585: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #5586: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #5587: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #5588: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #5589: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:37 UTC 2017
ssl.sh: #5590: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #5591: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #5592: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #5593: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #5594: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:38 UTC 2017
ssl.sh: #5595: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5596: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #5597: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #5598: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #5599: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #5600: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #5601: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #5602: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:39 UTC 2017
ssl.sh: #5603: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #5604: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #5605: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #5606: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #5607: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #5608: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:40 UTC 2017
ssl.sh: #5609: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5610: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #5611: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #5612: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #5613: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #5614: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #5615: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:41 UTC 2017
ssl.sh: #5616: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #5617: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #5618: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #5619: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #5620: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #5621: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:42 UTC 2017
ssl.sh: #5622: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24665 >/dev/null 2>/dev/null
selfserv_9590 with PID 24665 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #5623: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 24665 at Tue May  2 15:48:43 UTC 2017
kill -USR1 24665
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 24665 killed at Tue May  2 15:48:43 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:48:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:48:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:43 UTC 2017
selfserv_9590 with PID 26088 started at Tue May  2 15:48:43 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #5624: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #5625: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #5626: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:43 UTC 2017
ssl.sh: #5627: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #5628: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #5629: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #5630: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #5631: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #5632: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:44 UTC 2017
ssl.sh: #5633: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:45 UTC 2017
ssl.sh: #5634: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:45 UTC 2017
ssl.sh: #5635: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:45 UTC 2017
ssl.sh: #5636: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5637: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:45 UTC 2017
ssl.sh: #5638: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #5639: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #5640: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #5641: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #5642: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #5643: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:46 UTC 2017
ssl.sh: #5644: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #5645: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #5646: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #5647: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #5648: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #5649: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:47 UTC 2017
ssl.sh: #5650: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5651: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #5652: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #5653: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #5654: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #5655: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:48 UTC 2017
ssl.sh: #5656: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #5657: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #5658: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #5659: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #5660: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #5661: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:49 UTC 2017
ssl.sh: #5662: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #5663: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26088 >/dev/null 2>/dev/null
selfserv_9590 with PID 26088 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #5664: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 26088 at Tue May  2 15:48:50 UTC 2017
kill -USR1 26088
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 26088 killed at Tue May  2 15:48:50 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:48:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:48:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:50 UTC 2017
selfserv_9590 with PID 27511 started at Tue May  2 15:48:50 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #5665: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #5666: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #5667: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:50 UTC 2017
ssl.sh: #5668: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #5669: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #5670: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #5671: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #5672: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #5673: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #5674: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:51 UTC 2017
ssl.sh: #5675: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #5676: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #5677: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:52 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5678: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #5679: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #5680: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:52 UTC 2017
ssl.sh: #5681: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #5682: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #5683: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #5684: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #5685: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #5686: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #5687: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #5688: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:53 UTC 2017
ssl.sh: #5689: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #5690: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #5691: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5692: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #5693: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #5694: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #5695: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:54 UTC 2017
ssl.sh: #5696: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #5697: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #5698: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #5699: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #5700: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #5701: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #5702: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:55 UTC 2017
ssl.sh: #5703: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:56 UTC 2017
ssl.sh: #5704: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27511 >/dev/null 2>/dev/null
selfserv_9590 with PID 27511 found at Tue May  2 15:48:56 UTC 2017
ssl.sh: #5705: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 27511 at Tue May  2 15:48:56 UTC 2017
kill -USR1 27511
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27511 killed at Tue May  2 15:48:56 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:48:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:48:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:56 UTC 2017
selfserv_9590 with PID 28935 started at Tue May  2 15:48:56 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:56 UTC 2017
ssl.sh: #5706: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:56 UTC 2017
ssl.sh: #5707: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:56 UTC 2017
ssl.sh: #5708: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #5709: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #5710: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #5711: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #5712: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #5713: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:57 UTC 2017
ssl.sh: #5714: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:58 UTC 2017
ssl.sh: #5715: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:58 UTC 2017
ssl.sh: #5716: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:58 UTC 2017
ssl.sh: #5717: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:58 UTC 2017
ssl.sh: #5718: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:58 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5719: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:59 UTC 2017
ssl.sh: #5720: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:59 UTC 2017
ssl.sh: #5721: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:59 UTC 2017
ssl.sh: #5722: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:59 UTC 2017
ssl.sh: #5723: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:59 UTC 2017
ssl.sh: #5724: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:48:59 UTC 2017
ssl.sh: #5725: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #5726: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #5727: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #5728: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #5729: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #5730: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:00 UTC 2017
ssl.sh: #5731: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:01 UTC 2017
ssl.sh: #5732: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:01 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5733: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:01 UTC 2017
ssl.sh: #5734: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:01 UTC 2017
ssl.sh: #5735: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:01 UTC 2017
ssl.sh: #5736: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:01 UTC 2017
ssl.sh: #5737: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:02 UTC 2017
ssl.sh: #5738: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:02 UTC 2017
ssl.sh: #5739: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:02 UTC 2017
ssl.sh: #5740: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:02 UTC 2017
ssl.sh: #5741: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:02 UTC 2017
ssl.sh: #5742: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:02 UTC 2017
ssl.sh: #5743: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:03 UTC 2017
ssl.sh: #5744: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:03 UTC 2017
ssl.sh: #5745: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28935 >/dev/null 2>/dev/null
selfserv_9590 with PID 28935 found at Tue May  2 15:49:03 UTC 2017
ssl.sh: #5746: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 28935 at Tue May  2 15:49:03 UTC 2017
kill -USR1 28935
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28935 killed at Tue May  2 15:49:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:49:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:49:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:03 UTC 2017
selfserv_9590 with PID 30359 started at Tue May  2 15:49:03 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:03 UTC 2017
ssl.sh: #5747: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #5748: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #5749: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #5750: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #5751: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #5752: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:04 UTC 2017
ssl.sh: #5753: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #5754: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #5755: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #5756: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #5757: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:05 UTC 2017
ssl.sh: #5758: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #5759: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5760: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #5761: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #5762: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:06 UTC 2017
ssl.sh: #5763: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #5764: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #5765: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #5766: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #5767: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #5768: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:07 UTC 2017
ssl.sh: #5769: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #5770: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #5771: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #5772: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:08 UTC 2017
ssl.sh: #5773: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:09 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5774: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:09 UTC 2017
ssl.sh: #5775: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:09 UTC 2017
ssl.sh: #5776: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:09 UTC 2017
ssl.sh: #5777: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:09 UTC 2017
ssl.sh: #5778: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:09 UTC 2017
ssl.sh: #5779: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #5780: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #5781: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #5782: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #5783: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #5784: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:10 UTC 2017
ssl.sh: #5785: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:11 UTC 2017
ssl.sh: #5786: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30359 >/dev/null 2>/dev/null
selfserv_9590 with PID 30359 found at Tue May  2 15:49:11 UTC 2017
ssl.sh: #5787: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30359 at Tue May  2 15:49:11 UTC 2017
kill -USR1 30359
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30359 killed at Tue May  2 15:49:11 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:49:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:49:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:11 UTC 2017
selfserv_9590 with PID 31781 started at Tue May  2 15:49:11 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:11 UTC 2017
ssl.sh: #5788: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:11 UTC 2017
ssl.sh: #5789: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:11 UTC 2017
ssl.sh: #5790: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #5791: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #5792: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #5793: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #5794: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #5795: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:12 UTC 2017
ssl.sh: #5796: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:13 UTC 2017
ssl.sh: #5797: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:13 UTC 2017
ssl.sh: #5798: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:13 UTC 2017
ssl.sh: #5799: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:13 UTC 2017
ssl.sh: #5800: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_43-48-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:13 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5801: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:13 UTC 2017
ssl.sh: #5802: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #5803: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #5804: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #5805: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #5806: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #5807: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:14 UTC 2017
ssl.sh: #5808: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #5809: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #5810: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #5811: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #5812: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #5813: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:15 UTC 2017
ssl.sh: #5814: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/server/root.crl_49-52-ec
RELOAD time 
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #5815: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:16 UTC 2017
ssl.sh: #5816: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:16 UTC 2017
ssl.sh: #5817: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:16 UTC 2017
ssl.sh: #5818: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:16 UTC 2017
ssl.sh: #5819: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:16 UTC 2017
ssl.sh: #5820: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:16 UTC 2017
ssl.sh: #5821: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #5822: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #5823: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #5824: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #5825: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #5826: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #5827: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31781 >/dev/null 2>/dev/null
selfserv_9590 with PID 31781 found at Tue May  2 15:49:17 UTC 2017
ssl.sh: #5828: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31781 at Tue May  2 15:49:17 UTC 2017
kill -USR1 31781
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31781 killed at Tue May  2 15:49:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:49:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:49:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 826 >/dev/null 2>/dev/null
selfserv_9590 with PID 826 found at Tue May  2 15:49:18 UTC 2017
selfserv_9590 with PID 826 started at Tue May  2 15:49:18 UTC 2017
trying to kill selfserv_9590 with PID 826 at Tue May  2 15:49:18 UTC 2017
kill -USR1 826
./ssl.sh: line 183:   826 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 826 killed at Tue May  2 15:49:18 UTC 2017
TIMESTAMP ssl END: Tue May  2 15:49:18 UTC 2017
Running tests for ocsp
TIMESTAMP ocsp BEGIN: Tue May  2 15:49:18 UTC 2017
ocsp.sh: OCSP tests ===============================
TIMESTAMP ocsp END: Tue May  2 15:49:18 UTC 2017
Running tests for pkits
TIMESTAMP pkits BEGIN: Tue May  2 15:49:18 UTC 2017
pkits.sh: PKITS data directory not defined, skipping.
TIMESTAMP pkits END: Tue May  2 15:49:18 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Tue May  2 15:49:18 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #5829: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154919 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5830: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #5831: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5832: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #5833: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5834: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5835: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5836: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5837: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #5838: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5839: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5840: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5841: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5842: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #5843: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5844: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5845: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5846: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #5847: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #5848: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5849: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5850: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5851: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #5852: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5853: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5854: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5855: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #5856: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5857: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5858: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5859: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #5860: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5861: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5862: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5863: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #5864: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5865: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5866: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5867: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #5868: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5869: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5870: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5871: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #5872: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5873: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5874: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5875: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #5876: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5877: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5878: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5879: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #5880: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5881: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5882: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5883: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #5884: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5885: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5886: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5887: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #5888: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5889: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #5890: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5891: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502154928Z
nextupdate=20180502154928Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:49:28 2017
    Next Update: Wed May 02 15:49:28 2018
    CRL Extensions:
chains.sh: #5892: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502154929Z
addcert 2 20170502154929Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 15:49:29 2017
    Next Update: Wed May 02 15:49:28 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:49:29 2017
    CRL Extensions:
chains.sh: #5893: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502154929Z
nextupdate=20180502154929Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:49:29 2017
    Next Update: Wed May 02 15:49:29 2018
    CRL Extensions:
chains.sh: #5894: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502154930Z
addcert 2 20170502154930Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:49:30 2017
    Next Update: Wed May 02 15:49:29 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:49:30 2017
    CRL Extensions:
chains.sh: #5895: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502154931Z
addcert 4 20170502154931Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 15:49:31 2017
    Next Update: Wed May 02 15:49:29 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:49:30 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Tue May 02 15:49:31 2017
    CRL Extensions:
chains.sh: #5896: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502154931Z
nextupdate=20180502154931Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:49:31 2017
    Next Update: Wed May 02 15:49:31 2018
    CRL Extensions:
chains.sh: #5897: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502154932Z
addcert 2 20170502154932Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:49:32 2017
    Next Update: Wed May 02 15:49:31 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:49:32 2017
    CRL Extensions:
chains.sh: #5898: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502154933Z
addcert 3 20170502154933Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 15:49:33 2017
    Next Update: Wed May 02 15:49:31 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:49:32 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:49:33 2017
    CRL Extensions:
chains.sh: #5899: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502154933Z
nextupdate=20180502154933Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:49:33 2017
    Next Update: Wed May 02 15:49:33 2018
    CRL Extensions:
chains.sh: #5900: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502154934Z
addcert 2 20170502154934Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:49:34 2017
    Next Update: Wed May 02 15:49:33 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:49:34 2017
    CRL Extensions:
chains.sh: #5901: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502154935Z
addcert 3 20170502154935Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 15:49:35 2017
    Next Update: Wed May 02 15:49:33 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 15:49:34 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 15:49:35 2017
    CRL Extensions:
chains.sh: #5902: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #5903: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #5904: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #5905: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5906: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5907: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5908: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #5909: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #5910: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #5911: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #5912: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #5913: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #5914: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #5915: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #5916: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #5917: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #5918: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #5919: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #5920: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #5921: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #5922: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #5923: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #5924: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #5925: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #5926: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Tue May  2 15:49:35 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 15:49:35 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 2281 >/dev/null 2>/dev/null
httpserv with PID 2281 found at Tue May  2 15:49:35 UTC 2017
httpserv with PID 2281 started at Tue May  2 15:49:35 UTC 2017
tstclnt -h localhost.localdomain -p 9600 -q -t 20
chains.sh: #5927: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154919 (0x1dee46a7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:49:18 2017
            Not After : Mon May 02 15:49:18 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:14:62:bc:39:98:8c:cf:4a:43:ff:54:e8:94:b3:05:
                    0b:2a:69:fd:8a:d5:03:cc:50:6e:8c:25:7d:bc:64:f6:
                    6c:ea:7b:33:86:f4:f5:d8:48:73:54:75:0b:33:1c:45:
                    0c:79:e2:22:37:15:55:a0:45:6f:19:ff:20:55:c0:e2:
                    a1:69:17:34:82:4c:b9:08:8c:1d:b1:16:10:5b:fc:6a:
                    92:a0:9f:48:a0:04:aa:d8:9b:5e:4f:97:0d:52:9b:ef:
                    30:4c:1a:06:71:7a:2b:a5:b5:39:85:d0:f5:20:95:43:
                    fe:c6:64:a4:1e:72:a2:97:5c:2f:b2:7e:6c:ec:6a:d3:
                    64:30:4b:18:ca:88:be:22:2f:13:b8:88:df:92:16:b2:
                    a8:4a:bd:c8:7a:b6:e1:40:58:7b:8f:be:b0:76:b4:ee:
                    54:bb:3e:ac:fc:9f:d0:28:aa:71:f5:2a:6d:1f:90:55:
                    4f:3b:72:c5:9d:92:dd:d7:39:a6:ae:e2:17:68:b9:64:
                    a3:ab:b2:32:88:28:23:3c:00:9d:ed:c5:37:fd:bc:6d:
                    9b:e1:9b:4d:67:48:80:a6:80:46:09:d8:68:87:c0:df:
                    60:17:ef:84:db:7a:b4:78:94:f0:e6:15:8f:5b:5e:67:
                    c4:35:05:d0:e6:eb:ec:a0:f5:3f:72:da:c0:61:c2:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d3:f6:41:ba:54:ef:c0:d3:e2:7e:77:25:69:b2:5c:44:
        f6:2c:57:e1:90:c8:42:a0:3d:50:6b:57:f0:b5:6e:18:
        dc:30:e1:e3:84:90:33:9b:20:8f:f8:c1:0e:71:41:e5:
        78:2e:7e:95:15:6d:43:4a:aa:6b:f6:73:65:29:9a:27:
        37:6d:5c:56:b9:c1:f7:9c:5a:c0:00:49:b2:fb:08:d0:
        bd:2f:fd:c9:aa:3b:eb:2a:9c:37:ce:2a:ac:3a:26:46:
        7b:3d:e4:63:4e:b6:59:fe:30:6f:a7:5c:d0:cb:3f:c5:
        58:84:ac:7c:e0:0e:f2:5d:00:cc:3f:8f:5d:e5:90:eb:
        08:25:85:fd:b0:e6:4e:52:58:11:ae:f8:37:74:1c:a6:
        0a:9b:aa:59:62:fd:1d:30:a2:1a:37:d4:09:bd:bf:bb:
        dd:05:f8:5f:8d:a7:3e:3e:bd:60:71:c0:46:b7:5e:7b:
        9f:18:72:2e:f2:9f:13:c0:35:08:b9:b8:45:4a:c8:dd:
        49:63:0f:f9:8b:c0:fb:2a:ac:ad:62:d3:74:44:dc:d7:
        ed:d7:8d:0b:60:52:cd:96:4e:ac:7f:ec:bf:7d:af:a4:
        f4:bf:34:f7:3f:9b:1e:8d:f8:f0:f1:b6:6b:58:b2:c2:
        79:8a:2a:f3:10:c3:11:52:8d:b8:6e:e6:c0:1b:c5:7c
    Fingerprint (SHA-256):
        04:9B:7D:2F:6A:7A:E2:11:57:4C:70:18:29:80:8B:3E:0C:78:3B:F4:66:97:94:D3:D6:02:FB:1F:45:0D:1B:C0
    Fingerprint (SHA1):
        A3:F2:3D:85:8B:C9:46:68:9C:D7:36:5D:CC:DB:38:4C:E7:3D:1A:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #5928: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5929: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5930: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 2281 at Tue May  2 15:49:36 UTC 2017
kill -USR1 2281
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 2281 killed at Tue May  2 15:49:36 UTC 2017
httpserv starting at Tue May  2 15:49:36 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 15:49:36 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 2450 >/dev/null 2>/dev/null
httpserv with PID 2450 found at Tue May  2 15:49:36 UTC 2017
httpserv with PID 2450 started at Tue May  2 15:49:36 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5931: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5932: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5933: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9600 -q -t 20
chains.sh: #5934: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154919 (0x1dee46a7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:49:18 2017
            Not After : Mon May 02 15:49:18 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:14:62:bc:39:98:8c:cf:4a:43:ff:54:e8:94:b3:05:
                    0b:2a:69:fd:8a:d5:03:cc:50:6e:8c:25:7d:bc:64:f6:
                    6c:ea:7b:33:86:f4:f5:d8:48:73:54:75:0b:33:1c:45:
                    0c:79:e2:22:37:15:55:a0:45:6f:19:ff:20:55:c0:e2:
                    a1:69:17:34:82:4c:b9:08:8c:1d:b1:16:10:5b:fc:6a:
                    92:a0:9f:48:a0:04:aa:d8:9b:5e:4f:97:0d:52:9b:ef:
                    30:4c:1a:06:71:7a:2b:a5:b5:39:85:d0:f5:20:95:43:
                    fe:c6:64:a4:1e:72:a2:97:5c:2f:b2:7e:6c:ec:6a:d3:
                    64:30:4b:18:ca:88:be:22:2f:13:b8:88:df:92:16:b2:
                    a8:4a:bd:c8:7a:b6:e1:40:58:7b:8f:be:b0:76:b4:ee:
                    54:bb:3e:ac:fc:9f:d0:28:aa:71:f5:2a:6d:1f:90:55:
                    4f:3b:72:c5:9d:92:dd:d7:39:a6:ae:e2:17:68:b9:64:
                    a3:ab:b2:32:88:28:23:3c:00:9d:ed:c5:37:fd:bc:6d:
                    9b:e1:9b:4d:67:48:80:a6:80:46:09:d8:68:87:c0:df:
                    60:17:ef:84:db:7a:b4:78:94:f0:e6:15:8f:5b:5e:67:
                    c4:35:05:d0:e6:eb:ec:a0:f5:3f:72:da:c0:61:c2:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d3:f6:41:ba:54:ef:c0:d3:e2:7e:77:25:69:b2:5c:44:
        f6:2c:57:e1:90:c8:42:a0:3d:50:6b:57:f0:b5:6e:18:
        dc:30:e1:e3:84:90:33:9b:20:8f:f8:c1:0e:71:41:e5:
        78:2e:7e:95:15:6d:43:4a:aa:6b:f6:73:65:29:9a:27:
        37:6d:5c:56:b9:c1:f7:9c:5a:c0:00:49:b2:fb:08:d0:
        bd:2f:fd:c9:aa:3b:eb:2a:9c:37:ce:2a:ac:3a:26:46:
        7b:3d:e4:63:4e:b6:59:fe:30:6f:a7:5c:d0:cb:3f:c5:
        58:84:ac:7c:e0:0e:f2:5d:00:cc:3f:8f:5d:e5:90:eb:
        08:25:85:fd:b0:e6:4e:52:58:11:ae:f8:37:74:1c:a6:
        0a:9b:aa:59:62:fd:1d:30:a2:1a:37:d4:09:bd:bf:bb:
        dd:05:f8:5f:8d:a7:3e:3e:bd:60:71:c0:46:b7:5e:7b:
        9f:18:72:2e:f2:9f:13:c0:35:08:b9:b8:45:4a:c8:dd:
        49:63:0f:f9:8b:c0:fb:2a:ac:ad:62:d3:74:44:dc:d7:
        ed:d7:8d:0b:60:52:cd:96:4e:ac:7f:ec:bf:7d:af:a4:
        f4:bf:34:f7:3f:9b:1e:8d:f8:f0:f1:b6:6b:58:b2:c2:
        79:8a:2a:f3:10:c3:11:52:8d:b8:6e:e6:c0:1b:c5:7c
    Fingerprint (SHA-256):
        04:9B:7D:2F:6A:7A:E2:11:57:4C:70:18:29:80:8B:3E:0C:78:3B:F4:66:97:94:D3:D6:02:FB:1F:45:0D:1B:C0
    Fingerprint (SHA1):
        A3:F2:3D:85:8B:C9:46:68:9C:D7:36:5D:CC:DB:38:4C:E7:3D:1A:76
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #5935: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5936: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #5937: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 2450 at Tue May  2 15:49:36 UTC 2017
kill -USR1 2450
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 2450 killed at Tue May  2 15:49:36 UTC 2017
httpserv starting at Tue May  2 15:49:36 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 15:49:36 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 2697 >/dev/null 2>/dev/null
httpserv with PID 2697 found at Tue May  2 15:49:36 UTC 2017
httpserv with PID 2697 started at Tue May  2 15:49:36 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #5938: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #5939: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154920 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5940: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #5941: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #5942: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154921 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5943: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #5944: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #5945: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #5946: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502154922 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #5947: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5948: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502154923 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #5949: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5950: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #5951: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #5952: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #5953: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502154924   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #5954: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #5955: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #5956: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #5957: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #5958: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154921 (0x1dee46a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:49:37 2017
            Not After : Mon May 02 15:49:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:d2:7c:9a:37:e4:90:ea:76:9b:46:0f:96:e8:95:f3:
                    c0:64:3a:4c:19:50:93:1e:cc:65:66:c9:c6:4e:76:f8:
                    87:43:a1:c0:ff:e6:19:f2:69:b0:93:ed:07:e3:90:2f:
                    90:6d:93:6f:bc:e0:57:37:16:fc:53:a0:68:26:ac:c3:
                    c9:4d:1b:ee:eb:23:0c:79:c3:97:f8:f9:94:f6:5c:48:
                    95:6f:9c:54:d6:55:b2:98:a9:60:3d:59:48:fd:2e:f6:
                    46:59:3e:da:08:b2:6b:76:00:99:14:b4:ae:db:a1:f6:
                    31:e7:d7:a6:46:e5:dd:d0:58:4d:76:a1:09:72:70:f7:
                    87:af:e5:6d:25:ba:92:11:c2:4d:1c:4a:3a:5e:f6:e5:
                    6c:3b:68:5f:ef:ae:78:12:3a:a4:27:ac:c9:e5:a9:42:
                    42:37:22:bf:e6:06:63:cd:d7:10:ba:f0:aa:dd:70:fa:
                    0c:2e:77:b6:fd:58:24:85:76:24:cb:97:59:b5:88:a7:
                    da:ad:01:ab:a4:7d:14:56:7b:96:f5:60:2f:3d:53:c4:
                    cf:07:37:70:76:31:26:8d:21:c4:70:be:28:74:39:0e:
                    db:3b:a4:46:ae:eb:dd:99:5d:21:23:bb:4e:e7:22:73:
                    dc:1f:cf:0b:bc:37:39:32:01:43:b6:48:3a:13:b0:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:74:97:39:06:0d:ff:4e:f5:f1:96:70:c1:1b:a7:2e:
        47:2f:55:0f:47:8f:09:27:e9:10:c8:4a:36:1e:7c:b9:
        f4:41:d8:1f:68:81:28:05:68:ad:84:b9:a5:c4:6a:ac:
        e8:dd:43:14:b7:06:ba:e4:a1:69:ba:ad:82:60:b9:9b:
        a4:0f:13:35:1e:59:18:ed:39:13:96:c7:eb:91:a4:0b:
        27:03:65:2c:1e:a0:6b:cf:53:d2:e0:c9:e7:7d:46:63:
        2c:a9:63:9d:4d:29:f3:53:4b:1b:e1:85:04:96:31:76:
        8d:22:23:9b:36:ba:a6:26:8d:ce:2b:ea:51:e8:d6:09:
        f9:89:15:65:7a:21:a0:b4:51:b9:35:0f:43:17:c8:0e:
        42:65:f9:98:9c:f7:06:28:91:15:ae:71:d8:f8:52:9b:
        71:80:12:ff:1c:cc:9b:03:4f:04:f3:99:2f:90:f5:70:
        29:46:cf:9e:61:5b:68:60:ec:d5:5e:dc:90:98:f3:93:
        e9:08:a8:46:fa:de:40:2d:f8:76:d5:df:1a:f7:fe:12:
        90:31:b4:ef:e6:18:ad:fc:3c:52:d8:32:74:d2:02:7d:
        3a:5c:41:a1:e6:82:9d:98:12:1f:f2:88:75:87:d1:ce:
        43:97:97:50:4f:b3:db:f1:b3:7a:e3:79:25:0d:9f:cd
    Fingerprint (SHA-256):
        9B:B3:00:83:3E:FF:20:AC:DC:21:BC:16:FA:96:F9:35:4C:29:DF:E1:34:07:35:87:D8:B9:2F:BE:28:36:28:86
    Fingerprint (SHA1):
        CC:2B:5D:B9:F7:45:AF:7B:54:62:E7:9D:5C:20:7A:1F:30:90:4C:CD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5959: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154920 (0x1dee46a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:49:37 2017
            Not After : Mon May 02 15:49:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:54:11:61:99:68:43:95:36:3a:f8:ed:bd:1e:7c:68:
                    79:55:d9:ce:ab:88:fc:68:48:76:60:9b:36:0a:8d:5a:
                    63:e3:07:2a:8b:e7:a4:ad:49:95:bd:17:f9:3a:a6:03:
                    79:44:99:14:b3:7b:b2:e3:43:d5:d5:54:bd:f0:99:20:
                    6e:96:49:3e:30:a0:56:9b:38:93:d3:ad:d3:89:d2:16:
                    2d:c0:e8:30:37:b7:dd:a4:fb:71:7e:b7:26:91:5a:60:
                    a6:9a:45:a0:6c:c4:60:b7:ae:79:09:4d:48:4b:f4:b7:
                    80:a1:72:b4:56:1c:74:2f:87:71:91:b7:b5:48:05:f7:
                    46:25:bc:ab:85:e7:af:92:0c:9d:af:ef:74:aa:89:93:
                    38:74:ff:93:04:93:a4:43:ce:7f:92:2d:c9:55:45:07:
                    2e:15:1d:74:19:0c:9e:75:84:c8:0e:8b:4d:5e:63:14:
                    27:79:a4:87:ed:98:36:2e:20:72:96:cf:b0:a4:08:e8:
                    5c:ff:78:34:a5:82:1c:48:a1:f1:97:ff:34:ef:c5:05:
                    c3:14:48:0a:cf:5d:a7:76:76:91:22:d0:b5:99:2d:7c:
                    88:df:9d:d4:b6:26:ab:5c:c9:0c:16:84:a4:bb:7e:f8:
                    4d:84:61:0c:e6:ec:b9:e0:fd:d2:1c:27:1f:a5:ea:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:a8:8d:c8:5a:53:32:0d:38:40:07:6b:ae:71:07:10:
        15:6a:6b:f2:61:d1:cb:1c:ce:98:61:95:34:4e:80:5c:
        79:a9:5c:56:5d:56:48:d2:bd:df:83:97:53:4c:16:c3:
        76:37:ba:f2:21:49:56:a7:8f:1d:39:db:c8:7a:b7:52:
        6e:71:44:ef:98:2a:62:14:97:02:21:31:aa:34:af:27:
        e1:4c:9a:43:e6:5b:38:57:b6:e9:53:1c:7f:b7:29:77:
        e9:a7:e8:ae:b6:91:51:a5:02:70:69:72:db:39:87:46:
        d8:22:e3:01:5c:ca:34:5f:8a:42:49:47:4b:d9:14:2a:
        7d:01:c9:73:26:e5:4c:93:39:3f:63:4e:4d:e3:15:e6:
        c0:97:42:7b:48:b4:c7:85:95:a7:de:c9:ce:62:e2:b5:
        cf:e8:60:08:8d:17:ec:d3:7b:4d:d2:8c:df:d4:29:7a:
        8d:e0:e1:c4:88:48:d0:45:83:83:f3:30:17:bf:f0:e1:
        e5:1f:6d:4f:ac:68:65:b1:a8:c7:c0:3d:e1:d9:b4:be:
        1b:af:09:9e:34:d1:41:05:59:ba:79:33:37:52:18:cc:
        ff:37:69:0d:bb:61:80:9e:42:d8:b5:85:d5:28:d9:67:
        8c:fe:78:61:b5:42:f7:2a:b6:1a:73:48:51:30:5a:88
    Fingerprint (SHA-256):
        6C:54:8E:4F:98:61:21:E3:47:DA:9B:81:4A:AA:49:3C:26:A1:8D:19:95:82:74:E8:C3:62:A8:48:6B:0E:F6:64
    Fingerprint (SHA1):
        B2:7A:2A:98:58:3E:FF:84:98:AA:9F:12:FC:CF:FB:7F:91:E3:73:F1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5960: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #5961: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #5962: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #5963: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154920 (0x1dee46a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:49:37 2017
            Not After : Mon May 02 15:49:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:54:11:61:99:68:43:95:36:3a:f8:ed:bd:1e:7c:68:
                    79:55:d9:ce:ab:88:fc:68:48:76:60:9b:36:0a:8d:5a:
                    63:e3:07:2a:8b:e7:a4:ad:49:95:bd:17:f9:3a:a6:03:
                    79:44:99:14:b3:7b:b2:e3:43:d5:d5:54:bd:f0:99:20:
                    6e:96:49:3e:30:a0:56:9b:38:93:d3:ad:d3:89:d2:16:
                    2d:c0:e8:30:37:b7:dd:a4:fb:71:7e:b7:26:91:5a:60:
                    a6:9a:45:a0:6c:c4:60:b7:ae:79:09:4d:48:4b:f4:b7:
                    80:a1:72:b4:56:1c:74:2f:87:71:91:b7:b5:48:05:f7:
                    46:25:bc:ab:85:e7:af:92:0c:9d:af:ef:74:aa:89:93:
                    38:74:ff:93:04:93:a4:43:ce:7f:92:2d:c9:55:45:07:
                    2e:15:1d:74:19:0c:9e:75:84:c8:0e:8b:4d:5e:63:14:
                    27:79:a4:87:ed:98:36:2e:20:72:96:cf:b0:a4:08:e8:
                    5c:ff:78:34:a5:82:1c:48:a1:f1:97:ff:34:ef:c5:05:
                    c3:14:48:0a:cf:5d:a7:76:76:91:22:d0:b5:99:2d:7c:
                    88:df:9d:d4:b6:26:ab:5c:c9:0c:16:84:a4:bb:7e:f8:
                    4d:84:61:0c:e6:ec:b9:e0:fd:d2:1c:27:1f:a5:ea:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:a8:8d:c8:5a:53:32:0d:38:40:07:6b:ae:71:07:10:
        15:6a:6b:f2:61:d1:cb:1c:ce:98:61:95:34:4e:80:5c:
        79:a9:5c:56:5d:56:48:d2:bd:df:83:97:53:4c:16:c3:
        76:37:ba:f2:21:49:56:a7:8f:1d:39:db:c8:7a:b7:52:
        6e:71:44:ef:98:2a:62:14:97:02:21:31:aa:34:af:27:
        e1:4c:9a:43:e6:5b:38:57:b6:e9:53:1c:7f:b7:29:77:
        e9:a7:e8:ae:b6:91:51:a5:02:70:69:72:db:39:87:46:
        d8:22:e3:01:5c:ca:34:5f:8a:42:49:47:4b:d9:14:2a:
        7d:01:c9:73:26:e5:4c:93:39:3f:63:4e:4d:e3:15:e6:
        c0:97:42:7b:48:b4:c7:85:95:a7:de:c9:ce:62:e2:b5:
        cf:e8:60:08:8d:17:ec:d3:7b:4d:d2:8c:df:d4:29:7a:
        8d:e0:e1:c4:88:48:d0:45:83:83:f3:30:17:bf:f0:e1:
        e5:1f:6d:4f:ac:68:65:b1:a8:c7:c0:3d:e1:d9:b4:be:
        1b:af:09:9e:34:d1:41:05:59:ba:79:33:37:52:18:cc:
        ff:37:69:0d:bb:61:80:9e:42:d8:b5:85:d5:28:d9:67:
        8c:fe:78:61:b5:42:f7:2a:b6:1a:73:48:51:30:5a:88
    Fingerprint (SHA-256):
        6C:54:8E:4F:98:61:21:E3:47:DA:9B:81:4A:AA:49:3C:26:A1:8D:19:95:82:74:E8:C3:62:A8:48:6B:0E:F6:64
    Fingerprint (SHA1):
        B2:7A:2A:98:58:3E:FF:84:98:AA:9F:12:FC:CF:FB:7F:91:E3:73:F1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5964: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154921 (0x1dee46a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:49:37 2017
            Not After : Mon May 02 15:49:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:d2:7c:9a:37:e4:90:ea:76:9b:46:0f:96:e8:95:f3:
                    c0:64:3a:4c:19:50:93:1e:cc:65:66:c9:c6:4e:76:f8:
                    87:43:a1:c0:ff:e6:19:f2:69:b0:93:ed:07:e3:90:2f:
                    90:6d:93:6f:bc:e0:57:37:16:fc:53:a0:68:26:ac:c3:
                    c9:4d:1b:ee:eb:23:0c:79:c3:97:f8:f9:94:f6:5c:48:
                    95:6f:9c:54:d6:55:b2:98:a9:60:3d:59:48:fd:2e:f6:
                    46:59:3e:da:08:b2:6b:76:00:99:14:b4:ae:db:a1:f6:
                    31:e7:d7:a6:46:e5:dd:d0:58:4d:76:a1:09:72:70:f7:
                    87:af:e5:6d:25:ba:92:11:c2:4d:1c:4a:3a:5e:f6:e5:
                    6c:3b:68:5f:ef:ae:78:12:3a:a4:27:ac:c9:e5:a9:42:
                    42:37:22:bf:e6:06:63:cd:d7:10:ba:f0:aa:dd:70:fa:
                    0c:2e:77:b6:fd:58:24:85:76:24:cb:97:59:b5:88:a7:
                    da:ad:01:ab:a4:7d:14:56:7b:96:f5:60:2f:3d:53:c4:
                    cf:07:37:70:76:31:26:8d:21:c4:70:be:28:74:39:0e:
                    db:3b:a4:46:ae:eb:dd:99:5d:21:23:bb:4e:e7:22:73:
                    dc:1f:cf:0b:bc:37:39:32:01:43:b6:48:3a:13:b0:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:74:97:39:06:0d:ff:4e:f5:f1:96:70:c1:1b:a7:2e:
        47:2f:55:0f:47:8f:09:27:e9:10:c8:4a:36:1e:7c:b9:
        f4:41:d8:1f:68:81:28:05:68:ad:84:b9:a5:c4:6a:ac:
        e8:dd:43:14:b7:06:ba:e4:a1:69:ba:ad:82:60:b9:9b:
        a4:0f:13:35:1e:59:18:ed:39:13:96:c7:eb:91:a4:0b:
        27:03:65:2c:1e:a0:6b:cf:53:d2:e0:c9:e7:7d:46:63:
        2c:a9:63:9d:4d:29:f3:53:4b:1b:e1:85:04:96:31:76:
        8d:22:23:9b:36:ba:a6:26:8d:ce:2b:ea:51:e8:d6:09:
        f9:89:15:65:7a:21:a0:b4:51:b9:35:0f:43:17:c8:0e:
        42:65:f9:98:9c:f7:06:28:91:15:ae:71:d8:f8:52:9b:
        71:80:12:ff:1c:cc:9b:03:4f:04:f3:99:2f:90:f5:70:
        29:46:cf:9e:61:5b:68:60:ec:d5:5e:dc:90:98:f3:93:
        e9:08:a8:46:fa:de:40:2d:f8:76:d5:df:1a:f7:fe:12:
        90:31:b4:ef:e6:18:ad:fc:3c:52:d8:32:74:d2:02:7d:
        3a:5c:41:a1:e6:82:9d:98:12:1f:f2:88:75:87:d1:ce:
        43:97:97:50:4f:b3:db:f1:b3:7a:e3:79:25:0d:9f:cd
    Fingerprint (SHA-256):
        9B:B3:00:83:3E:FF:20:AC:DC:21:BC:16:FA:96:F9:35:4C:29:DF:E1:34:07:35:87:D8:B9:2F:BE:28:36:28:86
    Fingerprint (SHA1):
        CC:2B:5D:B9:F7:45:AF:7B:54:62:E7:9D:5C:20:7A:1F:30:90:4C:CD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5965: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #5966: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #5967: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #5968: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #5969: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #5970: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154921 (0x1dee46a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:49:37 2017
            Not After : Mon May 02 15:49:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:d2:7c:9a:37:e4:90:ea:76:9b:46:0f:96:e8:95:f3:
                    c0:64:3a:4c:19:50:93:1e:cc:65:66:c9:c6:4e:76:f8:
                    87:43:a1:c0:ff:e6:19:f2:69:b0:93:ed:07:e3:90:2f:
                    90:6d:93:6f:bc:e0:57:37:16:fc:53:a0:68:26:ac:c3:
                    c9:4d:1b:ee:eb:23:0c:79:c3:97:f8:f9:94:f6:5c:48:
                    95:6f:9c:54:d6:55:b2:98:a9:60:3d:59:48:fd:2e:f6:
                    46:59:3e:da:08:b2:6b:76:00:99:14:b4:ae:db:a1:f6:
                    31:e7:d7:a6:46:e5:dd:d0:58:4d:76:a1:09:72:70:f7:
                    87:af:e5:6d:25:ba:92:11:c2:4d:1c:4a:3a:5e:f6:e5:
                    6c:3b:68:5f:ef:ae:78:12:3a:a4:27:ac:c9:e5:a9:42:
                    42:37:22:bf:e6:06:63:cd:d7:10:ba:f0:aa:dd:70:fa:
                    0c:2e:77:b6:fd:58:24:85:76:24:cb:97:59:b5:88:a7:
                    da:ad:01:ab:a4:7d:14:56:7b:96:f5:60:2f:3d:53:c4:
                    cf:07:37:70:76:31:26:8d:21:c4:70:be:28:74:39:0e:
                    db:3b:a4:46:ae:eb:dd:99:5d:21:23:bb:4e:e7:22:73:
                    dc:1f:cf:0b:bc:37:39:32:01:43:b6:48:3a:13:b0:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:74:97:39:06:0d:ff:4e:f5:f1:96:70:c1:1b:a7:2e:
        47:2f:55:0f:47:8f:09:27:e9:10:c8:4a:36:1e:7c:b9:
        f4:41:d8:1f:68:81:28:05:68:ad:84:b9:a5:c4:6a:ac:
        e8:dd:43:14:b7:06:ba:e4:a1:69:ba:ad:82:60:b9:9b:
        a4:0f:13:35:1e:59:18:ed:39:13:96:c7:eb:91:a4:0b:
        27:03:65:2c:1e:a0:6b:cf:53:d2:e0:c9:e7:7d:46:63:
        2c:a9:63:9d:4d:29:f3:53:4b:1b:e1:85:04:96:31:76:
        8d:22:23:9b:36:ba:a6:26:8d:ce:2b:ea:51:e8:d6:09:
        f9:89:15:65:7a:21:a0:b4:51:b9:35:0f:43:17:c8:0e:
        42:65:f9:98:9c:f7:06:28:91:15:ae:71:d8:f8:52:9b:
        71:80:12:ff:1c:cc:9b:03:4f:04:f3:99:2f:90:f5:70:
        29:46:cf:9e:61:5b:68:60:ec:d5:5e:dc:90:98:f3:93:
        e9:08:a8:46:fa:de:40:2d:f8:76:d5:df:1a:f7:fe:12:
        90:31:b4:ef:e6:18:ad:fc:3c:52:d8:32:74:d2:02:7d:
        3a:5c:41:a1:e6:82:9d:98:12:1f:f2:88:75:87:d1:ce:
        43:97:97:50:4f:b3:db:f1:b3:7a:e3:79:25:0d:9f:cd
    Fingerprint (SHA-256):
        9B:B3:00:83:3E:FF:20:AC:DC:21:BC:16:FA:96:F9:35:4C:29:DF:E1:34:07:35:87:D8:B9:2F:BE:28:36:28:86
    Fingerprint (SHA1):
        CC:2B:5D:B9:F7:45:AF:7B:54:62:E7:9D:5C:20:7A:1F:30:90:4C:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5971: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154921 (0x1dee46a9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:49:37 2017
            Not After : Mon May 02 15:49:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:d2:7c:9a:37:e4:90:ea:76:9b:46:0f:96:e8:95:f3:
                    c0:64:3a:4c:19:50:93:1e:cc:65:66:c9:c6:4e:76:f8:
                    87:43:a1:c0:ff:e6:19:f2:69:b0:93:ed:07:e3:90:2f:
                    90:6d:93:6f:bc:e0:57:37:16:fc:53:a0:68:26:ac:c3:
                    c9:4d:1b:ee:eb:23:0c:79:c3:97:f8:f9:94:f6:5c:48:
                    95:6f:9c:54:d6:55:b2:98:a9:60:3d:59:48:fd:2e:f6:
                    46:59:3e:da:08:b2:6b:76:00:99:14:b4:ae:db:a1:f6:
                    31:e7:d7:a6:46:e5:dd:d0:58:4d:76:a1:09:72:70:f7:
                    87:af:e5:6d:25:ba:92:11:c2:4d:1c:4a:3a:5e:f6:e5:
                    6c:3b:68:5f:ef:ae:78:12:3a:a4:27:ac:c9:e5:a9:42:
                    42:37:22:bf:e6:06:63:cd:d7:10:ba:f0:aa:dd:70:fa:
                    0c:2e:77:b6:fd:58:24:85:76:24:cb:97:59:b5:88:a7:
                    da:ad:01:ab:a4:7d:14:56:7b:96:f5:60:2f:3d:53:c4:
                    cf:07:37:70:76:31:26:8d:21:c4:70:be:28:74:39:0e:
                    db:3b:a4:46:ae:eb:dd:99:5d:21:23:bb:4e:e7:22:73:
                    dc:1f:cf:0b:bc:37:39:32:01:43:b6:48:3a:13:b0:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:74:97:39:06:0d:ff:4e:f5:f1:96:70:c1:1b:a7:2e:
        47:2f:55:0f:47:8f:09:27:e9:10:c8:4a:36:1e:7c:b9:
        f4:41:d8:1f:68:81:28:05:68:ad:84:b9:a5:c4:6a:ac:
        e8:dd:43:14:b7:06:ba:e4:a1:69:ba:ad:82:60:b9:9b:
        a4:0f:13:35:1e:59:18:ed:39:13:96:c7:eb:91:a4:0b:
        27:03:65:2c:1e:a0:6b:cf:53:d2:e0:c9:e7:7d:46:63:
        2c:a9:63:9d:4d:29:f3:53:4b:1b:e1:85:04:96:31:76:
        8d:22:23:9b:36:ba:a6:26:8d:ce:2b:ea:51:e8:d6:09:
        f9:89:15:65:7a:21:a0:b4:51:b9:35:0f:43:17:c8:0e:
        42:65:f9:98:9c:f7:06:28:91:15:ae:71:d8:f8:52:9b:
        71:80:12:ff:1c:cc:9b:03:4f:04:f3:99:2f:90:f5:70:
        29:46:cf:9e:61:5b:68:60:ec:d5:5e:dc:90:98:f3:93:
        e9:08:a8:46:fa:de:40:2d:f8:76:d5:df:1a:f7:fe:12:
        90:31:b4:ef:e6:18:ad:fc:3c:52:d8:32:74:d2:02:7d:
        3a:5c:41:a1:e6:82:9d:98:12:1f:f2:88:75:87:d1:ce:
        43:97:97:50:4f:b3:db:f1:b3:7a:e3:79:25:0d:9f:cd
    Fingerprint (SHA-256):
        9B:B3:00:83:3E:FF:20:AC:DC:21:BC:16:FA:96:F9:35:4C:29:DF:E1:34:07:35:87:D8:B9:2F:BE:28:36:28:86
    Fingerprint (SHA1):
        CC:2B:5D:B9:F7:45:AF:7B:54:62:E7:9D:5C:20:7A:1F:30:90:4C:CD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5972: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #5973: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #5974: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #5975: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #5976: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #5977: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154920 (0x1dee46a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:49:37 2017
            Not After : Mon May 02 15:49:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:54:11:61:99:68:43:95:36:3a:f8:ed:bd:1e:7c:68:
                    79:55:d9:ce:ab:88:fc:68:48:76:60:9b:36:0a:8d:5a:
                    63:e3:07:2a:8b:e7:a4:ad:49:95:bd:17:f9:3a:a6:03:
                    79:44:99:14:b3:7b:b2:e3:43:d5:d5:54:bd:f0:99:20:
                    6e:96:49:3e:30:a0:56:9b:38:93:d3:ad:d3:89:d2:16:
                    2d:c0:e8:30:37:b7:dd:a4:fb:71:7e:b7:26:91:5a:60:
                    a6:9a:45:a0:6c:c4:60:b7:ae:79:09:4d:48:4b:f4:b7:
                    80:a1:72:b4:56:1c:74:2f:87:71:91:b7:b5:48:05:f7:
                    46:25:bc:ab:85:e7:af:92:0c:9d:af:ef:74:aa:89:93:
                    38:74:ff:93:04:93:a4:43:ce:7f:92:2d:c9:55:45:07:
                    2e:15:1d:74:19:0c:9e:75:84:c8:0e:8b:4d:5e:63:14:
                    27:79:a4:87:ed:98:36:2e:20:72:96:cf:b0:a4:08:e8:
                    5c:ff:78:34:a5:82:1c:48:a1:f1:97:ff:34:ef:c5:05:
                    c3:14:48:0a:cf:5d:a7:76:76:91:22:d0:b5:99:2d:7c:
                    88:df:9d:d4:b6:26:ab:5c:c9:0c:16:84:a4:bb:7e:f8:
                    4d:84:61:0c:e6:ec:b9:e0:fd:d2:1c:27:1f:a5:ea:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:a8:8d:c8:5a:53:32:0d:38:40:07:6b:ae:71:07:10:
        15:6a:6b:f2:61:d1:cb:1c:ce:98:61:95:34:4e:80:5c:
        79:a9:5c:56:5d:56:48:d2:bd:df:83:97:53:4c:16:c3:
        76:37:ba:f2:21:49:56:a7:8f:1d:39:db:c8:7a:b7:52:
        6e:71:44:ef:98:2a:62:14:97:02:21:31:aa:34:af:27:
        e1:4c:9a:43:e6:5b:38:57:b6:e9:53:1c:7f:b7:29:77:
        e9:a7:e8:ae:b6:91:51:a5:02:70:69:72:db:39:87:46:
        d8:22:e3:01:5c:ca:34:5f:8a:42:49:47:4b:d9:14:2a:
        7d:01:c9:73:26:e5:4c:93:39:3f:63:4e:4d:e3:15:e6:
        c0:97:42:7b:48:b4:c7:85:95:a7:de:c9:ce:62:e2:b5:
        cf:e8:60:08:8d:17:ec:d3:7b:4d:d2:8c:df:d4:29:7a:
        8d:e0:e1:c4:88:48:d0:45:83:83:f3:30:17:bf:f0:e1:
        e5:1f:6d:4f:ac:68:65:b1:a8:c7:c0:3d:e1:d9:b4:be:
        1b:af:09:9e:34:d1:41:05:59:ba:79:33:37:52:18:cc:
        ff:37:69:0d:bb:61:80:9e:42:d8:b5:85:d5:28:d9:67:
        8c:fe:78:61:b5:42:f7:2a:b6:1a:73:48:51:30:5a:88
    Fingerprint (SHA-256):
        6C:54:8E:4F:98:61:21:E3:47:DA:9B:81:4A:AA:49:3C:26:A1:8D:19:95:82:74:E8:C3:62:A8:48:6B:0E:F6:64
    Fingerprint (SHA1):
        B2:7A:2A:98:58:3E:FF:84:98:AA:9F:12:FC:CF:FB:7F:91:E3:73:F1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5978: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154920 (0x1dee46a8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:49:37 2017
            Not After : Mon May 02 15:49:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:54:11:61:99:68:43:95:36:3a:f8:ed:bd:1e:7c:68:
                    79:55:d9:ce:ab:88:fc:68:48:76:60:9b:36:0a:8d:5a:
                    63:e3:07:2a:8b:e7:a4:ad:49:95:bd:17:f9:3a:a6:03:
                    79:44:99:14:b3:7b:b2:e3:43:d5:d5:54:bd:f0:99:20:
                    6e:96:49:3e:30:a0:56:9b:38:93:d3:ad:d3:89:d2:16:
                    2d:c0:e8:30:37:b7:dd:a4:fb:71:7e:b7:26:91:5a:60:
                    a6:9a:45:a0:6c:c4:60:b7:ae:79:09:4d:48:4b:f4:b7:
                    80:a1:72:b4:56:1c:74:2f:87:71:91:b7:b5:48:05:f7:
                    46:25:bc:ab:85:e7:af:92:0c:9d:af:ef:74:aa:89:93:
                    38:74:ff:93:04:93:a4:43:ce:7f:92:2d:c9:55:45:07:
                    2e:15:1d:74:19:0c:9e:75:84:c8:0e:8b:4d:5e:63:14:
                    27:79:a4:87:ed:98:36:2e:20:72:96:cf:b0:a4:08:e8:
                    5c:ff:78:34:a5:82:1c:48:a1:f1:97:ff:34:ef:c5:05:
                    c3:14:48:0a:cf:5d:a7:76:76:91:22:d0:b5:99:2d:7c:
                    88:df:9d:d4:b6:26:ab:5c:c9:0c:16:84:a4:bb:7e:f8:
                    4d:84:61:0c:e6:ec:b9:e0:fd:d2:1c:27:1f:a5:ea:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:a8:8d:c8:5a:53:32:0d:38:40:07:6b:ae:71:07:10:
        15:6a:6b:f2:61:d1:cb:1c:ce:98:61:95:34:4e:80:5c:
        79:a9:5c:56:5d:56:48:d2:bd:df:83:97:53:4c:16:c3:
        76:37:ba:f2:21:49:56:a7:8f:1d:39:db:c8:7a:b7:52:
        6e:71:44:ef:98:2a:62:14:97:02:21:31:aa:34:af:27:
        e1:4c:9a:43:e6:5b:38:57:b6:e9:53:1c:7f:b7:29:77:
        e9:a7:e8:ae:b6:91:51:a5:02:70:69:72:db:39:87:46:
        d8:22:e3:01:5c:ca:34:5f:8a:42:49:47:4b:d9:14:2a:
        7d:01:c9:73:26:e5:4c:93:39:3f:63:4e:4d:e3:15:e6:
        c0:97:42:7b:48:b4:c7:85:95:a7:de:c9:ce:62:e2:b5:
        cf:e8:60:08:8d:17:ec:d3:7b:4d:d2:8c:df:d4:29:7a:
        8d:e0:e1:c4:88:48:d0:45:83:83:f3:30:17:bf:f0:e1:
        e5:1f:6d:4f:ac:68:65:b1:a8:c7:c0:3d:e1:d9:b4:be:
        1b:af:09:9e:34:d1:41:05:59:ba:79:33:37:52:18:cc:
        ff:37:69:0d:bb:61:80:9e:42:d8:b5:85:d5:28:d9:67:
        8c:fe:78:61:b5:42:f7:2a:b6:1a:73:48:51:30:5a:88
    Fingerprint (SHA-256):
        6C:54:8E:4F:98:61:21:E3:47:DA:9B:81:4A:AA:49:3C:26:A1:8D:19:95:82:74:E8:C3:62:A8:48:6B:0E:F6:64
    Fingerprint (SHA1):
        B2:7A:2A:98:58:3E:FF:84:98:AA:9F:12:FC:CF:FB:7F:91:E3:73:F1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #5979: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #5980: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154925 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5981: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #5982: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #5983: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154926 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5984: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #5985: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #5986: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154927 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5987: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #5988: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #5989: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154928 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5990: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #5991: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #5992: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154929 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5993: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #5994: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #5995: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154930 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5996: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #5997: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #5998: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154931 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #5999: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6000: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6001: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154932 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6002: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6003: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6004: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154933 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6005: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6006: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6007: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6008: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502154934 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6009: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6010: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502154935 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6011: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6012: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502154936 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6013: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6014: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6015: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6016: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6017: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502154937 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6018: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6019: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502154938 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6020: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6021: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502154939 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6022: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6023: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #6024: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #6025: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6026: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502154940 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6027: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6028: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502154941 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6029: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6030: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502154942 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6031: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6032: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #6033: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #6034: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6035: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502154943 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6036: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6037: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502154944 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6038: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6039: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502154945 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6040: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6041: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #6042: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6043: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6044: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502154946   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6045: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6046: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6047: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6048: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502154947   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6049: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6050: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154925 (0x1dee46ad)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:49:41 2017
            Not After : Mon May 02 15:49:41 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:ef:62:98:e4:c4:6c:d1:10:4e:e2:c7:6d:10:a4:da:
                    1e:1d:0b:d9:e8:99:4b:b6:92:57:7f:fa:c2:e4:39:71:
                    ee:02:f1:7a:4b:41:96:06:56:86:13:a6:55:b0:8d:ab:
                    12:e2:95:04:a7:26:70:4a:59:bd:7e:9d:c8:09:3d:bd:
                    21:32:ed:cb:6e:9e:4d:73:fb:3b:a0:02:31:60:ed:c0:
                    f1:d7:48:f6:c4:b7:87:59:b4:e3:e1:e9:96:14:45:cf:
                    94:a6:a5:95:d4:ee:48:10:41:74:21:84:df:cf:a0:9b:
                    fe:ba:1c:3a:bf:b5:50:f2:98:7f:51:9d:ec:7b:b1:ad:
                    29:b6:e8:be:93:2c:16:16:5c:ea:12:91:b0:78:d1:fd:
                    b3:b4:9f:a6:b9:3c:bd:c6:16:6a:62:d7:35:ef:e6:e7:
                    8d:4d:ca:90:3c:e7:f6:8e:76:a1:62:90:d0:38:d2:5d:
                    9c:78:06:4a:c8:04:17:db:ec:cd:8c:37:9e:26:61:7a:
                    a9:db:7b:83:55:71:fc:a6:38:60:15:a0:aa:70:b9:fb:
                    ea:b3:fe:7e:84:f6:9e:88:18:f2:8b:69:dc:d4:23:58:
                    27:47:d8:67:b0:7c:ad:99:ff:96:82:a7:b0:37:95:df:
                    11:19:51:ce:97:a4:fe:fe:26:84:d2:e4:75:c7:de:33
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        48:b7:dc:9b:5f:3f:07:ce:24:0c:04:39:05:c3:49:a2:
        45:3f:4b:0a:30:39:92:fd:b9:c4:ae:ed:b1:dc:ab:7b:
        b4:33:15:97:ce:d4:03:eb:d1:bd:4e:18:95:1f:f5:f4:
        0b:77:9f:01:44:31:a3:89:fb:e1:94:65:4e:30:ed:4e:
        92:3b:77:cb:ff:30:97:d0:65:48:b8:dc:34:3b:78:fe:
        f9:72:a6:44:37:e0:fe:62:93:fd:de:5c:44:52:c2:4b:
        11:52:7c:aa:fc:0f:f2:14:e4:35:6a:26:21:3b:4d:60:
        0a:7b:b0:92:a7:a0:b7:64:7d:56:7b:8c:01:69:bc:0e:
        36:0e:31:6a:25:d1:b2:34:f4:03:54:05:b5:d7:4a:3f:
        0b:0c:a1:2c:27:f3:10:3a:72:39:35:96:1b:3a:89:93:
        46:f7:8a:2b:77:5f:3d:d7:06:a5:33:bc:c3:60:21:66:
        eb:38:95:b5:17:64:bd:15:7a:b4:9b:3e:b8:b9:39:fb:
        b2:3b:4a:b5:87:ca:5c:32:49:68:bf:78:ba:94:5f:76:
        b7:f7:15:34:53:23:73:cd:b9:0e:86:a1:1e:1e:4a:ec:
        b5:30:3a:8f:68:13:0f:7c:dd:64:d5:b2:4c:71:18:db:
        dc:f6:ce:84:e1:a2:cf:cf:aa:e6:fc:ad:15:ef:2e:32
    Fingerprint (SHA-256):
        DC:33:B0:15:BB:09:78:58:22:9B:91:57:FF:D8:5B:0B:7A:19:59:27:6F:F8:E4:A9:9A:FF:1D:7F:3C:14:99:61
    Fingerprint (SHA1):
        8D:D9:08:1B:EF:AD:B2:16:8E:B5:C0:B0:F6:FE:7C:A7:46:E8:CF:FC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6051: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154926 (0x1dee46ae)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:49:41 2017
            Not After : Mon May 02 15:49:41 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:b2:19:1a:fb:70:ed:9b:34:2b:ba:34:a9:40:33:59:
                    da:37:ed:c5:e7:ed:3b:d5:5d:40:4f:20:24:36:c3:5b:
                    3e:67:52:6f:81:28:5a:4d:87:df:52:ba:a2:63:df:c7:
                    81:0a:4d:65:4e:ad:f1:ff:3f:16:c1:fb:15:34:8f:da:
                    6b:d1:f0:0d:a6:6e:13:e4:14:4a:3b:59:f7:f6:46:9e:
                    38:2e:50:aa:cc:17:ec:d8:89:e4:13:08:5e:ab:55:57:
                    97:60:ac:dd:62:2c:d8:d1:b8:61:d5:06:b3:43:a6:1c:
                    ee:6d:87:51:83:50:f3:a5:5e:87:6f:de:91:5f:c3:1c:
                    07:68:40:22:35:3f:60:5b:ec:e6:af:ae:86:f9:39:2c:
                    f5:2b:ee:37:57:f7:82:4f:a8:3d:20:91:a8:21:bc:75:
                    85:9e:66:ac:cb:53:99:55:c9:b6:49:c2:36:34:51:13:
                    ca:07:bf:8a:40:4a:fc:96:38:41:59:75:f5:1a:43:a3:
                    fe:8d:83:93:15:2e:d4:64:7f:09:ff:b9:68:74:30:f7:
                    81:93:c7:4d:40:bb:e5:b6:26:9f:fb:59:b2:81:5f:01:
                    9d:5c:85:14:85:8a:6b:53:6b:13:3a:be:2f:0c:49:66:
                    3d:68:80:d6:31:5f:57:13:e7:0f:2c:4e:b6:0f:8c:41
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        85:2d:0e:fd:8b:44:86:ca:4e:02:02:40:cf:0e:73:7e:
        45:83:33:e7:bd:9d:6f:ea:9a:51:54:fc:c4:c2:0d:e0:
        3e:ff:33:81:b5:9f:82:8f:22:2a:83:5d:1e:63:c0:47:
        0e:18:4d:a8:dd:a3:6e:b7:47:a0:65:00:00:6c:c0:12:
        5f:2a:c6:6d:16:09:d1:c4:ad:a5:dd:e3:0f:90:8b:07:
        29:ff:c9:dd:4c:4d:95:47:0c:3a:87:0e:19:fe:27:c3:
        b5:0e:d8:37:53:1a:46:05:ba:37:e2:e4:5a:45:61:49:
        91:84:ed:6e:db:d7:7b:f2:ab:d4:f5:3b:d4:27:8d:e3:
        0e:86:a6:d9:5b:d3:9a:31:e5:78:36:69:a7:52:21:c2:
        0f:8e:eb:c4:a1:1e:7c:2b:95:11:77:ce:2a:92:4f:ab:
        88:cc:71:3e:35:22:ce:f6:1d:63:1a:41:5a:f3:c9:9f:
        e9:a4:2a:68:50:49:fb:c9:7e:2d:bf:7c:bb:b6:4c:da:
        81:e8:3b:28:23:44:29:fe:29:45:71:87:5b:58:b1:48:
        17:63:e5:66:78:b4:1a:46:1d:b8:ad:8b:4d:cf:b0:d8:
        aa:9b:07:2f:07:4b:c5:98:de:d6:96:c2:ea:82:d4:7b:
        7a:88:b5:3b:71:70:0f:ca:dd:25:9b:48:18:ac:3d:b0
    Fingerprint (SHA-256):
        27:97:2C:20:9F:74:BC:75:00:9D:41:45:C0:09:C4:F9:14:3A:AD:E3:56:C2:CA:E2:75:60:D7:51:FD:7D:B8:1A
    Fingerprint (SHA1):
        2A:9D:57:6B:AF:E7:54:F7:FC:4F:B8:77:34:DF:ED:57:82:A0:C8:C2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6052: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154927 (0x1dee46af)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:49:42 2017
            Not After : Mon May 02 15:49:42 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:27:68:d8:03:4e:9a:d4:05:ad:36:08:59:02:88:0a:
                    c7:fd:22:50:9a:53:a7:bf:91:fc:d6:41:ba:30:5c:8b:
                    53:95:bf:3a:bc:56:1e:9d:17:a7:2d:10:43:f3:6c:76:
                    42:b2:7b:90:d6:25:02:12:88:e9:3e:26:e5:74:1e:15:
                    83:74:30:32:aa:02:54:28:7e:97:39:69:7c:c1:ed:11:
                    7c:76:54:4e:13:40:33:02:94:44:84:ad:e4:04:c8:4d:
                    de:0d:f3:17:24:a6:a9:2b:f4:0d:50:29:c8:36:93:63:
                    2f:01:81:9b:c5:b1:92:cd:ca:8a:e1:7e:6d:d5:99:59:
                    59:be:28:33:66:14:e3:6e:0c:f9:e2:5f:cc:9c:66:7a:
                    cb:39:8b:91:03:32:dd:e6:ba:b2:a8:94:e5:d4:33:0e:
                    8e:67:7b:0a:68:4c:e7:dc:df:af:53:d6:4c:dd:f9:a3:
                    a4:34:50:b9:e3:d3:93:ff:b4:5e:83:a5:13:05:82:b6:
                    2c:7d:b0:9c:99:cc:ca:df:01:0a:4e:af:3c:04:d0:96:
                    53:84:80:9a:b9:6d:cb:59:fb:d6:e7:67:da:85:02:3e:
                    18:2f:db:12:b8:ec:8c:db:54:24:d9:3b:9d:61:57:a9:
                    10:3c:89:15:40:2e:72:ce:1a:dc:b5:df:58:8b:66:0d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:1e:01:26:33:01:51:cb:c2:e6:a4:e0:f9:1c:dd:cc:
        70:a9:70:66:0e:1d:75:d9:f7:ef:c8:ea:5b:f4:00:5a:
        d0:bd:46:b6:77:ab:08:58:8a:8e:f7:68:52:95:0f:46:
        1b:90:be:13:5b:df:76:85:40:a7:70:7e:8c:49:82:52:
        a6:ef:a2:e1:74:a0:a6:4d:39:8f:dd:d2:d3:b7:fd:df:
        48:44:b3:cf:4a:1c:19:6e:61:9f:71:be:da:a5:89:d9:
        ff:8b:78:22:25:d8:fa:0f:4e:7a:53:bb:b2:a6:f6:dd:
        cc:4f:04:18:46:21:4c:31:bb:a1:41:f7:16:68:42:ff:
        a5:d6:a4:06:f1:21:9e:63:e0:97:90:08:f4:8d:a2:36:
        b5:f1:47:36:89:46:8a:68:ca:96:c2:03:cc:53:ea:ae:
        00:27:76:71:07:0d:4d:cd:dc:94:00:74:61:51:f0:2f:
        36:6b:4d:e7:63:a5:9b:10:8d:42:88:c1:ee:34:22:77:
        21:cb:a8:a9:25:c5:e7:8a:d7:c0:cf:4e:6f:20:02:b2:
        a6:f1:bd:4c:a5:40:fa:99:52:94:cf:e4:28:68:86:67:
        c9:d2:24:11:e5:4f:46:c7:57:ab:c8:21:0a:d2:40:ca:
        0f:ed:70:cc:1f:fd:94:cd:e4:61:22:d3:22:4a:f3:6a
    Fingerprint (SHA-256):
        7C:4B:B0:B0:94:EB:4E:69:46:BA:88:CF:86:32:BD:26:48:CD:EB:C3:5D:E3:24:83:2B:53:B7:EA:86:43:74:E4
    Fingerprint (SHA1):
        1E:80:75:FA:32:4A:4C:E0:BA:2A:43:5D:CA:C2:82:59:22:12:AA:4E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6053: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154928 (0x1dee46b0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:49:43 2017
            Not After : Mon May 02 15:49:43 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    fa:7e:7b:1e:04:89:c9:bd:e4:d8:03:be:0f:60:f9:32:
                    da:94:55:bf:7e:d9:ee:b1:ce:b4:14:c8:dd:46:03:94:
                    00:23:10:bd:ac:33:c7:be:0f:ad:84:0e:a4:75:6a:c7:
                    30:54:40:37:09:6d:3e:1d:05:09:d4:f2:b3:9b:19:d9:
                    e3:9e:c4:45:04:11:31:c6:a3:ac:78:4a:6b:84:60:a3:
                    cd:37:66:45:b4:93:5e:a1:c3:e2:f5:d4:39:43:d3:10:
                    a8:fc:23:a3:0e:0f:03:c4:95:9c:83:52:36:c4:23:38:
                    7c:bb:cd:11:04:db:4d:a4:a4:97:dd:7a:38:92:3b:95:
                    bd:ff:7c:49:83:5d:4b:a0:11:83:5d:df:13:35:cf:c4:
                    30:a9:c0:8d:10:ac:43:b8:24:11:b8:cd:9f:00:9b:c8:
                    b5:37:b5:95:cd:70:b1:e3:f8:7c:f2:43:6b:f0:7c:54:
                    e4:2d:8e:08:c4:4b:61:c8:b2:ce:a6:99:3c:1d:d4:40:
                    e9:7e:a3:bf:80:70:19:6d:d4:5e:72:88:60:22:64:89:
                    a6:9a:9c:a9:29:16:52:eb:a2:3a:ea:36:0f:b1:1c:10:
                    e5:3f:a4:8a:47:d2:32:f2:4f:bc:04:8b:a4:bc:46:0e:
                    de:ec:41:96:b9:3a:d1:41:8e:79:87:c5:32:26:8e:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:05:8f:f4:5a:de:42:fa:78:3d:c5:18:52:1b:ba:c5:
        1f:c2:6c:41:92:f4:7c:7f:03:f7:bf:e6:03:86:4f:5a:
        1e:d7:e6:31:66:e4:bf:d4:46:a5:32:2c:01:38:d0:7f:
        2d:92:6f:ac:d6:db:c9:d8:c1:be:5a:72:4a:54:d6:1b:
        5b:0e:15:2b:2d:18:7f:95:1b:21:76:00:70:cb:bb:b4:
        df:70:21:ee:f4:aa:9f:ea:df:7b:3e:d3:13:c4:91:19:
        47:6c:eb:58:6d:40:49:e8:d1:51:2c:69:14:80:26:51:
        b5:c5:c7:df:ab:92:e1:d8:53:9b:7f:48:47:ac:a9:6c:
        e5:e1:5b:ab:20:f6:dd:80:97:98:31:a5:e8:49:e9:f8:
        34:80:2c:03:24:bc:56:f0:63:61:4b:4e:84:b5:2e:df:
        b9:25:d9:8c:6d:0c:88:a6:9e:0d:b6:db:ac:40:bf:ca:
        3d:1f:cc:c9:2f:33:1c:3c:b7:14:24:55:f6:53:3b:27:
        e8:99:a7:d5:eb:27:ca:13:40:60:f7:78:b8:c1:05:57:
        89:2a:4d:f5:ff:f8:8b:3f:9c:4f:6d:86:d2:eb:b0:16:
        96:d6:02:06:e6:74:65:21:11:ad:46:19:86:22:29:f6:
        cf:47:75:a8:d0:0b:de:9c:82:a7:78:5c:33:e5:ef:a1
    Fingerprint (SHA-256):
        20:93:7F:BF:32:C0:C2:7F:25:94:B1:02:75:13:E7:90:4D:05:53:63:D9:99:7C:83:D7:EA:69:13:A6:87:48:99
    Fingerprint (SHA1):
        C2:FE:E2:D8:60:8F:79:24:87:47:14:EE:29:C9:62:6D:45:31:26:85
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6054: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154929 (0x1dee46b1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:49:44 2017
            Not After : Mon May 02 15:49:44 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:c4:07:e5:ba:0a:b2:82:85:55:7f:6c:c5:7b:aa:de:
                    95:68:00:eb:66:a7:2a:2b:a1:19:51:b0:54:56:1a:da:
                    bf:88:8c:a5:50:eb:7d:89:f2:79:4a:2c:11:50:63:36:
                    c1:f5:74:c8:8b:23:3b:d9:51:75:fb:8c:19:2e:d2:c8:
                    2d:6d:61:4b:21:eb:2a:9b:36:10:aa:b9:9c:3d:2f:40:
                    cf:69:3a:8b:ae:f8:c5:a5:55:fd:39:54:2f:88:b8:23:
                    5d:42:cd:b8:97:ab:14:73:30:ac:e7:7b:58:d4:d7:29:
                    1b:8d:e4:10:cf:e6:22:d6:33:db:31:31:f2:31:b2:1e:
                    48:1b:53:3f:1a:ac:8f:93:0f:48:8b:6e:81:21:a9:27:
                    32:a2:30:b5:4d:d5:f2:ef:34:8f:25:c9:9c:6c:74:fe:
                    83:46:03:af:6f:ca:22:41:c5:aa:09:7e:cc:94:89:48:
                    0c:72:1b:36:29:e6:4d:a7:b1:c8:b3:3b:df:2e:d6:db:
                    68:fe:5b:d4:b3:e4:b7:aa:77:ce:3d:4d:e8:9d:75:66:
                    ae:f4:07:1f:56:1c:66:1f:49:e4:e1:86:26:e7:38:18:
                    dd:c8:ae:0c:9a:57:1d:c1:ad:eb:63:58:9e:c5:96:98:
                    46:3e:35:e6:a0:67:f2:79:9e:23:7a:60:53:4b:1a:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ca:ad:60:88:df:db:a8:c9:19:a6:01:aa:42:8e:7c:2b:
        6f:b5:0e:ca:eb:9d:11:ea:a7:14:20:be:5d:f3:8e:98:
        8b:b4:fb:73:ff:21:3d:dd:3b:72:83:1c:18:8d:2d:29:
        21:ff:b1:21:ce:2e:e9:6a:7a:a4:74:23:18:53:b0:03:
        86:27:b6:b6:26:37:20:85:5b:1c:bc:2f:cb:ec:43:50:
        37:6b:ac:44:07:83:f6:b1:5f:e5:43:30:3e:d8:28:4e:
        81:81:23:bc:52:67:7c:a4:48:2c:7a:48:24:44:8d:8d:
        af:1b:87:2e:04:fb:15:db:7d:fa:00:d4:6b:7d:3e:d8:
        da:f4:d1:54:45:79:30:b1:69:c0:bd:15:7e:ce:76:a3:
        92:0a:83:d6:ab:a1:cd:35:13:62:63:9b:d5:46:66:e1:
        41:9d:6e:af:9d:7e:fd:6e:ae:49:d2:bc:f6:dd:1b:1c:
        28:1b:69:9e:e2:83:a7:1d:9a:94:18:3d:8a:bd:b4:59:
        69:ce:53:b3:b8:19:80:81:43:8c:2d:64:fd:45:3c:e5:
        b1:c0:25:96:58:48:8a:43:b1:3d:55:a8:e3:ca:79:dd:
        3d:1d:4a:81:4f:3f:0f:b9:f3:94:da:60:91:40:02:d2:
        52:2e:fb:15:3f:30:57:13:2c:42:ef:83:29:86:c9:c1
    Fingerprint (SHA-256):
        48:02:A7:4E:3F:2E:19:87:98:31:F2:A7:42:46:E1:A7:90:1C:EB:AC:76:EE:0C:C4:22:9E:E4:55:C8:9D:A1:D1
    Fingerprint (SHA1):
        F3:9E:E6:83:75:04:BC:7E:E4:C7:1E:66:6B:DB:45:49:A3:D4:45:E6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6055: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154930 (0x1dee46b2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:49:44 2017
            Not After : Mon May 02 15:49:44 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:19:7a:7e:49:b6:be:bc:1d:90:87:4b:a0:24:14:fc:
                    bb:40:7a:0c:1e:9a:82:dc:5e:af:3c:34:56:b1:43:d5:
                    5b:36:41:98:28:79:11:f7:85:c1:5c:14:78:3b:c9:89:
                    87:6c:3d:49:14:60:38:56:1c:e5:1f:f1:b8:80:af:c7:
                    77:b4:22:d3:6b:3d:fc:b3:30:e8:4f:45:49:e1:a5:7c:
                    4b:5f:9b:dd:a2:b2:c3:52:8c:ec:92:98:67:80:83:1f:
                    39:d0:99:ff:55:64:9a:ef:aa:5d:ba:a9:a7:b0:bd:1b:
                    7a:c8:4b:24:8d:98:1d:ff:d6:91:8b:e5:6a:4d:28:49:
                    f6:ab:30:45:3c:b4:25:a9:44:17:ad:fb:b0:43:07:d0:
                    22:a7:3e:bf:5b:f3:18:e9:cd:81:0a:4b:53:4b:f2:9d:
                    85:45:41:97:dc:4d:66:59:8d:98:9d:f1:09:69:48:fe:
                    da:57:2b:e7:4c:87:67:4a:52:7a:39:fe:05:36:99:8c:
                    41:bd:47:99:8c:89:08:65:cf:ac:8e:5e:dc:43:6b:9b:
                    d7:e8:5d:7a:69:09:1a:01:54:a3:18:fe:ea:f3:b9:d2:
                    49:af:15:e1:d9:ae:20:50:fd:03:bd:0b:5c:6d:5f:ce:
                    e7:ff:99:1e:25:36:03:fd:6e:06:28:ca:67:5e:9c:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:ff:35:c6:fa:4d:bc:e0:d1:26:22:1b:cb:f6:6f:04:
        df:f0:cb:82:27:bf:c3:96:af:8b:9b:ae:08:f4:fa:63:
        4f:24:3f:61:23:d3:5a:cd:87:02:74:6b:cf:0c:3a:cc:
        9c:b6:81:25:ac:f8:2a:fa:a7:a9:4e:09:00:19:c8:08:
        a1:4d:4a:57:ab:f8:f1:75:f1:6f:c9:c1:35:47:b9:1b:
        7d:b5:7c:b0:99:2f:0d:52:b0:0d:88:85:24:c2:68:f3:
        4e:48:24:59:ab:cd:4c:79:4e:e5:b4:9f:c1:40:70:a6:
        23:3b:0c:e5:8a:3a:15:67:e7:4e:c8:74:c6:8f:61:00:
        46:31:2e:29:c8:ca:ba:05:7a:c2:a1:95:d1:4e:c5:b6:
        47:65:1d:0d:7a:d4:99:eb:94:ac:96:2b:98:0b:a3:cc:
        59:bd:93:81:9d:09:22:bc:78:7c:59:d3:33:86:b4:4b:
        75:2a:e1:53:a9:6e:68:da:69:87:fc:ee:4f:65:95:82:
        5e:45:3e:1c:b7:3c:7b:00:09:62:7c:f6:5a:ad:94:c5:
        27:4d:83:5b:6d:a7:2c:d8:4a:0a:9c:ce:ae:be:d7:33:
        91:cd:de:a3:2d:94:03:20:05:0e:d9:16:26:a1:44:b4:
        8c:33:25:f8:14:5c:11:e2:f1:c8:61:72:c7:ac:a1:63
    Fingerprint (SHA-256):
        C7:B8:66:4D:F0:56:11:DB:5F:CF:17:0B:F8:71:A0:AB:F3:08:5B:7A:E0:E4:D4:FC:0C:00:CC:92:B2:00:3A:14
    Fingerprint (SHA1):
        15:9B:FB:54:E0:E1:E9:6D:F4:E4:58:4D:04:38:79:10:8F:33:4B:EF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6056: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154931 (0x1dee46b3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:49:44 2017
            Not After : Mon May 02 15:49:44 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:cf:fa:36:62:d2:fe:f2:4a:d8:ec:e5:dd:d2:03:a1:
                    1d:c8:9c:9e:10:db:5d:77:9d:03:ae:15:96:c0:4c:c9:
                    7f:3a:33:0a:a3:a4:2a:44:29:62:11:d8:3f:0d:2b:6d:
                    10:16:c6:05:ca:13:af:a2:0c:59:e7:d4:54:ca:76:ef:
                    7e:b1:b5:5e:5a:a6:61:0a:7f:1b:65:40:98:be:b4:8a:
                    d8:10:53:ad:55:aa:26:95:ca:51:34:d4:30:d6:1b:9e:
                    a8:88:f3:ae:ea:78:1d:8a:6d:ef:0f:95:20:c9:e6:0e:
                    7d:e2:18:c1:17:79:45:7d:72:af:ec:86:93:25:0f:45:
                    f9:a1:03:7c:e9:9f:dc:36:ff:2f:56:6d:4f:14:74:8d:
                    f1:ae:d3:b3:f1:73:e6:e9:c3:ed:98:c8:5b:7c:62:1c:
                    9b:69:67:99:6d:1c:05:65:43:d4:cb:67:07:02:46:ce:
                    0c:80:7e:28:1a:a6:5d:72:e8:f5:0f:29:e4:92:dd:61:
                    dd:56:08:e5:8a:d9:05:18:da:d3:ed:72:0e:15:94:24:
                    fc:e2:3e:ab:03:dd:de:9a:0f:cd:e0:40:59:74:bc:39:
                    8c:60:c7:c9:dc:f7:56:1e:56:21:56:3d:51:91:ca:60:
                    e3:99:e0:2f:92:38:ba:27:45:24:03:3c:99:94:4d:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a8:fc:52:29:e6:63:a1:e8:21:d4:c3:89:0e:4f:05:dd:
        04:94:64:92:2d:79:a2:5e:b7:19:d4:b4:33:1d:49:45:
        48:c1:4c:42:ea:f5:59:d6:fa:94:e1:41:e5:e0:aa:40:
        d7:eb:6f:04:de:82:49:aa:85:c7:57:5a:62:f2:4c:4d:
        b0:36:92:76:62:68:3c:4b:bd:6b:a2:2f:d1:fb:36:6c:
        a2:0e:12:ea:e7:2a:6c:23:2a:f0:47:c1:5a:6d:eb:38:
        62:f8:76:11:8c:4e:d6:da:dd:6b:cf:d2:a5:25:9b:f8:
        92:a4:c8:cc:0f:e6:92:31:e9:ad:c5:79:33:46:f8:92:
        dd:b8:7d:84:60:5a:a2:2b:29:b9:77:1c:fd:b9:ba:f8:
        43:7e:59:6b:32:22:0f:2e:ac:60:55:58:92:92:31:11:
        f9:1a:b1:3d:aa:38:40:f0:1c:eb:ca:ab:6c:87:47:f1:
        56:74:25:75:c1:10:ee:4a:2a:5c:ac:5d:bc:a5:a2:85:
        1a:b7:50:c7:3f:57:b6:57:6b:2e:e4:54:37:18:f5:b7:
        29:06:94:d5:09:e8:46:8c:4c:58:4c:c2:da:91:1e:e2:
        f6:f0:b0:e0:75:73:8d:36:41:ab:d6:34:03:e9:0a:f6:
        51:42:97:67:59:0e:c7:ce:29:41:cb:59:18:6a:f6:9b
    Fingerprint (SHA-256):
        85:66:DB:82:D7:62:12:66:C4:AF:DC:32:CF:21:92:05:0D:4E:B2:69:1A:09:1C:8E:C1:CA:64:4D:B9:39:C0:69
    Fingerprint (SHA1):
        54:B9:01:9A:A8:F9:BC:44:B5:CD:56:FF:C0:63:76:B2:C6:15:69:63
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6057: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154932 (0x1dee46b4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:49:45 2017
            Not After : Mon May 02 15:49:45 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:9d:61:94:a7:68:77:b5:65:bf:da:86:2a:98:f3:bc:
                    28:d8:4d:ed:f5:35:5e:23:b8:19:1f:83:6e:1b:84:ab:
                    09:3e:3f:73:04:83:44:79:29:d4:50:b8:b1:37:13:f5:
                    e1:b8:ba:fc:e8:82:c1:77:13:d5:e8:7b:e9:9a:25:ed:
                    50:c1:68:24:9e:c9:f9:d5:35:08:d1:41:7b:93:94:85:
                    af:7b:d2:ef:b5:f8:c9:e3:5e:ac:53:06:15:8b:a6:ae:
                    89:d2:7d:42:06:b8:37:b2:cd:8b:92:80:37:75:d2:c6:
                    f5:ff:08:9e:40:4d:7a:be:b7:e3:aa:8a:e3:62:92:92:
                    0c:53:08:52:43:ab:78:ae:24:ea:97:36:2f:db:9c:2f:
                    5f:89:01:30:87:28:4e:3b:5b:75:90:57:6e:67:ae:0c:
                    8c:7f:68:f0:a8:3d:ad:51:26:49:d5:90:38:59:18:09:
                    66:d7:91:94:87:3c:55:6f:aa:4e:11:60:1f:78:2d:ff:
                    30:2b:94:76:5b:69:38:df:21:23:61:c2:41:45:2e:36:
                    2f:ca:3e:76:15:29:92:e8:8d:e2:ce:b2:e8:d5:21:ee:
                    e7:d6:06:5f:46:cc:e7:a4:ab:74:32:b2:fc:0a:e3:36:
                    c4:e1:be:b0:e5:2d:da:fd:ca:6d:86:e2:d8:fc:c0:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:80:67:05:99:19:6c:52:f7:1f:66:57:e5:d1:ca:d6:
        1d:05:91:ec:0d:b9:4d:11:69:1c:c8:c8:9e:90:78:e5:
        3b:14:cd:c7:0e:2e:65:aa:d3:bd:47:44:a5:86:e9:ff:
        6d:58:97:5c:24:97:b5:a1:59:c6:e1:66:f1:f1:90:25:
        9b:90:30:8f:9d:e5:e4:4c:23:aa:e2:83:51:b0:b7:e9:
        ac:6a:88:79:22:d8:4b:0a:fb:33:40:7c:3f:17:ef:25:
        a7:74:a6:dd:22:82:d4:f8:d5:d9:5d:95:cb:d2:a5:6c:
        32:ef:70:9e:51:d8:fc:73:ed:a0:b9:a0:16:88:53:d7:
        88:19:dd:32:ad:41:be:c1:1a:ea:59:c5:55:4f:a9:1b:
        b4:db:cc:9f:8c:b3:c8:88:e7:c8:fb:f3:40:2e:0b:4e:
        1e:e2:ac:36:68:0c:0e:eb:a0:59:b5:7a:ff:75:ff:7a:
        5d:7e:f3:b1:21:7f:f7:67:1f:54:1b:cb:c1:a0:00:7d:
        14:77:97:21:15:1c:c8:de:6e:71:d1:1c:b0:6a:7b:2c:
        aa:eb:a9:45:af:cc:3a:5a:21:31:c6:1c:9a:1d:20:89:
        63:64:23:7d:3c:9d:73:d5:40:30:00:13:fa:a1:a1:b2:
        cd:37:48:75:3c:1a:55:02:0e:53:34:d2:47:2e:3c:92
    Fingerprint (SHA-256):
        C1:5F:DD:9C:F0:D5:48:5B:70:66:B7:7E:97:88:4D:C8:37:FF:6A:25:44:5B:BB:49:7F:E5:B7:83:6D:00:98:BA
    Fingerprint (SHA1):
        D9:F2:98:D1:06:DE:A6:9A:27:15:76:7A:0E:D7:B0:83:AB:E7:BD:ED
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6058: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154933 (0x1dee46b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:49:46 2017
            Not After : Mon May 02 15:49:46 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9d:78:c4:04:bf:91:97:3c:e2:f7:8e:98:d0:5d:71:4c:
                    5d:dd:90:7f:e3:09:b7:fb:89:15:cb:10:0a:54:8c:d9:
                    37:88:f4:86:fd:e5:23:75:6b:06:f2:bc:31:b5:1a:34:
                    48:5c:a5:68:4a:bb:91:e1:8f:8b:5b:28:6b:a5:83:92:
                    41:bd:f5:54:9c:2f:a6:e7:3c:a8:5b:b1:d3:9b:83:dd:
                    9a:97:de:6a:ce:6b:b0:0d:a0:f2:0e:07:ef:ab:20:9a:
                    30:db:0b:b4:01:7f:d9:65:bc:30:da:46:89:9a:e4:9d:
                    58:7c:db:34:8b:f5:09:ec:30:b7:37:72:7c:5e:81:9c:
                    ed:34:18:6c:26:54:72:65:29:1d:8d:22:2a:47:c4:ec:
                    62:83:38:5a:9b:1c:5f:ef:ca:43:1a:25:c7:ce:03:62:
                    ec:06:ed:17:ab:6b:7d:03:4a:bf:9d:4f:ea:75:23:e8:
                    39:ae:8d:67:72:1e:90:35:91:1d:ba:2e:a5:3a:8e:a5:
                    b3:6f:28:5a:b7:25:fc:80:fd:dc:5b:f7:f7:11:63:7c:
                    db:91:76:33:53:81:5a:83:01:df:d0:5a:cc:ee:d8:06:
                    bc:45:d0:cb:70:be:f9:cc:40:90:36:3b:89:35:c1:85:
                    d1:fb:ce:26:08:de:54:7d:1b:47:a6:ba:58:02:fa:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7d:3f:74:8f:97:db:ae:1d:c3:2a:66:96:26:77:39:0b:
        b3:a8:6c:38:e5:cc:19:2b:9c:b9:78:a3:74:f7:10:50:
        57:af:37:55:52:95:43:58:d6:c5:5c:de:3a:c1:5f:fa:
        07:0f:16:fd:c5:77:15:41:5f:3a:ba:83:62:f4:b8:b8:
        5d:29:4a:78:a4:39:13:3d:b6:09:88:bf:87:1d:89:6c:
        01:8a:55:15:8d:61:a6:ca:e1:61:5a:d6:8f:e6:dd:99:
        85:ae:0e:01:4d:66:a0:28:fc:60:82:06:4c:ee:97:b2:
        cb:30:3c:d2:6c:51:5c:a1:49:22:c3:ee:7d:73:cd:3b:
        0f:50:5f:df:f2:39:ff:df:e7:b6:9e:a7:0e:7b:5b:62:
        85:be:22:31:e1:3c:c6:50:22:45:57:db:db:57:6c:9b:
        99:fa:e7:18:b9:f2:3c:1c:1d:3f:77:66:c5:6b:c2:ff:
        dd:67:94:ae:42:83:f1:9c:99:e7:cd:60:b6:19:31:25:
        21:af:e2:38:4a:c9:57:52:c3:e3:ee:64:76:11:ac:fa:
        57:2b:2a:49:f6:75:e1:97:18:07:4b:06:12:23:ff:03:
        dd:82:41:09:52:60:64:b7:c9:45:97:92:8c:36:f0:c0:
        62:0b:84:1c:41:ef:14:ee:d1:05:59:5e:92:81:88:a7
    Fingerprint (SHA-256):
        2F:32:D4:A7:CB:F8:47:2B:88:5E:85:AD:22:73:B6:2A:49:89:9A:03:D6:A0:5D:48:3F:76:54:70:46:94:3A:B9
    Fingerprint (SHA1):
        93:F7:8C:A7:AC:88:28:07:D5:AE:8B:E4:60:8B:9C:D3:13:A8:52:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6059: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6060: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154948 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6061: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6062: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6063: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6064: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154949   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6065: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6066: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6067: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6068: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154950   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6069: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6070: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6071: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6072: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502154951   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6073: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6074: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6075: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154948 (0x1dee46c4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:52 2017
            Not After : Mon May 02 15:49:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    92:f4:41:4b:9e:8c:d1:3e:e2:f8:5b:7d:1b:4f:3a:fc:
                    e7:de:24:41:60:6b:d2:fb:a6:bf:40:7d:36:17:57:a1:
                    af:b7:d7:2d:40:43:bf:61:96:94:09:e3:57:49:bd:4c:
                    14:be:33:2d:0f:97:82:86:3b:5d:ca:20:c9:07:cd:e0:
                    0d:7b:99:c5:67:0f:d1:36:d5:80:42:bd:bc:36:99:cf:
                    2a:1f:0c:01:81:08:7e:84:6f:5a:2c:dd:f2:fb:ec:b1:
                    2c:ec:5c:2c:c2:db:6e:5a:11:52:16:41:67:22:68:a5:
                    78:94:e5:f0:77:2f:15:d2:e3:3c:90:45:32:1f:f1:78:
                    c6:85:1a:d6:f5:94:c0:e5:27:b8:95:fd:51:0b:c4:b7:
                    21:38:e9:f6:5a:e2:97:46:75:1a:c9:82:01:77:b4:f5:
                    96:b4:78:fb:76:15:bc:51:13:23:ae:26:cd:e1:0a:18:
                    c0:bf:6d:2d:cc:06:85:1e:ea:d1:60:8d:6a:bc:48:19:
                    04:0f:6d:6d:1f:26:4c:18:8f:05:c2:ab:c4:63:28:93:
                    36:8a:1c:67:84:b8:12:ff:a7:5f:f1:a2:8f:f9:90:97:
                    02:ad:ba:7f:13:2f:6a:3f:c3:44:10:37:bf:12:28:27:
                    c8:77:9c:68:86:51:5e:c2:27:d7:bc:09:13:2b:f4:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:ab:9c:7a:b6:cf:f5:5b:9a:94:30:b9:22:57:89:bd:
        6a:96:f4:78:39:eb:75:8d:14:00:d5:8e:a2:e4:d3:54:
        fe:f9:10:85:14:c8:d1:10:a6:19:2a:15:e5:2f:1c:7e:
        ea:88:f5:2b:6b:07:3f:cd:9e:a2:8e:fa:7c:82:51:71:
        4f:ec:62:68:62:5d:42:5c:58:e5:da:da:75:b9:cc:0a:
        9a:81:96:e3:c2:a7:0c:37:f6:ac:96:ca:f1:7a:3e:a1:
        de:fa:2d:bc:eb:21:c1:33:3f:32:a3:48:01:23:ca:67:
        d7:6a:0f:6f:d9:b7:bb:42:ce:92:b1:9e:7d:f0:6d:80:
        e4:1c:a0:15:fa:95:23:9c:3d:75:18:a9:9c:03:74:5b:
        5d:97:38:08:2a:42:80:d9:aa:5a:13:5c:e7:37:21:5e:
        46:e5:3a:bc:3e:fd:58:39:51:76:9a:4c:16:9a:c4:d3:
        81:fe:8f:3d:4d:92:4e:05:40:01:6b:3c:f2:4a:df:46:
        b7:04:36:ee:d0:43:1e:33:64:a4:ca:ed:bb:d4:ae:50:
        4e:33:36:0b:65:af:ca:7c:93:1d:cf:93:be:b7:18:36:
        65:1f:67:52:2f:06:7e:67:d1:f5:97:dd:8f:f8:b2:88:
        8d:96:1a:12:0b:09:dd:c0:04:de:35:b5:c5:41:6a:19
    Fingerprint (SHA-256):
        4C:C9:D9:DC:0E:EB:54:1F:74:87:F5:55:EF:85:65:7B:8C:EB:1C:1F:19:4A:3D:57:0B:76:AA:90:26:44:DC:90
    Fingerprint (SHA1):
        85:B6:30:16:6E:6A:AC:B6:57:8D:E8:12:8A:02:EB:BC:CD:67:0C:A7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6076: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6077: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154949 (0x1dee46c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:53 2017
            Not After : Mon May 02 15:49:53 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:75:fc:b5:3f:70:19:17:69:a4:c0:75:7c:c3:37:f1:
                    d8:59:70:cb:bc:da:10:f3:a7:48:4d:1e:22:6c:40:25:
                    4e:41:88:28:cf:e1:45:f5:07:50:4c:3c:01:45:78:35:
                    eb:57:09:f3:bb:b9:89:7d:49:65:3d:67:c8:ed:06:f9:
                    11:5c:36:6c:f3:2f:df:e1:0b:06:54:d8:eb:dd:6b:98:
                    d0:4a:3d:e7:3c:e5:76:a7:b6:55:00:eb:19:1a:27:d1:
                    96:37:af:a3:de:13:86:90:bc:c1:09:7c:7b:4f:44:fb:
                    1d:8f:1e:ce:c9:e3:e0:2c:95:72:af:55:1c:33:09:25:
                    a6:37:fa:63:7d:ce:91:fe:b4:d2:8c:7c:e2:0f:da:78:
                    ee:68:45:82:c7:41:00:b7:ea:60:5c:7b:c1:20:91:a5:
                    a3:c9:88:91:24:44:a8:3c:7e:be:ab:f0:d3:4d:89:6a:
                    3c:f4:14:df:50:75:7a:56:53:22:60:f3:a3:9b:04:85:
                    c6:69:de:58:18:f0:2d:a6:e4:b5:c9:5c:90:2e:23:46:
                    f4:59:19:e9:e7:1f:81:43:54:6f:eb:ec:81:de:fc:7b:
                    45:86:32:3e:61:28:7d:cc:45:f1:16:08:6d:20:d3:f8:
                    8c:fb:3c:7f:c2:1b:75:1e:f9:c5:2c:4c:d2:e9:19:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:3e:df:e9:0b:8b:5c:60:de:dd:d9:01:68:ed:b0:1c:
        16:cb:c9:3e:5f:0f:6d:75:b8:cc:c4:e8:c6:e6:2b:23:
        f9:96:a3:24:b4:69:e2:0c:87:5e:ca:3b:d3:52:16:72:
        c3:5b:e7:47:24:dc:bc:c5:84:74:dd:88:d8:29:5a:04:
        a5:e3:90:92:21:df:2d:61:3a:8f:17:07:a9:21:fe:fc:
        fc:6d:5e:9f:40:a9:43:d8:9a:5d:c4:11:03:61:de:2f:
        d8:a2:fd:8e:50:01:06:0d:3b:0b:15:9a:da:93:da:1b:
        62:88:72:a0:f5:e6:4e:a4:f3:9c:36:ee:d1:16:4a:ec:
        9d:cc:73:06:c0:d9:d8:81:cd:68:1d:c5:00:b9:06:09:
        8d:4b:51:83:53:7d:fa:d0:81:10:a6:79:cc:c7:21:2d:
        d4:93:3e:db:93:5f:1e:cf:74:ba:2c:49:ae:23:cb:5f:
        21:f4:e0:7c:ef:c6:b4:40:19:3b:4a:77:7a:f7:9b:57:
        dc:6a:19:3e:84:fd:b2:86:da:03:42:df:77:35:2a:75:
        9f:b9:16:b7:e6:72:ea:0a:e0:da:25:c8:41:e5:cc:aa:
        5c:01:3e:c7:ec:f3:7f:7d:25:6e:cb:df:4f:d1:3c:3c:
        1b:1d:28:a3:b8:5d:f3:79:26:6a:42:16:6d:39:9b:82
    Fingerprint (SHA-256):
        C7:27:AE:56:D5:F1:10:E8:DB:DD:66:6A:70:EE:49:31:B6:EC:C8:45:E5:58:58:DF:5E:64:45:CF:76:09:7A:EF
    Fingerprint (SHA1):
        15:E5:27:30:71:38:A5:ED:78:7D:B7:19:C6:1B:5F:33:A3:19:AF:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6078: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6079: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154950 (0x1dee46c6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:49:53 2017
            Not After : Mon May 02 15:49:53 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:d5:c3:4f:10:40:11:60:3d:7b:ad:b4:bc:42:ca:23:
                    a5:b6:50:38:83:6f:fc:f2:b8:ff:78:35:4c:d1:dc:29:
                    9d:ac:3b:42:36:96:8a:7b:3b:ec:34:2b:56:a5:05:38:
                    69:5c:92:09:a5:d4:80:f8:82:da:d5:76:11:1d:57:be:
                    24:34:28:b7:ec:b6:e0:05:c5:87:c2:43:3f:f5:5c:02:
                    ef:e1:62:06:8f:32:57:ff:2a:f3:82:a5:17:40:d9:1e:
                    2d:86:bd:ec:08:54:e4:9e:d1:92:1e:08:9f:fe:75:cb:
                    e4:78:70:d8:fc:4a:d2:3d:9a:74:1c:05:89:28:81:e3:
                    e6:20:26:fc:18:87:ba:e0:1b:33:2a:d7:3a:b2:8d:5a:
                    e7:4b:e3:fd:28:95:b1:b3:d3:9e:5f:db:09:87:ca:1e:
                    e4:34:34:10:75:23:67:9a:25:80:6a:ea:d8:db:f4:46:
                    84:91:39:6e:a1:73:ac:e7:2f:37:ec:f2:48:ef:a8:38:
                    cf:7b:71:c8:26:80:cb:e0:48:ec:4f:a0:eb:18:ea:80:
                    b0:4d:cb:c1:a9:19:23:79:b5:d6:74:7c:00:1c:84:6b:
                    63:8d:70:97:ca:10:47:0a:2b:f5:a7:2b:43:1a:19:92:
                    14:01:e9:c6:3f:72:7e:ea:a8:2b:2e:69:81:5a:86:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:39:90:be:30:3e:01:05:b4:eb:2a:5c:90:6c:32:00:
        ef:88:09:ea:91:7c:02:1f:e1:48:4c:d1:34:4c:7d:12:
        a5:19:04:3d:66:a5:5e:3c:49:49:e7:4d:97:60:3c:48:
        7a:92:14:79:77:fe:de:e1:26:cb:2f:c8:b3:75:fe:ea:
        25:7e:47:2d:8a:57:61:c2:9b:e3:0b:aa:37:9a:83:b2:
        25:04:8e:c2:85:f1:7e:16:06:bd:2d:01:3e:84:20:cf:
        37:c1:dd:20:35:76:c9:f7:a3:03:93:6e:8c:2d:ff:3b:
        cf:24:6d:fe:72:cd:b2:1f:cd:8c:71:0a:6e:64:02:53:
        44:5f:9f:69:aa:4d:b3:25:7c:5e:c4:01:14:4b:c4:d9:
        e2:02:54:39:81:5c:fd:f6:1c:e6:c2:9a:b3:50:12:f9:
        9d:e8:89:d5:10:fb:c0:50:99:9c:07:2d:f8:e5:f2:7e:
        20:a7:5b:62:2a:00:3d:29:14:d4:4c:5d:80:91:0b:78:
        8a:00:99:27:5d:75:f4:13:4a:7c:4c:da:87:f6:c9:1a:
        76:ea:ae:a2:56:7f:8b:d9:0c:ea:10:e4:be:e1:3c:56:
        d9:4a:a0:c6:24:b5:f7:ec:17:9c:a7:01:a3:79:9c:f4:
        ed:ac:c9:06:cc:cc:da:f0:10:0d:41:ae:01:a2:fc:64
    Fingerprint (SHA-256):
        31:6B:56:05:1E:EB:6F:C5:1A:65:A1:56:3F:97:C2:36:52:A5:88:B1:01:62:6E:A9:04:95:F9:83:B6:05:D4:AA
    Fingerprint (SHA1):
        D6:FD:A8:27:EC:22:6C:EC:47:0B:89:BC:27:BB:BF:36:F8:73:3C:5E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6080: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6081: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6082: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6083: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6084: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154948 (0x1dee46c4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:52 2017
            Not After : Mon May 02 15:49:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    92:f4:41:4b:9e:8c:d1:3e:e2:f8:5b:7d:1b:4f:3a:fc:
                    e7:de:24:41:60:6b:d2:fb:a6:bf:40:7d:36:17:57:a1:
                    af:b7:d7:2d:40:43:bf:61:96:94:09:e3:57:49:bd:4c:
                    14:be:33:2d:0f:97:82:86:3b:5d:ca:20:c9:07:cd:e0:
                    0d:7b:99:c5:67:0f:d1:36:d5:80:42:bd:bc:36:99:cf:
                    2a:1f:0c:01:81:08:7e:84:6f:5a:2c:dd:f2:fb:ec:b1:
                    2c:ec:5c:2c:c2:db:6e:5a:11:52:16:41:67:22:68:a5:
                    78:94:e5:f0:77:2f:15:d2:e3:3c:90:45:32:1f:f1:78:
                    c6:85:1a:d6:f5:94:c0:e5:27:b8:95:fd:51:0b:c4:b7:
                    21:38:e9:f6:5a:e2:97:46:75:1a:c9:82:01:77:b4:f5:
                    96:b4:78:fb:76:15:bc:51:13:23:ae:26:cd:e1:0a:18:
                    c0:bf:6d:2d:cc:06:85:1e:ea:d1:60:8d:6a:bc:48:19:
                    04:0f:6d:6d:1f:26:4c:18:8f:05:c2:ab:c4:63:28:93:
                    36:8a:1c:67:84:b8:12:ff:a7:5f:f1:a2:8f:f9:90:97:
                    02:ad:ba:7f:13:2f:6a:3f:c3:44:10:37:bf:12:28:27:
                    c8:77:9c:68:86:51:5e:c2:27:d7:bc:09:13:2b:f4:69
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        79:ab:9c:7a:b6:cf:f5:5b:9a:94:30:b9:22:57:89:bd:
        6a:96:f4:78:39:eb:75:8d:14:00:d5:8e:a2:e4:d3:54:
        fe:f9:10:85:14:c8:d1:10:a6:19:2a:15:e5:2f:1c:7e:
        ea:88:f5:2b:6b:07:3f:cd:9e:a2:8e:fa:7c:82:51:71:
        4f:ec:62:68:62:5d:42:5c:58:e5:da:da:75:b9:cc:0a:
        9a:81:96:e3:c2:a7:0c:37:f6:ac:96:ca:f1:7a:3e:a1:
        de:fa:2d:bc:eb:21:c1:33:3f:32:a3:48:01:23:ca:67:
        d7:6a:0f:6f:d9:b7:bb:42:ce:92:b1:9e:7d:f0:6d:80:
        e4:1c:a0:15:fa:95:23:9c:3d:75:18:a9:9c:03:74:5b:
        5d:97:38:08:2a:42:80:d9:aa:5a:13:5c:e7:37:21:5e:
        46:e5:3a:bc:3e:fd:58:39:51:76:9a:4c:16:9a:c4:d3:
        81:fe:8f:3d:4d:92:4e:05:40:01:6b:3c:f2:4a:df:46:
        b7:04:36:ee:d0:43:1e:33:64:a4:ca:ed:bb:d4:ae:50:
        4e:33:36:0b:65:af:ca:7c:93:1d:cf:93:be:b7:18:36:
        65:1f:67:52:2f:06:7e:67:d1:f5:97:dd:8f:f8:b2:88:
        8d:96:1a:12:0b:09:dd:c0:04:de:35:b5:c5:41:6a:19
    Fingerprint (SHA-256):
        4C:C9:D9:DC:0E:EB:54:1F:74:87:F5:55:EF:85:65:7B:8C:EB:1C:1F:19:4A:3D:57:0B:76:AA:90:26:44:DC:90
    Fingerprint (SHA1):
        85:B6:30:16:6E:6A:AC:B6:57:8D:E8:12:8A:02:EB:BC:CD:67:0C:A7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6085: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6086: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154949 (0x1dee46c5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:53 2017
            Not After : Mon May 02 15:49:53 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:75:fc:b5:3f:70:19:17:69:a4:c0:75:7c:c3:37:f1:
                    d8:59:70:cb:bc:da:10:f3:a7:48:4d:1e:22:6c:40:25:
                    4e:41:88:28:cf:e1:45:f5:07:50:4c:3c:01:45:78:35:
                    eb:57:09:f3:bb:b9:89:7d:49:65:3d:67:c8:ed:06:f9:
                    11:5c:36:6c:f3:2f:df:e1:0b:06:54:d8:eb:dd:6b:98:
                    d0:4a:3d:e7:3c:e5:76:a7:b6:55:00:eb:19:1a:27:d1:
                    96:37:af:a3:de:13:86:90:bc:c1:09:7c:7b:4f:44:fb:
                    1d:8f:1e:ce:c9:e3:e0:2c:95:72:af:55:1c:33:09:25:
                    a6:37:fa:63:7d:ce:91:fe:b4:d2:8c:7c:e2:0f:da:78:
                    ee:68:45:82:c7:41:00:b7:ea:60:5c:7b:c1:20:91:a5:
                    a3:c9:88:91:24:44:a8:3c:7e:be:ab:f0:d3:4d:89:6a:
                    3c:f4:14:df:50:75:7a:56:53:22:60:f3:a3:9b:04:85:
                    c6:69:de:58:18:f0:2d:a6:e4:b5:c9:5c:90:2e:23:46:
                    f4:59:19:e9:e7:1f:81:43:54:6f:eb:ec:81:de:fc:7b:
                    45:86:32:3e:61:28:7d:cc:45:f1:16:08:6d:20:d3:f8:
                    8c:fb:3c:7f:c2:1b:75:1e:f9:c5:2c:4c:d2:e9:19:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1e:3e:df:e9:0b:8b:5c:60:de:dd:d9:01:68:ed:b0:1c:
        16:cb:c9:3e:5f:0f:6d:75:b8:cc:c4:e8:c6:e6:2b:23:
        f9:96:a3:24:b4:69:e2:0c:87:5e:ca:3b:d3:52:16:72:
        c3:5b:e7:47:24:dc:bc:c5:84:74:dd:88:d8:29:5a:04:
        a5:e3:90:92:21:df:2d:61:3a:8f:17:07:a9:21:fe:fc:
        fc:6d:5e:9f:40:a9:43:d8:9a:5d:c4:11:03:61:de:2f:
        d8:a2:fd:8e:50:01:06:0d:3b:0b:15:9a:da:93:da:1b:
        62:88:72:a0:f5:e6:4e:a4:f3:9c:36:ee:d1:16:4a:ec:
        9d:cc:73:06:c0:d9:d8:81:cd:68:1d:c5:00:b9:06:09:
        8d:4b:51:83:53:7d:fa:d0:81:10:a6:79:cc:c7:21:2d:
        d4:93:3e:db:93:5f:1e:cf:74:ba:2c:49:ae:23:cb:5f:
        21:f4:e0:7c:ef:c6:b4:40:19:3b:4a:77:7a:f7:9b:57:
        dc:6a:19:3e:84:fd:b2:86:da:03:42:df:77:35:2a:75:
        9f:b9:16:b7:e6:72:ea:0a:e0:da:25:c8:41:e5:cc:aa:
        5c:01:3e:c7:ec:f3:7f:7d:25:6e:cb:df:4f:d1:3c:3c:
        1b:1d:28:a3:b8:5d:f3:79:26:6a:42:16:6d:39:9b:82
    Fingerprint (SHA-256):
        C7:27:AE:56:D5:F1:10:E8:DB:DD:66:6A:70:EE:49:31:B6:EC:C8:45:E5:58:58:DF:5E:64:45:CF:76:09:7A:EF
    Fingerprint (SHA1):
        15:E5:27:30:71:38:A5:ED:78:7D:B7:19:C6:1B:5F:33:A3:19:AF:AB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6087: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6088: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154950 (0x1dee46c6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:49:53 2017
            Not After : Mon May 02 15:49:53 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:d5:c3:4f:10:40:11:60:3d:7b:ad:b4:bc:42:ca:23:
                    a5:b6:50:38:83:6f:fc:f2:b8:ff:78:35:4c:d1:dc:29:
                    9d:ac:3b:42:36:96:8a:7b:3b:ec:34:2b:56:a5:05:38:
                    69:5c:92:09:a5:d4:80:f8:82:da:d5:76:11:1d:57:be:
                    24:34:28:b7:ec:b6:e0:05:c5:87:c2:43:3f:f5:5c:02:
                    ef:e1:62:06:8f:32:57:ff:2a:f3:82:a5:17:40:d9:1e:
                    2d:86:bd:ec:08:54:e4:9e:d1:92:1e:08:9f:fe:75:cb:
                    e4:78:70:d8:fc:4a:d2:3d:9a:74:1c:05:89:28:81:e3:
                    e6:20:26:fc:18:87:ba:e0:1b:33:2a:d7:3a:b2:8d:5a:
                    e7:4b:e3:fd:28:95:b1:b3:d3:9e:5f:db:09:87:ca:1e:
                    e4:34:34:10:75:23:67:9a:25:80:6a:ea:d8:db:f4:46:
                    84:91:39:6e:a1:73:ac:e7:2f:37:ec:f2:48:ef:a8:38:
                    cf:7b:71:c8:26:80:cb:e0:48:ec:4f:a0:eb:18:ea:80:
                    b0:4d:cb:c1:a9:19:23:79:b5:d6:74:7c:00:1c:84:6b:
                    63:8d:70:97:ca:10:47:0a:2b:f5:a7:2b:43:1a:19:92:
                    14:01:e9:c6:3f:72:7e:ea:a8:2b:2e:69:81:5a:86:13
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:39:90:be:30:3e:01:05:b4:eb:2a:5c:90:6c:32:00:
        ef:88:09:ea:91:7c:02:1f:e1:48:4c:d1:34:4c:7d:12:
        a5:19:04:3d:66:a5:5e:3c:49:49:e7:4d:97:60:3c:48:
        7a:92:14:79:77:fe:de:e1:26:cb:2f:c8:b3:75:fe:ea:
        25:7e:47:2d:8a:57:61:c2:9b:e3:0b:aa:37:9a:83:b2:
        25:04:8e:c2:85:f1:7e:16:06:bd:2d:01:3e:84:20:cf:
        37:c1:dd:20:35:76:c9:f7:a3:03:93:6e:8c:2d:ff:3b:
        cf:24:6d:fe:72:cd:b2:1f:cd:8c:71:0a:6e:64:02:53:
        44:5f:9f:69:aa:4d:b3:25:7c:5e:c4:01:14:4b:c4:d9:
        e2:02:54:39:81:5c:fd:f6:1c:e6:c2:9a:b3:50:12:f9:
        9d:e8:89:d5:10:fb:c0:50:99:9c:07:2d:f8:e5:f2:7e:
        20:a7:5b:62:2a:00:3d:29:14:d4:4c:5d:80:91:0b:78:
        8a:00:99:27:5d:75:f4:13:4a:7c:4c:da:87:f6:c9:1a:
        76:ea:ae:a2:56:7f:8b:d9:0c:ea:10:e4:be:e1:3c:56:
        d9:4a:a0:c6:24:b5:f7:ec:17:9c:a7:01:a3:79:9c:f4:
        ed:ac:c9:06:cc:cc:da:f0:10:0d:41:ae:01:a2:fc:64
    Fingerprint (SHA-256):
        31:6B:56:05:1E:EB:6F:C5:1A:65:A1:56:3F:97:C2:36:52:A5:88:B1:01:62:6E:A9:04:95:F9:83:B6:05:D4:AA
    Fingerprint (SHA1):
        D6:FD:A8:27:EC:22:6C:EC:47:0B:89:BC:27:BB:BF:36:F8:73:3C:5E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6089: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6090: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6091: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154952 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6092: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6093: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6094: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6095: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502154953   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6096: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6097: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6098: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6099: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154954   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6100: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6101: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6102: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6103: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502154955   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6104: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6105: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6106: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6107: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502154956   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6108: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6109: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6110: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154952 (0x1dee46c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:57 2017
            Not After : Mon May 02 15:49:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:c2:12:3f:15:fd:5b:36:1d:1c:8b:62:02:3c:c5:70:
                    2c:e3:9a:12:af:c6:bc:e4:fc:7d:0e:9b:9c:98:30:a1:
                    76:8b:47:b9:3e:1f:94:d6:1e:a9:69:cf:c8:7d:73:42:
                    ab:4a:13:52:22:7f:28:b5:be:74:70:83:7d:46:51:50:
                    7f:82:fc:87:fd:e8:78:e2:4b:0f:58:66:b4:84:5e:2f:
                    9e:38:88:f3:e4:09:6f:b7:53:4b:94:2b:2a:f0:e9:8d:
                    b5:e8:d6:91:ce:32:6d:9d:27:43:a3:60:ce:2d:12:22:
                    97:21:09:e1:8d:eb:65:e1:e7:34:39:8c:ef:7d:b0:01:
                    84:05:66:ae:df:98:5a:0d:c4:ce:b8:a3:56:af:ab:c3:
                    32:58:1e:e9:68:7b:f3:5c:53:b9:2a:c2:d8:0e:9a:29:
                    1d:58:81:cf:06:7b:5f:33:be:f5:a1:91:e4:7b:d7:d2:
                    83:cf:15:37:6c:54:8e:fe:3a:47:95:26:7a:5f:7b:24:
                    4a:f4:a2:02:3e:ec:62:52:fc:db:e8:5c:82:70:c6:e1:
                    05:9f:34:8e:8a:33:ba:97:a2:c7:a5:e1:d2:c4:5b:b4:
                    a6:c8:4f:3c:27:3c:e3:ea:1f:0e:30:be:7d:83:c2:6a:
                    06:a2:ad:7e:10:fd:14:9f:75:45:f8:39:17:2c:d8:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:79:46:34:66:9d:d3:2d:e7:d7:16:34:42:89:e1:8b:
        74:8a:63:8c:37:6b:18:cc:bd:9b:45:db:90:0f:55:ac:
        ea:8e:36:61:06:23:71:8d:61:cf:e8:e8:e5:04:d5:3b:
        18:e3:e3:3e:7d:73:60:90:46:c9:19:32:76:71:38:fe:
        2c:13:f4:29:a6:9f:ac:bc:a9:84:91:cb:d7:fd:15:6d:
        f8:e8:f8:15:e9:e9:2e:1d:5f:38:92:c2:d0:11:5f:df:
        b9:94:db:57:06:cf:07:83:af:09:8d:35:fe:45:e6:86:
        f7:45:67:77:35:1c:ca:55:8e:99:a5:19:f6:e6:27:96:
        ad:9f:8c:ae:29:73:22:c2:6c:d6:2c:ee:81:85:19:54:
        2d:ae:d2:a1:3a:d8:2e:f3:82:f1:3e:f2:2a:9f:15:d5:
        cc:10:0c:50:8c:26:b4:98:8a:73:02:0c:a0:08:f0:45:
        1e:97:1a:e0:d0:63:57:7b:b0:24:88:4f:46:20:74:58:
        ff:54:5a:83:74:cf:42:bc:f3:90:69:c4:b2:3f:f1:12:
        db:4b:1a:80:84:8f:91:97:41:8e:08:7f:cd:b7:b0:bf:
        5f:08:00:18:19:c4:3f:05:89:56:5c:54:c9:9c:9f:c8:
        2a:7a:dc:64:38:f3:d6:e8:ed:01:20:76:eb:8b:69:25
    Fingerprint (SHA-256):
        29:E4:22:D8:AE:DC:0B:47:57:07:B7:88:23:ED:79:CE:7D:D9:A8:54:56:C8:4B:05:62:2E:D4:77:44:DC:24:F2
    Fingerprint (SHA1):
        06:44:95:87:B1:70:60:2B:BE:34:DD:00:3D:50:2E:3A:A6:14:51:BD
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6111: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6112: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154953 (0x1dee46c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:58 2017
            Not After : Mon May 02 15:49:58 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:ca:f9:48:3e:55:73:21:78:b9:fd:8b:a5:32:ff:d0:
                    96:e4:a4:7c:ea:75:58:54:ab:83:b4:8b:fe:39:58:99:
                    68:51:1d:c1:de:1c:24:77:3d:95:57:a0:76:a8:ea:72:
                    7e:c5:36:b2:63:f6:30:36:b3:ec:da:3a:5b:50:65:3b:
                    f0:80:8e:26:02:39:13:20:e6:a3:ef:71:42:9d:e3:b8:
                    8b:57:3c:3e:ac:9c:41:02:dd:48:46:70:96:8f:f9:ad:
                    bf:e5:05:cc:29:7f:a0:e3:3c:e5:7e:dd:97:fb:38:bd:
                    9e:be:01:79:3f:b8:ec:77:1a:e4:61:21:2d:38:a2:be:
                    2f:de:52:a9:1d:15:0b:72:bd:89:8c:c1:8b:6d:0d:c4:
                    62:fd:e6:b5:5c:72:1d:de:3d:a1:dc:ed:43:e5:5d:55:
                    0c:e3:ee:34:8a:22:c0:d5:4e:97:97:17:20:77:ac:12:
                    2c:86:08:c8:54:2f:0f:85:a5:c2:6f:55:91:a2:d8:a8:
                    dd:c7:73:95:f9:ed:81:42:58:8b:22:12:67:69:5b:94:
                    06:47:11:93:82:7f:35:d5:50:5b:4d:9a:e3:91:62:d6:
                    f0:99:8b:6c:4c:68:d0:2b:e4:ed:04:9d:36:6a:3e:8a:
                    9f:35:02:33:64:20:78:c9:52:e7:ad:bb:85:35:c4:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:03:68:6b:c0:0f:0d:5c:42:f1:1a:13:85:d1:5e:fe:
        10:2c:e6:26:cd:bd:af:97:46:cf:ff:ef:4d:10:d2:0a:
        a4:8c:6d:4d:24:42:db:14:88:19:e5:ce:b0:a2:0b:da:
        eb:e8:1a:98:2f:8e:ce:39:2b:10:5a:42:a3:76:43:f4:
        78:e4:d9:88:17:04:dc:9b:df:c8:7f:4f:b2:bb:f4:7c:
        72:60:e3:0a:c7:05:b8:69:2a:57:85:a9:0c:65:e6:5c:
        4e:0c:70:8e:ba:ae:1d:11:67:2d:83:46:f6:01:14:67:
        d4:78:d3:4d:6b:a7:b7:5d:6e:fa:01:f2:b2:83:dc:f4:
        6b:b8:ae:ce:42:ac:d0:2a:ff:27:b3:15:1e:74:5c:e7:
        cc:2d:d5:4e:81:f6:21:3e:a0:1b:fc:dc:58:44:81:32:
        53:a4:60:46:d6:87:fd:8f:a6:82:2e:82:74:64:4a:18:
        f6:a3:ee:ac:6d:5c:8e:4b:aa:61:c8:0b:fd:8d:f9:0c:
        8c:af:8f:cb:76:35:20:36:38:b5:56:f8:48:c3:7a:8b:
        3d:b7:b0:25:a1:d7:41:41:ce:25:e7:13:4b:0a:b3:2b:
        0e:81:15:76:f6:e8:14:9d:54:eb:ff:12:bb:81:19:86:
        da:6a:70:f5:bc:19:49:d7:24:f7:5a:c3:d6:33:fe:86
    Fingerprint (SHA-256):
        BD:16:A9:F4:65:5C:F4:19:D7:61:23:29:9F:2E:94:48:EA:5C:17:26:F3:62:71:A9:16:FE:E0:61:48:F3:29:C5
    Fingerprint (SHA1):
        E1:C8:E2:6E:75:F6:83:CE:2A:A1:78:4E:09:51:30:4B:75:78:2B:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6113: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6114: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154954 (0x1dee46ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:49:58 2017
            Not After : Mon May 02 15:49:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:5b:6a:34:10:a9:59:11:bc:65:31:05:e5:b0:92:75:
                    b6:b0:a7:ef:d9:7e:43:1e:40:2f:bf:94:1c:82:39:d7:
                    d1:e2:a0:bd:03:0f:25:27:db:5c:f5:2d:06:5f:37:69:
                    bd:45:fb:df:c1:6e:97:1d:d6:c7:00:72:57:52:db:94:
                    3f:fe:c6:5a:d1:44:60:12:50:0b:cc:44:3e:56:a7:ef:
                    ae:03:c2:c9:4d:57:da:97:9a:6e:e9:13:27:32:c9:2f:
                    e7:d7:45:a7:5a:9e:c9:b5:af:02:ab:4e:60:10:20:c7:
                    a8:87:59:69:14:4a:7b:5f:94:77:7a:c8:9b:d0:48:d4:
                    fd:f3:f0:83:cb:ce:76:7b:0a:a9:2e:93:bf:d8:8c:04:
                    f7:b4:27:b8:78:18:c6:7b:a6:7c:65:9a:a2:36:39:0f:
                    05:ae:84:d3:6f:3d:41:ba:bd:dd:23:81:a9:2e:51:9e:
                    e3:8e:fa:84:59:92:dd:e7:8b:59:6a:7b:ae:8b:29:86:
                    29:df:e1:8a:84:a8:40:7e:82:bb:ef:23:38:05:a8:32:
                    f9:42:3e:1e:6a:93:fd:d4:1b:cf:69:6c:fb:c9:5d:a7:
                    60:a3:1b:95:34:fc:ad:99:11:63:2d:88:17:2e:b3:81:
                    02:73:50:16:ab:26:2d:71:10:87:93:87:2d:ad:93:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:d0:7f:cf:13:1e:3c:c1:17:af:9e:c6:3f:37:47:89:
        ef:78:38:99:77:16:91:71:c3:33:7e:44:56:ce:a0:7e:
        df:e5:0c:60:05:fb:b1:f0:f2:82:a5:bd:15:ad:4e:90:
        dd:6e:f9:23:88:01:7c:77:6e:6f:f3:b5:55:ed:f1:65:
        ea:02:dc:3b:77:ea:07:bf:4a:db:2f:30:c8:e7:a6:10:
        1a:71:81:46:f5:3d:6d:23:4c:54:e8:3f:74:28:26:16:
        b1:a6:d4:c1:d6:cc:be:c6:bb:4c:07:f0:b0:04:c2:50:
        64:26:4c:da:0b:52:9a:75:72:8e:86:4d:22:f9:72:7f:
        4b:2f:4a:59:31:a8:22:a6:3e:5b:d7:f8:1a:de:80:87:
        d0:0d:c5:1d:c7:d8:05:86:6f:d5:79:3b:0e:86:f9:dd:
        56:be:b8:11:e7:01:7f:c3:86:8b:45:48:68:07:e3:65:
        0e:4e:67:7f:22:15:e3:d8:75:cb:db:ef:bc:35:a1:4f:
        e9:5e:97:d7:d0:90:d2:3b:6c:49:32:f1:26:df:b6:da:
        a3:ea:fc:ea:98:de:b9:1a:ae:26:81:99:f6:2c:cc:16:
        67:43:72:02:82:e1:5f:aa:eb:7f:8d:27:b0:fa:53:9a:
        52:e4:ea:75:78:f9:9f:dd:e1:32:fc:b2:33:bb:a1:7f
    Fingerprint (SHA-256):
        4B:82:80:89:BE:D5:C0:68:49:5A:7E:CB:0D:BD:1E:2D:93:AD:A3:E1:B5:21:60:79:6A:A3:AE:09:A6:8F:D5:7A
    Fingerprint (SHA1):
        54:61:D9:30:B3:94:AF:B9:92:2D:FD:64:1A:10:41:EF:CD:3D:41:D7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6115: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6116: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6117: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6118: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6119: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154952 (0x1dee46c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:57 2017
            Not After : Mon May 02 15:49:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:c2:12:3f:15:fd:5b:36:1d:1c:8b:62:02:3c:c5:70:
                    2c:e3:9a:12:af:c6:bc:e4:fc:7d:0e:9b:9c:98:30:a1:
                    76:8b:47:b9:3e:1f:94:d6:1e:a9:69:cf:c8:7d:73:42:
                    ab:4a:13:52:22:7f:28:b5:be:74:70:83:7d:46:51:50:
                    7f:82:fc:87:fd:e8:78:e2:4b:0f:58:66:b4:84:5e:2f:
                    9e:38:88:f3:e4:09:6f:b7:53:4b:94:2b:2a:f0:e9:8d:
                    b5:e8:d6:91:ce:32:6d:9d:27:43:a3:60:ce:2d:12:22:
                    97:21:09:e1:8d:eb:65:e1:e7:34:39:8c:ef:7d:b0:01:
                    84:05:66:ae:df:98:5a:0d:c4:ce:b8:a3:56:af:ab:c3:
                    32:58:1e:e9:68:7b:f3:5c:53:b9:2a:c2:d8:0e:9a:29:
                    1d:58:81:cf:06:7b:5f:33:be:f5:a1:91:e4:7b:d7:d2:
                    83:cf:15:37:6c:54:8e:fe:3a:47:95:26:7a:5f:7b:24:
                    4a:f4:a2:02:3e:ec:62:52:fc:db:e8:5c:82:70:c6:e1:
                    05:9f:34:8e:8a:33:ba:97:a2:c7:a5:e1:d2:c4:5b:b4:
                    a6:c8:4f:3c:27:3c:e3:ea:1f:0e:30:be:7d:83:c2:6a:
                    06:a2:ad:7e:10:fd:14:9f:75:45:f8:39:17:2c:d8:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:79:46:34:66:9d:d3:2d:e7:d7:16:34:42:89:e1:8b:
        74:8a:63:8c:37:6b:18:cc:bd:9b:45:db:90:0f:55:ac:
        ea:8e:36:61:06:23:71:8d:61:cf:e8:e8:e5:04:d5:3b:
        18:e3:e3:3e:7d:73:60:90:46:c9:19:32:76:71:38:fe:
        2c:13:f4:29:a6:9f:ac:bc:a9:84:91:cb:d7:fd:15:6d:
        f8:e8:f8:15:e9:e9:2e:1d:5f:38:92:c2:d0:11:5f:df:
        b9:94:db:57:06:cf:07:83:af:09:8d:35:fe:45:e6:86:
        f7:45:67:77:35:1c:ca:55:8e:99:a5:19:f6:e6:27:96:
        ad:9f:8c:ae:29:73:22:c2:6c:d6:2c:ee:81:85:19:54:
        2d:ae:d2:a1:3a:d8:2e:f3:82:f1:3e:f2:2a:9f:15:d5:
        cc:10:0c:50:8c:26:b4:98:8a:73:02:0c:a0:08:f0:45:
        1e:97:1a:e0:d0:63:57:7b:b0:24:88:4f:46:20:74:58:
        ff:54:5a:83:74:cf:42:bc:f3:90:69:c4:b2:3f:f1:12:
        db:4b:1a:80:84:8f:91:97:41:8e:08:7f:cd:b7:b0:bf:
        5f:08:00:18:19:c4:3f:05:89:56:5c:54:c9:9c:9f:c8:
        2a:7a:dc:64:38:f3:d6:e8:ed:01:20:76:eb:8b:69:25
    Fingerprint (SHA-256):
        29:E4:22:D8:AE:DC:0B:47:57:07:B7:88:23:ED:79:CE:7D:D9:A8:54:56:C8:4B:05:62:2E:D4:77:44:DC:24:F2
    Fingerprint (SHA1):
        06:44:95:87:B1:70:60:2B:BE:34:DD:00:3D:50:2E:3A:A6:14:51:BD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6120: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6121: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154953 (0x1dee46c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:58 2017
            Not After : Mon May 02 15:49:58 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:ca:f9:48:3e:55:73:21:78:b9:fd:8b:a5:32:ff:d0:
                    96:e4:a4:7c:ea:75:58:54:ab:83:b4:8b:fe:39:58:99:
                    68:51:1d:c1:de:1c:24:77:3d:95:57:a0:76:a8:ea:72:
                    7e:c5:36:b2:63:f6:30:36:b3:ec:da:3a:5b:50:65:3b:
                    f0:80:8e:26:02:39:13:20:e6:a3:ef:71:42:9d:e3:b8:
                    8b:57:3c:3e:ac:9c:41:02:dd:48:46:70:96:8f:f9:ad:
                    bf:e5:05:cc:29:7f:a0:e3:3c:e5:7e:dd:97:fb:38:bd:
                    9e:be:01:79:3f:b8:ec:77:1a:e4:61:21:2d:38:a2:be:
                    2f:de:52:a9:1d:15:0b:72:bd:89:8c:c1:8b:6d:0d:c4:
                    62:fd:e6:b5:5c:72:1d:de:3d:a1:dc:ed:43:e5:5d:55:
                    0c:e3:ee:34:8a:22:c0:d5:4e:97:97:17:20:77:ac:12:
                    2c:86:08:c8:54:2f:0f:85:a5:c2:6f:55:91:a2:d8:a8:
                    dd:c7:73:95:f9:ed:81:42:58:8b:22:12:67:69:5b:94:
                    06:47:11:93:82:7f:35:d5:50:5b:4d:9a:e3:91:62:d6:
                    f0:99:8b:6c:4c:68:d0:2b:e4:ed:04:9d:36:6a:3e:8a:
                    9f:35:02:33:64:20:78:c9:52:e7:ad:bb:85:35:c4:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:03:68:6b:c0:0f:0d:5c:42:f1:1a:13:85:d1:5e:fe:
        10:2c:e6:26:cd:bd:af:97:46:cf:ff:ef:4d:10:d2:0a:
        a4:8c:6d:4d:24:42:db:14:88:19:e5:ce:b0:a2:0b:da:
        eb:e8:1a:98:2f:8e:ce:39:2b:10:5a:42:a3:76:43:f4:
        78:e4:d9:88:17:04:dc:9b:df:c8:7f:4f:b2:bb:f4:7c:
        72:60:e3:0a:c7:05:b8:69:2a:57:85:a9:0c:65:e6:5c:
        4e:0c:70:8e:ba:ae:1d:11:67:2d:83:46:f6:01:14:67:
        d4:78:d3:4d:6b:a7:b7:5d:6e:fa:01:f2:b2:83:dc:f4:
        6b:b8:ae:ce:42:ac:d0:2a:ff:27:b3:15:1e:74:5c:e7:
        cc:2d:d5:4e:81:f6:21:3e:a0:1b:fc:dc:58:44:81:32:
        53:a4:60:46:d6:87:fd:8f:a6:82:2e:82:74:64:4a:18:
        f6:a3:ee:ac:6d:5c:8e:4b:aa:61:c8:0b:fd:8d:f9:0c:
        8c:af:8f:cb:76:35:20:36:38:b5:56:f8:48:c3:7a:8b:
        3d:b7:b0:25:a1:d7:41:41:ce:25:e7:13:4b:0a:b3:2b:
        0e:81:15:76:f6:e8:14:9d:54:eb:ff:12:bb:81:19:86:
        da:6a:70:f5:bc:19:49:d7:24:f7:5a:c3:d6:33:fe:86
    Fingerprint (SHA-256):
        BD:16:A9:F4:65:5C:F4:19:D7:61:23:29:9F:2E:94:48:EA:5C:17:26:F3:62:71:A9:16:FE:E0:61:48:F3:29:C5
    Fingerprint (SHA1):
        E1:C8:E2:6E:75:F6:83:CE:2A:A1:78:4E:09:51:30:4B:75:78:2B:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6122: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6123: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154954 (0x1dee46ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:49:58 2017
            Not After : Mon May 02 15:49:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:5b:6a:34:10:a9:59:11:bc:65:31:05:e5:b0:92:75:
                    b6:b0:a7:ef:d9:7e:43:1e:40:2f:bf:94:1c:82:39:d7:
                    d1:e2:a0:bd:03:0f:25:27:db:5c:f5:2d:06:5f:37:69:
                    bd:45:fb:df:c1:6e:97:1d:d6:c7:00:72:57:52:db:94:
                    3f:fe:c6:5a:d1:44:60:12:50:0b:cc:44:3e:56:a7:ef:
                    ae:03:c2:c9:4d:57:da:97:9a:6e:e9:13:27:32:c9:2f:
                    e7:d7:45:a7:5a:9e:c9:b5:af:02:ab:4e:60:10:20:c7:
                    a8:87:59:69:14:4a:7b:5f:94:77:7a:c8:9b:d0:48:d4:
                    fd:f3:f0:83:cb:ce:76:7b:0a:a9:2e:93:bf:d8:8c:04:
                    f7:b4:27:b8:78:18:c6:7b:a6:7c:65:9a:a2:36:39:0f:
                    05:ae:84:d3:6f:3d:41:ba:bd:dd:23:81:a9:2e:51:9e:
                    e3:8e:fa:84:59:92:dd:e7:8b:59:6a:7b:ae:8b:29:86:
                    29:df:e1:8a:84:a8:40:7e:82:bb:ef:23:38:05:a8:32:
                    f9:42:3e:1e:6a:93:fd:d4:1b:cf:69:6c:fb:c9:5d:a7:
                    60:a3:1b:95:34:fc:ad:99:11:63:2d:88:17:2e:b3:81:
                    02:73:50:16:ab:26:2d:71:10:87:93:87:2d:ad:93:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:d0:7f:cf:13:1e:3c:c1:17:af:9e:c6:3f:37:47:89:
        ef:78:38:99:77:16:91:71:c3:33:7e:44:56:ce:a0:7e:
        df:e5:0c:60:05:fb:b1:f0:f2:82:a5:bd:15:ad:4e:90:
        dd:6e:f9:23:88:01:7c:77:6e:6f:f3:b5:55:ed:f1:65:
        ea:02:dc:3b:77:ea:07:bf:4a:db:2f:30:c8:e7:a6:10:
        1a:71:81:46:f5:3d:6d:23:4c:54:e8:3f:74:28:26:16:
        b1:a6:d4:c1:d6:cc:be:c6:bb:4c:07:f0:b0:04:c2:50:
        64:26:4c:da:0b:52:9a:75:72:8e:86:4d:22:f9:72:7f:
        4b:2f:4a:59:31:a8:22:a6:3e:5b:d7:f8:1a:de:80:87:
        d0:0d:c5:1d:c7:d8:05:86:6f:d5:79:3b:0e:86:f9:dd:
        56:be:b8:11:e7:01:7f:c3:86:8b:45:48:68:07:e3:65:
        0e:4e:67:7f:22:15:e3:d8:75:cb:db:ef:bc:35:a1:4f:
        e9:5e:97:d7:d0:90:d2:3b:6c:49:32:f1:26:df:b6:da:
        a3:ea:fc:ea:98:de:b9:1a:ae:26:81:99:f6:2c:cc:16:
        67:43:72:02:82:e1:5f:aa:eb:7f:8d:27:b0:fa:53:9a:
        52:e4:ea:75:78:f9:9f:dd:e1:32:fc:b2:33:bb:a1:7f
    Fingerprint (SHA-256):
        4B:82:80:89:BE:D5:C0:68:49:5A:7E:CB:0D:BD:1E:2D:93:AD:A3:E1:B5:21:60:79:6A:A3:AE:09:A6:8F:D5:7A
    Fingerprint (SHA1):
        54:61:D9:30:B3:94:AF:B9:92:2D:FD:64:1A:10:41:EF:CD:3D:41:D7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6124: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6125: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154952 (0x1dee46c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:57 2017
            Not After : Mon May 02 15:49:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:c2:12:3f:15:fd:5b:36:1d:1c:8b:62:02:3c:c5:70:
                    2c:e3:9a:12:af:c6:bc:e4:fc:7d:0e:9b:9c:98:30:a1:
                    76:8b:47:b9:3e:1f:94:d6:1e:a9:69:cf:c8:7d:73:42:
                    ab:4a:13:52:22:7f:28:b5:be:74:70:83:7d:46:51:50:
                    7f:82:fc:87:fd:e8:78:e2:4b:0f:58:66:b4:84:5e:2f:
                    9e:38:88:f3:e4:09:6f:b7:53:4b:94:2b:2a:f0:e9:8d:
                    b5:e8:d6:91:ce:32:6d:9d:27:43:a3:60:ce:2d:12:22:
                    97:21:09:e1:8d:eb:65:e1:e7:34:39:8c:ef:7d:b0:01:
                    84:05:66:ae:df:98:5a:0d:c4:ce:b8:a3:56:af:ab:c3:
                    32:58:1e:e9:68:7b:f3:5c:53:b9:2a:c2:d8:0e:9a:29:
                    1d:58:81:cf:06:7b:5f:33:be:f5:a1:91:e4:7b:d7:d2:
                    83:cf:15:37:6c:54:8e:fe:3a:47:95:26:7a:5f:7b:24:
                    4a:f4:a2:02:3e:ec:62:52:fc:db:e8:5c:82:70:c6:e1:
                    05:9f:34:8e:8a:33:ba:97:a2:c7:a5:e1:d2:c4:5b:b4:
                    a6:c8:4f:3c:27:3c:e3:ea:1f:0e:30:be:7d:83:c2:6a:
                    06:a2:ad:7e:10:fd:14:9f:75:45:f8:39:17:2c:d8:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:79:46:34:66:9d:d3:2d:e7:d7:16:34:42:89:e1:8b:
        74:8a:63:8c:37:6b:18:cc:bd:9b:45:db:90:0f:55:ac:
        ea:8e:36:61:06:23:71:8d:61:cf:e8:e8:e5:04:d5:3b:
        18:e3:e3:3e:7d:73:60:90:46:c9:19:32:76:71:38:fe:
        2c:13:f4:29:a6:9f:ac:bc:a9:84:91:cb:d7:fd:15:6d:
        f8:e8:f8:15:e9:e9:2e:1d:5f:38:92:c2:d0:11:5f:df:
        b9:94:db:57:06:cf:07:83:af:09:8d:35:fe:45:e6:86:
        f7:45:67:77:35:1c:ca:55:8e:99:a5:19:f6:e6:27:96:
        ad:9f:8c:ae:29:73:22:c2:6c:d6:2c:ee:81:85:19:54:
        2d:ae:d2:a1:3a:d8:2e:f3:82:f1:3e:f2:2a:9f:15:d5:
        cc:10:0c:50:8c:26:b4:98:8a:73:02:0c:a0:08:f0:45:
        1e:97:1a:e0:d0:63:57:7b:b0:24:88:4f:46:20:74:58:
        ff:54:5a:83:74:cf:42:bc:f3:90:69:c4:b2:3f:f1:12:
        db:4b:1a:80:84:8f:91:97:41:8e:08:7f:cd:b7:b0:bf:
        5f:08:00:18:19:c4:3f:05:89:56:5c:54:c9:9c:9f:c8:
        2a:7a:dc:64:38:f3:d6:e8:ed:01:20:76:eb:8b:69:25
    Fingerprint (SHA-256):
        29:E4:22:D8:AE:DC:0B:47:57:07:B7:88:23:ED:79:CE:7D:D9:A8:54:56:C8:4B:05:62:2E:D4:77:44:DC:24:F2
    Fingerprint (SHA1):
        06:44:95:87:B1:70:60:2B:BE:34:DD:00:3D:50:2E:3A:A6:14:51:BD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6126: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154952 (0x1dee46c8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:57 2017
            Not After : Mon May 02 15:49:57 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:c2:12:3f:15:fd:5b:36:1d:1c:8b:62:02:3c:c5:70:
                    2c:e3:9a:12:af:c6:bc:e4:fc:7d:0e:9b:9c:98:30:a1:
                    76:8b:47:b9:3e:1f:94:d6:1e:a9:69:cf:c8:7d:73:42:
                    ab:4a:13:52:22:7f:28:b5:be:74:70:83:7d:46:51:50:
                    7f:82:fc:87:fd:e8:78:e2:4b:0f:58:66:b4:84:5e:2f:
                    9e:38:88:f3:e4:09:6f:b7:53:4b:94:2b:2a:f0:e9:8d:
                    b5:e8:d6:91:ce:32:6d:9d:27:43:a3:60:ce:2d:12:22:
                    97:21:09:e1:8d:eb:65:e1:e7:34:39:8c:ef:7d:b0:01:
                    84:05:66:ae:df:98:5a:0d:c4:ce:b8:a3:56:af:ab:c3:
                    32:58:1e:e9:68:7b:f3:5c:53:b9:2a:c2:d8:0e:9a:29:
                    1d:58:81:cf:06:7b:5f:33:be:f5:a1:91:e4:7b:d7:d2:
                    83:cf:15:37:6c:54:8e:fe:3a:47:95:26:7a:5f:7b:24:
                    4a:f4:a2:02:3e:ec:62:52:fc:db:e8:5c:82:70:c6:e1:
                    05:9f:34:8e:8a:33:ba:97:a2:c7:a5:e1:d2:c4:5b:b4:
                    a6:c8:4f:3c:27:3c:e3:ea:1f:0e:30:be:7d:83:c2:6a:
                    06:a2:ad:7e:10:fd:14:9f:75:45:f8:39:17:2c:d8:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c9:79:46:34:66:9d:d3:2d:e7:d7:16:34:42:89:e1:8b:
        74:8a:63:8c:37:6b:18:cc:bd:9b:45:db:90:0f:55:ac:
        ea:8e:36:61:06:23:71:8d:61:cf:e8:e8:e5:04:d5:3b:
        18:e3:e3:3e:7d:73:60:90:46:c9:19:32:76:71:38:fe:
        2c:13:f4:29:a6:9f:ac:bc:a9:84:91:cb:d7:fd:15:6d:
        f8:e8:f8:15:e9:e9:2e:1d:5f:38:92:c2:d0:11:5f:df:
        b9:94:db:57:06:cf:07:83:af:09:8d:35:fe:45:e6:86:
        f7:45:67:77:35:1c:ca:55:8e:99:a5:19:f6:e6:27:96:
        ad:9f:8c:ae:29:73:22:c2:6c:d6:2c:ee:81:85:19:54:
        2d:ae:d2:a1:3a:d8:2e:f3:82:f1:3e:f2:2a:9f:15:d5:
        cc:10:0c:50:8c:26:b4:98:8a:73:02:0c:a0:08:f0:45:
        1e:97:1a:e0:d0:63:57:7b:b0:24:88:4f:46:20:74:58:
        ff:54:5a:83:74:cf:42:bc:f3:90:69:c4:b2:3f:f1:12:
        db:4b:1a:80:84:8f:91:97:41:8e:08:7f:cd:b7:b0:bf:
        5f:08:00:18:19:c4:3f:05:89:56:5c:54:c9:9c:9f:c8:
        2a:7a:dc:64:38:f3:d6:e8:ed:01:20:76:eb:8b:69:25
    Fingerprint (SHA-256):
        29:E4:22:D8:AE:DC:0B:47:57:07:B7:88:23:ED:79:CE:7D:D9:A8:54:56:C8:4B:05:62:2E:D4:77:44:DC:24:F2
    Fingerprint (SHA1):
        06:44:95:87:B1:70:60:2B:BE:34:DD:00:3D:50:2E:3A:A6:14:51:BD
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6127: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154953 (0x1dee46c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:58 2017
            Not After : Mon May 02 15:49:58 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:ca:f9:48:3e:55:73:21:78:b9:fd:8b:a5:32:ff:d0:
                    96:e4:a4:7c:ea:75:58:54:ab:83:b4:8b:fe:39:58:99:
                    68:51:1d:c1:de:1c:24:77:3d:95:57:a0:76:a8:ea:72:
                    7e:c5:36:b2:63:f6:30:36:b3:ec:da:3a:5b:50:65:3b:
                    f0:80:8e:26:02:39:13:20:e6:a3:ef:71:42:9d:e3:b8:
                    8b:57:3c:3e:ac:9c:41:02:dd:48:46:70:96:8f:f9:ad:
                    bf:e5:05:cc:29:7f:a0:e3:3c:e5:7e:dd:97:fb:38:bd:
                    9e:be:01:79:3f:b8:ec:77:1a:e4:61:21:2d:38:a2:be:
                    2f:de:52:a9:1d:15:0b:72:bd:89:8c:c1:8b:6d:0d:c4:
                    62:fd:e6:b5:5c:72:1d:de:3d:a1:dc:ed:43:e5:5d:55:
                    0c:e3:ee:34:8a:22:c0:d5:4e:97:97:17:20:77:ac:12:
                    2c:86:08:c8:54:2f:0f:85:a5:c2:6f:55:91:a2:d8:a8:
                    dd:c7:73:95:f9:ed:81:42:58:8b:22:12:67:69:5b:94:
                    06:47:11:93:82:7f:35:d5:50:5b:4d:9a:e3:91:62:d6:
                    f0:99:8b:6c:4c:68:d0:2b:e4:ed:04:9d:36:6a:3e:8a:
                    9f:35:02:33:64:20:78:c9:52:e7:ad:bb:85:35:c4:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:03:68:6b:c0:0f:0d:5c:42:f1:1a:13:85:d1:5e:fe:
        10:2c:e6:26:cd:bd:af:97:46:cf:ff:ef:4d:10:d2:0a:
        a4:8c:6d:4d:24:42:db:14:88:19:e5:ce:b0:a2:0b:da:
        eb:e8:1a:98:2f:8e:ce:39:2b:10:5a:42:a3:76:43:f4:
        78:e4:d9:88:17:04:dc:9b:df:c8:7f:4f:b2:bb:f4:7c:
        72:60:e3:0a:c7:05:b8:69:2a:57:85:a9:0c:65:e6:5c:
        4e:0c:70:8e:ba:ae:1d:11:67:2d:83:46:f6:01:14:67:
        d4:78:d3:4d:6b:a7:b7:5d:6e:fa:01:f2:b2:83:dc:f4:
        6b:b8:ae:ce:42:ac:d0:2a:ff:27:b3:15:1e:74:5c:e7:
        cc:2d:d5:4e:81:f6:21:3e:a0:1b:fc:dc:58:44:81:32:
        53:a4:60:46:d6:87:fd:8f:a6:82:2e:82:74:64:4a:18:
        f6:a3:ee:ac:6d:5c:8e:4b:aa:61:c8:0b:fd:8d:f9:0c:
        8c:af:8f:cb:76:35:20:36:38:b5:56:f8:48:c3:7a:8b:
        3d:b7:b0:25:a1:d7:41:41:ce:25:e7:13:4b:0a:b3:2b:
        0e:81:15:76:f6:e8:14:9d:54:eb:ff:12:bb:81:19:86:
        da:6a:70:f5:bc:19:49:d7:24:f7:5a:c3:d6:33:fe:86
    Fingerprint (SHA-256):
        BD:16:A9:F4:65:5C:F4:19:D7:61:23:29:9F:2E:94:48:EA:5C:17:26:F3:62:71:A9:16:FE:E0:61:48:F3:29:C5
    Fingerprint (SHA1):
        E1:C8:E2:6E:75:F6:83:CE:2A:A1:78:4E:09:51:30:4B:75:78:2B:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6128: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154953 (0x1dee46c9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:49:58 2017
            Not After : Mon May 02 15:49:58 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:ca:f9:48:3e:55:73:21:78:b9:fd:8b:a5:32:ff:d0:
                    96:e4:a4:7c:ea:75:58:54:ab:83:b4:8b:fe:39:58:99:
                    68:51:1d:c1:de:1c:24:77:3d:95:57:a0:76:a8:ea:72:
                    7e:c5:36:b2:63:f6:30:36:b3:ec:da:3a:5b:50:65:3b:
                    f0:80:8e:26:02:39:13:20:e6:a3:ef:71:42:9d:e3:b8:
                    8b:57:3c:3e:ac:9c:41:02:dd:48:46:70:96:8f:f9:ad:
                    bf:e5:05:cc:29:7f:a0:e3:3c:e5:7e:dd:97:fb:38:bd:
                    9e:be:01:79:3f:b8:ec:77:1a:e4:61:21:2d:38:a2:be:
                    2f:de:52:a9:1d:15:0b:72:bd:89:8c:c1:8b:6d:0d:c4:
                    62:fd:e6:b5:5c:72:1d:de:3d:a1:dc:ed:43:e5:5d:55:
                    0c:e3:ee:34:8a:22:c0:d5:4e:97:97:17:20:77:ac:12:
                    2c:86:08:c8:54:2f:0f:85:a5:c2:6f:55:91:a2:d8:a8:
                    dd:c7:73:95:f9:ed:81:42:58:8b:22:12:67:69:5b:94:
                    06:47:11:93:82:7f:35:d5:50:5b:4d:9a:e3:91:62:d6:
                    f0:99:8b:6c:4c:68:d0:2b:e4:ed:04:9d:36:6a:3e:8a:
                    9f:35:02:33:64:20:78:c9:52:e7:ad:bb:85:35:c4:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        37:03:68:6b:c0:0f:0d:5c:42:f1:1a:13:85:d1:5e:fe:
        10:2c:e6:26:cd:bd:af:97:46:cf:ff:ef:4d:10:d2:0a:
        a4:8c:6d:4d:24:42:db:14:88:19:e5:ce:b0:a2:0b:da:
        eb:e8:1a:98:2f:8e:ce:39:2b:10:5a:42:a3:76:43:f4:
        78:e4:d9:88:17:04:dc:9b:df:c8:7f:4f:b2:bb:f4:7c:
        72:60:e3:0a:c7:05:b8:69:2a:57:85:a9:0c:65:e6:5c:
        4e:0c:70:8e:ba:ae:1d:11:67:2d:83:46:f6:01:14:67:
        d4:78:d3:4d:6b:a7:b7:5d:6e:fa:01:f2:b2:83:dc:f4:
        6b:b8:ae:ce:42:ac:d0:2a:ff:27:b3:15:1e:74:5c:e7:
        cc:2d:d5:4e:81:f6:21:3e:a0:1b:fc:dc:58:44:81:32:
        53:a4:60:46:d6:87:fd:8f:a6:82:2e:82:74:64:4a:18:
        f6:a3:ee:ac:6d:5c:8e:4b:aa:61:c8:0b:fd:8d:f9:0c:
        8c:af:8f:cb:76:35:20:36:38:b5:56:f8:48:c3:7a:8b:
        3d:b7:b0:25:a1:d7:41:41:ce:25:e7:13:4b:0a:b3:2b:
        0e:81:15:76:f6:e8:14:9d:54:eb:ff:12:bb:81:19:86:
        da:6a:70:f5:bc:19:49:d7:24:f7:5a:c3:d6:33:fe:86
    Fingerprint (SHA-256):
        BD:16:A9:F4:65:5C:F4:19:D7:61:23:29:9F:2E:94:48:EA:5C:17:26:F3:62:71:A9:16:FE:E0:61:48:F3:29:C5
    Fingerprint (SHA1):
        E1:C8:E2:6E:75:F6:83:CE:2A:A1:78:4E:09:51:30:4B:75:78:2B:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6129: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154954 (0x1dee46ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:49:58 2017
            Not After : Mon May 02 15:49:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:5b:6a:34:10:a9:59:11:bc:65:31:05:e5:b0:92:75:
                    b6:b0:a7:ef:d9:7e:43:1e:40:2f:bf:94:1c:82:39:d7:
                    d1:e2:a0:bd:03:0f:25:27:db:5c:f5:2d:06:5f:37:69:
                    bd:45:fb:df:c1:6e:97:1d:d6:c7:00:72:57:52:db:94:
                    3f:fe:c6:5a:d1:44:60:12:50:0b:cc:44:3e:56:a7:ef:
                    ae:03:c2:c9:4d:57:da:97:9a:6e:e9:13:27:32:c9:2f:
                    e7:d7:45:a7:5a:9e:c9:b5:af:02:ab:4e:60:10:20:c7:
                    a8:87:59:69:14:4a:7b:5f:94:77:7a:c8:9b:d0:48:d4:
                    fd:f3:f0:83:cb:ce:76:7b:0a:a9:2e:93:bf:d8:8c:04:
                    f7:b4:27:b8:78:18:c6:7b:a6:7c:65:9a:a2:36:39:0f:
                    05:ae:84:d3:6f:3d:41:ba:bd:dd:23:81:a9:2e:51:9e:
                    e3:8e:fa:84:59:92:dd:e7:8b:59:6a:7b:ae:8b:29:86:
                    29:df:e1:8a:84:a8:40:7e:82:bb:ef:23:38:05:a8:32:
                    f9:42:3e:1e:6a:93:fd:d4:1b:cf:69:6c:fb:c9:5d:a7:
                    60:a3:1b:95:34:fc:ad:99:11:63:2d:88:17:2e:b3:81:
                    02:73:50:16:ab:26:2d:71:10:87:93:87:2d:ad:93:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:d0:7f:cf:13:1e:3c:c1:17:af:9e:c6:3f:37:47:89:
        ef:78:38:99:77:16:91:71:c3:33:7e:44:56:ce:a0:7e:
        df:e5:0c:60:05:fb:b1:f0:f2:82:a5:bd:15:ad:4e:90:
        dd:6e:f9:23:88:01:7c:77:6e:6f:f3:b5:55:ed:f1:65:
        ea:02:dc:3b:77:ea:07:bf:4a:db:2f:30:c8:e7:a6:10:
        1a:71:81:46:f5:3d:6d:23:4c:54:e8:3f:74:28:26:16:
        b1:a6:d4:c1:d6:cc:be:c6:bb:4c:07:f0:b0:04:c2:50:
        64:26:4c:da:0b:52:9a:75:72:8e:86:4d:22:f9:72:7f:
        4b:2f:4a:59:31:a8:22:a6:3e:5b:d7:f8:1a:de:80:87:
        d0:0d:c5:1d:c7:d8:05:86:6f:d5:79:3b:0e:86:f9:dd:
        56:be:b8:11:e7:01:7f:c3:86:8b:45:48:68:07:e3:65:
        0e:4e:67:7f:22:15:e3:d8:75:cb:db:ef:bc:35:a1:4f:
        e9:5e:97:d7:d0:90:d2:3b:6c:49:32:f1:26:df:b6:da:
        a3:ea:fc:ea:98:de:b9:1a:ae:26:81:99:f6:2c:cc:16:
        67:43:72:02:82:e1:5f:aa:eb:7f:8d:27:b0:fa:53:9a:
        52:e4:ea:75:78:f9:9f:dd:e1:32:fc:b2:33:bb:a1:7f
    Fingerprint (SHA-256):
        4B:82:80:89:BE:D5:C0:68:49:5A:7E:CB:0D:BD:1E:2D:93:AD:A3:E1:B5:21:60:79:6A:A3:AE:09:A6:8F:D5:7A
    Fingerprint (SHA1):
        54:61:D9:30:B3:94:AF:B9:92:2D:FD:64:1A:10:41:EF:CD:3D:41:D7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6130: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154954 (0x1dee46ca)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:49:58 2017
            Not After : Mon May 02 15:49:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b6:5b:6a:34:10:a9:59:11:bc:65:31:05:e5:b0:92:75:
                    b6:b0:a7:ef:d9:7e:43:1e:40:2f:bf:94:1c:82:39:d7:
                    d1:e2:a0:bd:03:0f:25:27:db:5c:f5:2d:06:5f:37:69:
                    bd:45:fb:df:c1:6e:97:1d:d6:c7:00:72:57:52:db:94:
                    3f:fe:c6:5a:d1:44:60:12:50:0b:cc:44:3e:56:a7:ef:
                    ae:03:c2:c9:4d:57:da:97:9a:6e:e9:13:27:32:c9:2f:
                    e7:d7:45:a7:5a:9e:c9:b5:af:02:ab:4e:60:10:20:c7:
                    a8:87:59:69:14:4a:7b:5f:94:77:7a:c8:9b:d0:48:d4:
                    fd:f3:f0:83:cb:ce:76:7b:0a:a9:2e:93:bf:d8:8c:04:
                    f7:b4:27:b8:78:18:c6:7b:a6:7c:65:9a:a2:36:39:0f:
                    05:ae:84:d3:6f:3d:41:ba:bd:dd:23:81:a9:2e:51:9e:
                    e3:8e:fa:84:59:92:dd:e7:8b:59:6a:7b:ae:8b:29:86:
                    29:df:e1:8a:84:a8:40:7e:82:bb:ef:23:38:05:a8:32:
                    f9:42:3e:1e:6a:93:fd:d4:1b:cf:69:6c:fb:c9:5d:a7:
                    60:a3:1b:95:34:fc:ad:99:11:63:2d:88:17:2e:b3:81:
                    02:73:50:16:ab:26:2d:71:10:87:93:87:2d:ad:93:89
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:d0:7f:cf:13:1e:3c:c1:17:af:9e:c6:3f:37:47:89:
        ef:78:38:99:77:16:91:71:c3:33:7e:44:56:ce:a0:7e:
        df:e5:0c:60:05:fb:b1:f0:f2:82:a5:bd:15:ad:4e:90:
        dd:6e:f9:23:88:01:7c:77:6e:6f:f3:b5:55:ed:f1:65:
        ea:02:dc:3b:77:ea:07:bf:4a:db:2f:30:c8:e7:a6:10:
        1a:71:81:46:f5:3d:6d:23:4c:54:e8:3f:74:28:26:16:
        b1:a6:d4:c1:d6:cc:be:c6:bb:4c:07:f0:b0:04:c2:50:
        64:26:4c:da:0b:52:9a:75:72:8e:86:4d:22:f9:72:7f:
        4b:2f:4a:59:31:a8:22:a6:3e:5b:d7:f8:1a:de:80:87:
        d0:0d:c5:1d:c7:d8:05:86:6f:d5:79:3b:0e:86:f9:dd:
        56:be:b8:11:e7:01:7f:c3:86:8b:45:48:68:07:e3:65:
        0e:4e:67:7f:22:15:e3:d8:75:cb:db:ef:bc:35:a1:4f:
        e9:5e:97:d7:d0:90:d2:3b:6c:49:32:f1:26:df:b6:da:
        a3:ea:fc:ea:98:de:b9:1a:ae:26:81:99:f6:2c:cc:16:
        67:43:72:02:82:e1:5f:aa:eb:7f:8d:27:b0:fa:53:9a:
        52:e4:ea:75:78:f9:9f:dd:e1:32:fc:b2:33:bb:a1:7f
    Fingerprint (SHA-256):
        4B:82:80:89:BE:D5:C0:68:49:5A:7E:CB:0D:BD:1E:2D:93:AD:A3:E1:B5:21:60:79:6A:A3:AE:09:A6:8F:D5:7A
    Fingerprint (SHA1):
        54:61:D9:30:B3:94:AF:B9:92:2D:FD:64:1A:10:41:EF:CD:3D:41:D7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6131: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6132: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154957 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6133: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6134: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6135: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6136: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154958   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6137: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6138: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6139: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6140: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502154959   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6141: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6142: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6143: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6144: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502154960   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6145: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6146: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6147: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6148: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502154961   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6149: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6150: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6151: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6152: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502154962   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6153: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6154: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #6155: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6156: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502154963   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6157: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6158: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6159: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #6160: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #6161: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6162: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #6163: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154957 (0x1dee46cd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:02 2017
            Not After : Mon May 02 15:50:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:61:52:58:06:f9:cb:67:1a:54:c2:96:d7:51:fd:bb:
                    ed:23:3d:ca:bd:6d:54:ae:67:1e:ce:98:f1:44:39:ec:
                    93:66:f1:d3:6a:28:00:62:30:9b:21:91:16:b4:57:09:
                    ef:74:d4:a2:dc:f8:60:cf:b5:3b:28:c5:56:c4:d1:e8:
                    5e:c5:0b:52:7f:11:d1:5b:be:e1:84:93:59:e8:86:16:
                    ed:14:3b:8d:97:7c:a4:37:6d:3b:c9:2c:c4:62:f3:69:
                    ed:aa:2f:6b:23:80:27:d4:5f:59:d2:e7:27:23:3a:c3:
                    96:15:bd:0d:49:d0:66:a8:bf:a5:ab:1c:0a:64:33:1e:
                    63:ec:ba:0e:6e:e1:c6:86:9a:10:6e:c0:63:9b:05:bf:
                    0d:44:18:ca:87:59:31:8a:08:5c:cb:89:31:69:1c:80:
                    e9:53:d9:a4:20:fd:6c:ba:0f:47:13:5a:54:94:35:55:
                    be:37:4c:d5:0a:12:77:c3:67:43:6d:7f:79:e1:97:fa:
                    db:2c:ba:25:90:1e:5c:0a:37:24:d2:65:41:f6:d4:56:
                    c9:b2:32:d1:b1:a5:1c:08:da:37:20:cb:40:11:4a:5e:
                    74:f7:b8:05:34:23:a7:f2:a5:d8:ef:1b:72:8b:1c:60:
                    48:3a:df:ed:15:6f:19:d4:a4:3c:56:00:53:53:c1:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:fd:04:ff:30:63:17:6c:51:8a:39:38:ed:52:ea:38:
        93:84:06:43:b0:cd:35:58:9c:a6:e9:55:67:f8:3e:09:
        af:c3:36:b9:7a:16:79:91:e6:4d:09:ff:63:2d:37:d7:
        df:be:7b:1e:fb:32:1a:83:39:cd:70:0a:a1:ce:f8:1a:
        b9:fe:03:6e:2b:9e:35:03:61:94:d6:b8:18:f2:54:67:
        44:32:6c:46:8d:c2:57:4f:67:7c:b5:f8:da:e5:a6:43:
        c2:37:da:ff:28:c6:79:4c:c4:5f:44:ac:92:80:e1:a3:
        39:a7:48:f9:56:9f:2b:c5:14:84:5d:25:85:68:07:f9:
        b8:27:c7:61:93:10:14:b2:d7:88:46:ba:41:96:b8:97:
        97:9e:48:7d:37:3b:0d:5b:dc:65:c8:6d:ca:6f:6b:1f:
        fd:eb:01:f1:50:c0:03:67:72:25:85:9f:b0:2b:67:e3:
        2a:45:47:a7:29:5f:bd:91:ab:82:14:99:07:05:54:ad:
        99:42:3a:49:9b:a8:48:70:d1:93:e4:74:66:08:21:2b:
        8e:56:09:e7:c1:7e:e6:56:f5:6b:c4:10:f1:4c:bb:4c:
        aa:36:c8:d9:69:5e:d6:7c:98:2a:08:03:52:f4:c7:47:
        5d:91:88:ef:58:68:09:b7:b2:d9:76:b1:58:cc:b0:a8
    Fingerprint (SHA-256):
        51:E3:48:95:FD:EC:88:AB:1C:13:F3:0F:87:A7:F4:C1:8E:18:03:17:02:B2:C3:D3:8D:4E:DA:7D:2B:8F:CD:92
    Fingerprint (SHA1):
        9F:4C:EA:E5:D9:C7:AF:15:75:E0:76:83:14:A6:00:94:37:44:0D:AA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6164: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6165: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6166: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6167: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154957 (0x1dee46cd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:02 2017
            Not After : Mon May 02 15:50:02 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:61:52:58:06:f9:cb:67:1a:54:c2:96:d7:51:fd:bb:
                    ed:23:3d:ca:bd:6d:54:ae:67:1e:ce:98:f1:44:39:ec:
                    93:66:f1:d3:6a:28:00:62:30:9b:21:91:16:b4:57:09:
                    ef:74:d4:a2:dc:f8:60:cf:b5:3b:28:c5:56:c4:d1:e8:
                    5e:c5:0b:52:7f:11:d1:5b:be:e1:84:93:59:e8:86:16:
                    ed:14:3b:8d:97:7c:a4:37:6d:3b:c9:2c:c4:62:f3:69:
                    ed:aa:2f:6b:23:80:27:d4:5f:59:d2:e7:27:23:3a:c3:
                    96:15:bd:0d:49:d0:66:a8:bf:a5:ab:1c:0a:64:33:1e:
                    63:ec:ba:0e:6e:e1:c6:86:9a:10:6e:c0:63:9b:05:bf:
                    0d:44:18:ca:87:59:31:8a:08:5c:cb:89:31:69:1c:80:
                    e9:53:d9:a4:20:fd:6c:ba:0f:47:13:5a:54:94:35:55:
                    be:37:4c:d5:0a:12:77:c3:67:43:6d:7f:79:e1:97:fa:
                    db:2c:ba:25:90:1e:5c:0a:37:24:d2:65:41:f6:d4:56:
                    c9:b2:32:d1:b1:a5:1c:08:da:37:20:cb:40:11:4a:5e:
                    74:f7:b8:05:34:23:a7:f2:a5:d8:ef:1b:72:8b:1c:60:
                    48:3a:df:ed:15:6f:19:d4:a4:3c:56:00:53:53:c1:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:fd:04:ff:30:63:17:6c:51:8a:39:38:ed:52:ea:38:
        93:84:06:43:b0:cd:35:58:9c:a6:e9:55:67:f8:3e:09:
        af:c3:36:b9:7a:16:79:91:e6:4d:09:ff:63:2d:37:d7:
        df:be:7b:1e:fb:32:1a:83:39:cd:70:0a:a1:ce:f8:1a:
        b9:fe:03:6e:2b:9e:35:03:61:94:d6:b8:18:f2:54:67:
        44:32:6c:46:8d:c2:57:4f:67:7c:b5:f8:da:e5:a6:43:
        c2:37:da:ff:28:c6:79:4c:c4:5f:44:ac:92:80:e1:a3:
        39:a7:48:f9:56:9f:2b:c5:14:84:5d:25:85:68:07:f9:
        b8:27:c7:61:93:10:14:b2:d7:88:46:ba:41:96:b8:97:
        97:9e:48:7d:37:3b:0d:5b:dc:65:c8:6d:ca:6f:6b:1f:
        fd:eb:01:f1:50:c0:03:67:72:25:85:9f:b0:2b:67:e3:
        2a:45:47:a7:29:5f:bd:91:ab:82:14:99:07:05:54:ad:
        99:42:3a:49:9b:a8:48:70:d1:93:e4:74:66:08:21:2b:
        8e:56:09:e7:c1:7e:e6:56:f5:6b:c4:10:f1:4c:bb:4c:
        aa:36:c8:d9:69:5e:d6:7c:98:2a:08:03:52:f4:c7:47:
        5d:91:88:ef:58:68:09:b7:b2:d9:76:b1:58:cc:b0:a8
    Fingerprint (SHA-256):
        51:E3:48:95:FD:EC:88:AB:1C:13:F3:0F:87:A7:F4:C1:8E:18:03:17:02:B2:C3:D3:8D:4E:DA:7D:2B:8F:CD:92
    Fingerprint (SHA1):
        9F:4C:EA:E5:D9:C7:AF:15:75:E0:76:83:14:A6:00:94:37:44:0D:AA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6168: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6169: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6170: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154964 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6171: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6172: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6173: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6174: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502154965   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6175: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6176: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #6177: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6178: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502154966   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6179: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6180: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #6181: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6182: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502154967   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6183: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6184: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6185: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6186: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502154968   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6187: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6188: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #6189: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6190: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502154969   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6191: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6192: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #6193: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6194: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502154970   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6195: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6196: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6197: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6198: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502154971   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6199: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6200: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #6201: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6202: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502154972   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6203: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6204: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #6205: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6206: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502154973   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6207: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6208: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #6209: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6210: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502154974   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6211: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6212: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #6213: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6214: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502154975   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6215: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6216: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #6217: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6218: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502154976   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6219: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6220: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #6221: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6222: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502154977   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6223: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6224: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #6225: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6226: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502154978   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6227: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6228: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #6229: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6230: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502154979   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6231: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6232: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #6233: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6234: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502154980   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6235: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6236: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #6237: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6238: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502154981   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6239: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6240: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #6241: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6242: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502154982   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6243: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6244: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #6245: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6246: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502154983   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6247: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6248: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #6249: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6250: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502154984   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6251: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6252: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #6253: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6254: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502154985   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6255: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6256: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #6257: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6258: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502154986   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6259: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6260: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #6261: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6262: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502154987   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6263: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6264: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #6265: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6266: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502154988   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6267: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6268: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #6269: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6270: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502154989   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6271: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6272: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #6273: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6274: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502154990   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6275: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6276: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #6277: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6278: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502154991   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6279: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6280: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #6281: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6282: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502154992   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6283: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6284: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #6285: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6286: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502154993   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6287: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6288: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6289: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6290: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6291: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6292: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6293: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6294: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6295: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6296: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6297: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6298: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6299: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6300: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6301: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6302: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6303: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6304: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6305: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6306: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6307: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6308: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6309: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6310: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6311: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154964 (0x1dee46d4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:50:08 2017
            Not After : Mon May 02 15:50:08 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:8c:61:cf:5e:d0:6c:4d:ff:9c:d9:ea:56:0d:45:e8:
                    99:38:9f:da:ff:3f:73:24:3d:a1:44:f5:24:06:3e:ec:
                    9a:8e:83:aa:24:85:c0:79:cb:df:7f:a8:0c:fc:78:81:
                    77:57:b6:fa:7b:df:fb:e2:82:3c:88:55:49:26:66:f7:
                    d1:88:66:bf:a5:24:80:6b:a2:c4:c5:fa:ef:80:17:f2:
                    44:4c:3d:26:e7:44:7b:b0:fa:75:92:a8:b0:87:ab:ce:
                    ef:9b:58:1d:6b:4d:bd:3c:32:ba:ca:8c:3d:a4:b8:88:
                    b5:74:ae:d3:4d:7c:11:a0:b4:90:3b:29:10:63:e5:2e:
                    43:bd:08:34:71:4f:6b:b9:49:a3:04:28:45:6c:28:b6:
                    3e:f6:aa:d0:78:d0:b9:ef:34:3d:9b:e8:c6:ec:2e:61:
                    e6:61:22:bd:62:86:e7:e3:6a:cf:16:6b:41:6a:88:42:
                    6c:81:0e:73:20:53:ff:c5:5a:fc:2e:17:73:5a:44:7c:
                    44:8a:38:c3:ea:9f:59:2a:dc:79:e0:84:f0:ae:bb:2e:
                    0e:75:18:05:db:90:a5:11:21:e7:d9:20:9f:55:d0:04:
                    a6:b5:a2:a7:27:be:48:2e:6b:86:fd:26:74:6f:95:d1:
                    31:c7:7f:19:41:65:73:ee:46:15:f3:3b:5a:cb:2a:15
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        64:75:94:cf:ef:68:c1:b3:89:f5:0f:d8:3f:ad:03:ba:
        34:96:73:24:e9:51:ce:c5:51:e1:c7:0f:2d:fd:f4:60:
        e2:92:0b:97:5a:91:67:33:03:d8:8b:2f:d3:57:ab:b7:
        6e:af:11:53:df:fc:44:70:37:3c:24:8b:9a:da:28:31:
        2e:3d:c8:9f:e5:29:92:43:8a:3a:09:3c:a9:10:d5:ff:
        34:7a:c4:d2:be:9a:35:31:3c:59:0d:0e:7c:b1:69:76:
        82:14:6b:b8:aa:e2:21:d2:23:71:a8:d7:a1:b5:b8:7e:
        1e:af:a9:6b:16:0a:10:f9:ad:f8:59:47:cd:b3:b8:e6:
        61:2a:b6:71:de:a1:3b:8b:5d:f2:b3:4e:41:1a:43:fc:
        7a:56:95:5f:b0:8b:98:8a:75:ba:0c:7d:cf:a2:84:9f:
        40:8d:8f:ef:ba:22:28:e3:d9:22:2a:1e:e7:1d:b3:3a:
        31:79:09:2d:68:b3:14:a3:db:41:1b:7b:c7:4b:9e:30:
        64:29:1f:cd:97:ea:54:1e:44:fa:d7:bd:4c:21:87:e6:
        65:7e:b4:31:92:4f:7a:d8:58:03:0c:90:d1:f0:7f:8b:
        3d:ee:83:a8:22:de:52:34:52:20:f5:99:4a:76:2a:a6:
        c8:32:1c:ac:d6:a1:2d:41:5c:4b:5d:57:53:88:fe:3a
    Fingerprint (SHA-256):
        F0:1B:CC:F2:EC:C3:D9:9B:4C:17:C6:D6:20:3D:F8:FC:A5:39:BE:4E:FD:2D:F0:E8:3D:79:14:63:9B:56:78:88
    Fingerprint (SHA1):
        00:5D:C6:B1:68:CB:63:FA:8A:12:C2:D2:A8:4F:15:72:8A:41:35:4A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #6312: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6313: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6314: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502154994 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6315: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6316: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #6317: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6318: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502154995   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6319: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6320: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #6321: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6322: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502154996   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6323: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6324: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #6325: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6326: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502154997   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6327: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6328: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #6329: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6330: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502154998   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6331: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6332: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #6333: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6334: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502154999   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6335: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6336: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #6337: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6338: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502155000   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6339: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6340: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6341: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154994 (0x1dee46f2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:50:33 2017
            Not After : Mon May 02 15:50:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:cd:52:94:57:c8:f9:57:1a:55:b9:74:ef:18:dc:d6:
                    f5:41:14:75:85:9f:d5:ba:ca:80:82:43:2a:5e:5b:57:
                    60:d0:7b:c6:00:0f:59:9e:f9:d7:be:25:8f:12:ec:9f:
                    41:08:6f:25:e0:a4:19:10:82:81:ff:f3:67:40:f0:9a:
                    d6:c8:21:eb:61:96:29:9e:60:41:be:dc:69:a9:77:be:
                    b3:a9:9b:e3:9a:dd:81:46:c5:7a:0e:ee:89:40:e2:be:
                    62:39:12:54:92:b3:16:1e:01:02:0a:50:39:91:65:c0:
                    9f:3c:ab:18:27:a8:f6:38:b6:1c:63:15:7a:bc:77:ab:
                    79:b6:c5:07:0e:a1:7f:1c:f8:7c:ef:de:1c:e9:7a:4d:
                    5a:cb:8f:86:dd:81:50:b5:f8:08:b4:01:8c:97:2a:6b:
                    3f:d3:ae:b1:db:07:18:69:d1:70:24:6e:73:b3:3d:5b:
                    15:26:41:76:8d:ca:c2:72:ca:34:ab:b1:a7:65:44:84:
                    5c:72:01:89:46:1c:fc:7c:65:3b:ee:a2:ed:32:a3:dd:
                    29:57:ad:3e:ea:df:fd:43:49:f1:94:75:be:59:5b:a0:
                    a7:a5:4e:90:33:9f:a3:b2:5f:3a:af:4d:26:0d:f7:b4:
                    8c:4f:6d:c7:c1:9d:b6:e3:ba:1e:aa:fe:af:5d:0d:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:55:6f:bf:45:e3:3c:db:50:37:21:cf:7b:8f:27:15:
        89:15:2d:20:87:59:3e:ab:df:2d:5e:0a:78:96:9c:50:
        d5:a9:44:02:7e:83:84:a7:1d:37:5f:68:2b:28:0a:10:
        66:e8:af:90:36:c3:5b:4d:29:96:1e:46:4e:64:38:70:
        b3:6b:f2:cc:57:98:ea:60:66:04:79:5a:90:74:07:64:
        fc:b9:c4:43:13:1d:cb:89:e6:0b:e4:97:25:84:2e:2f:
        9f:30:0d:0a:41:65:ab:16:06:b1:36:7d:dd:0a:3c:92:
        ca:f5:18:6d:57:be:71:7c:63:cb:3d:23:cc:1c:07:34:
        a6:55:0c:bc:48:72:3c:32:0e:13:cf:d1:ef:11:4f:b7:
        eb:28:45:99:cc:73:9d:cc:f0:74:79:a1:51:5a:9b:fc:
        1e:81:46:75:16:dc:34:e0:97:70:91:e2:53:da:cd:3b:
        67:92:31:b4:75:e4:72:9c:27:da:8b:c1:19:0c:18:84:
        15:10:1d:0c:1e:cd:b4:d6:bb:6b:0f:89:c4:e2:50:a7:
        fb:b5:25:eb:6a:1a:4b:08:1d:20:b2:71:39:9a:30:39:
        79:fa:a1:4d:bd:54:df:2d:51:6b:51:92:19:57:d2:af:
        63:f6:18:f6:ef:28:8a:a2:8b:63:68:e7:ed:bb:8a:e4
    Fingerprint (SHA-256):
        94:95:76:FF:11:DC:A1:18:20:C3:0D:FF:BB:4B:13:92:D8:8D:F7:B9:FC:BE:FC:E6:21:45:5E:67:F2:7D:8A:D7
    Fingerprint (SHA1):
        3F:A3:D6:C3:BF:8D:6E:20:4E:AB:61:39:5C:10:EC:74:37:45:F1:94
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6342: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6343: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6344: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6345: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502154994 (0x1dee46f2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:50:33 2017
            Not After : Mon May 02 15:50:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b3:cd:52:94:57:c8:f9:57:1a:55:b9:74:ef:18:dc:d6:
                    f5:41:14:75:85:9f:d5:ba:ca:80:82:43:2a:5e:5b:57:
                    60:d0:7b:c6:00:0f:59:9e:f9:d7:be:25:8f:12:ec:9f:
                    41:08:6f:25:e0:a4:19:10:82:81:ff:f3:67:40:f0:9a:
                    d6:c8:21:eb:61:96:29:9e:60:41:be:dc:69:a9:77:be:
                    b3:a9:9b:e3:9a:dd:81:46:c5:7a:0e:ee:89:40:e2:be:
                    62:39:12:54:92:b3:16:1e:01:02:0a:50:39:91:65:c0:
                    9f:3c:ab:18:27:a8:f6:38:b6:1c:63:15:7a:bc:77:ab:
                    79:b6:c5:07:0e:a1:7f:1c:f8:7c:ef:de:1c:e9:7a:4d:
                    5a:cb:8f:86:dd:81:50:b5:f8:08:b4:01:8c:97:2a:6b:
                    3f:d3:ae:b1:db:07:18:69:d1:70:24:6e:73:b3:3d:5b:
                    15:26:41:76:8d:ca:c2:72:ca:34:ab:b1:a7:65:44:84:
                    5c:72:01:89:46:1c:fc:7c:65:3b:ee:a2:ed:32:a3:dd:
                    29:57:ad:3e:ea:df:fd:43:49:f1:94:75:be:59:5b:a0:
                    a7:a5:4e:90:33:9f:a3:b2:5f:3a:af:4d:26:0d:f7:b4:
                    8c:4f:6d:c7:c1:9d:b6:e3:ba:1e:aa:fe:af:5d:0d:b7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2d:55:6f:bf:45:e3:3c:db:50:37:21:cf:7b:8f:27:15:
        89:15:2d:20:87:59:3e:ab:df:2d:5e:0a:78:96:9c:50:
        d5:a9:44:02:7e:83:84:a7:1d:37:5f:68:2b:28:0a:10:
        66:e8:af:90:36:c3:5b:4d:29:96:1e:46:4e:64:38:70:
        b3:6b:f2:cc:57:98:ea:60:66:04:79:5a:90:74:07:64:
        fc:b9:c4:43:13:1d:cb:89:e6:0b:e4:97:25:84:2e:2f:
        9f:30:0d:0a:41:65:ab:16:06:b1:36:7d:dd:0a:3c:92:
        ca:f5:18:6d:57:be:71:7c:63:cb:3d:23:cc:1c:07:34:
        a6:55:0c:bc:48:72:3c:32:0e:13:cf:d1:ef:11:4f:b7:
        eb:28:45:99:cc:73:9d:cc:f0:74:79:a1:51:5a:9b:fc:
        1e:81:46:75:16:dc:34:e0:97:70:91:e2:53:da:cd:3b:
        67:92:31:b4:75:e4:72:9c:27:da:8b:c1:19:0c:18:84:
        15:10:1d:0c:1e:cd:b4:d6:bb:6b:0f:89:c4:e2:50:a7:
        fb:b5:25:eb:6a:1a:4b:08:1d:20:b2:71:39:9a:30:39:
        79:fa:a1:4d:bd:54:df:2d:51:6b:51:92:19:57:d2:af:
        63:f6:18:f6:ef:28:8a:a2:8b:63:68:e7:ed:bb:8a:e4
    Fingerprint (SHA-256):
        94:95:76:FF:11:DC:A1:18:20:C3:0D:FF:BB:4B:13:92:D8:8D:F7:B9:FC:BE:FC:E6:21:45:5E:67:F2:7D:8A:D7
    Fingerprint (SHA1):
        3F:A3:D6:C3:BF:8D:6E:20:4E:AB:61:39:5C:10:EC:74:37:45:F1:94
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6346: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6347: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6348: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6349: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155001 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6350: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6351: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6352: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6353: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155002   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6354: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6355: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6356: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6357: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155003   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6358: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6359: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6360: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6361: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155004   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6362: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6363: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6364: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6365: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6366: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6367: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155001 (0x1dee46f9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:50:38 2017
            Not After : Mon May 02 15:50:38 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:74:3c:4b:04:c5:f9:a5:d8:c6:92:40:ee:85:3f:b7:
                    9a:6e:58:d4:c3:e7:98:f4:27:99:13:eb:3d:a2:8d:49:
                    c1:87:00:93:d2:ab:86:fd:01:9d:3f:c5:b3:8f:d0:7c:
                    c6:87:d0:11:8c:10:81:0d:4a:f2:e0:a5:e2:70:0f:93:
                    26:a5:06:9a:04:6e:05:56:ae:50:b4:78:43:91:d2:f0:
                    c3:6a:c5:ad:48:4c:93:36:bc:a8:87:90:3c:94:30:5e:
                    e0:50:85:6b:4c:e1:14:1b:3b:49:8f:b0:a8:1e:13:e7:
                    10:02:77:b0:07:e3:c2:d6:25:cd:1c:d7:fc:85:9c:51:
                    56:5e:4e:32:02:b9:59:7a:9f:25:b4:3e:06:f8:c3:4a:
                    a8:27:cc:29:60:ca:a1:8c:f5:f1:e3:4c:0f:41:e0:d7:
                    c4:db:ed:47:a2:3a:db:6e:47:e5:3d:f5:5b:40:8b:35:
                    c9:01:69:3a:6f:d8:bf:20:c3:42:0f:3a:05:94:8a:3f:
                    a6:6a:6c:4b:e7:46:bf:3a:7d:2d:af:a6:4f:29:17:f8:
                    e2:47:43:4b:4e:4e:8e:11:e6:57:91:7f:18:ee:35:a8:
                    f3:09:b3:49:15:3e:b5:c1:1a:e1:a6:23:61:d5:b8:9d:
                    5b:1a:93:04:7c:19:1f:96:af:b5:77:42:0a:d0:df:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a1:1f:10:57:1d:00:60:0e:48:dd:29:66:3b:e5:e3:01:
        d9:fd:8d:7f:d5:bc:48:e5:0d:8a:f7:da:ca:c2:6e:f6:
        22:79:0d:bb:a0:16:7e:03:8f:61:4d:4a:62:37:0f:09:
        c7:66:d9:99:68:01:64:36:2b:ae:3a:55:15:1e:c6:32:
        d1:af:a9:72:c5:b4:a7:9c:00:b0:db:18:ef:31:54:f9:
        aa:be:16:a5:7a:2c:05:af:1a:1e:15:04:fe:99:2a:94:
        ab:71:c2:64:a9:86:c1:d5:90:86:4a:20:19:79:57:f6:
        de:c9:ca:d1:02:72:90:65:a0:88:5d:09:35:1d:d9:2f:
        01:35:d0:b5:47:cb:c6:bf:21:5d:48:9a:f1:0c:35:0a:
        f6:a2:7d:8a:5f:d5:c2:23:b9:07:a2:c7:0a:18:36:93:
        c2:b4:dc:8a:6c:d0:69:0c:4b:ea:61:7b:6d:46:93:68:
        19:a2:af:88:64:b7:56:94:4c:95:f8:c0:7f:31:b5:87:
        63:30:b7:3c:a5:1e:ac:8c:07:36:51:13:94:13:93:4b:
        f3:42:7c:e2:f1:fe:44:fc:17:23:a9:56:1e:75:fd:d9:
        2d:48:4a:f2:8f:c3:08:e1:59:5b:5a:75:95:53:c0:9d:
        4f:89:81:ac:16:8e:52:7d:f5:79:91:e1:fb:1a:92:5d
    Fingerprint (SHA-256):
        86:2C:25:53:B0:96:96:14:4B:26:36:3F:D5:E4:D2:1C:37:FF:9C:2A:7D:F9:AB:96:48:6B:54:06:4A:63:4D:45
    Fingerprint (SHA1):
        23:69:C8:56:01:E7:01:45:D4:6A:D5:C8:D5:3C:19:D8:78:21:5D:D0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6368: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6369: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6370: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155002 (0x1dee46fa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:50:39 2017
            Not After : Mon May 02 15:50:39 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:5f:6a:6b:ec:32:c2:2a:a3:5c:ee:f5:f6:7a:3b:aa:
                    f7:07:b3:75:47:ee:d9:78:c7:97:a2:75:98:e6:29:fd:
                    c9:6b:73:c4:76:02:3a:59:75:b9:d6:3d:38:b2:84:fe:
                    44:7e:af:ff:16:d2:78:91:51:5a:29:0f:60:e0:62:16:
                    0c:4c:40:db:55:e1:a9:24:31:29:c7:58:c4:46:d7:51:
                    07:a2:ff:cd:81:6c:55:b7:2b:a3:98:5e:c5:f1:ed:8d:
                    42:13:87:06:c0:f6:a9:73:99:c2:0c:c5:d1:99:f4:2c:
                    f3:cb:6d:6f:36:11:1f:84:ec:43:79:75:b8:33:60:46:
                    00:ae:a0:5e:0e:bf:cd:51:f6:a8:5f:f2:50:a4:ed:b1:
                    f1:3e:47:5d:0c:58:25:a0:07:d6:4d:4a:af:b5:b1:9d:
                    cf:90:e4:bb:5e:bf:b9:9d:1c:ec:69:7f:74:08:75:85:
                    61:8b:50:56:0b:d7:63:1f:04:b4:20:3e:31:9b:be:14:
                    c8:0b:41:e7:d3:6c:aa:b5:df:40:cf:07:05:59:b1:17:
                    6f:2a:b4:fa:48:7a:a5:4c:77:66:13:2e:6f:4d:9d:ff:
                    be:6f:16:e6:a9:c3:d9:28:4b:2c:63:fd:d8:c3:4e:bc:
                    89:8b:c0:21:27:b7:2d:8f:8f:c5:08:b0:07:d0:ae:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:38:96:5f:b5:4e:41:93:03:9a:60:e6:2b:45:d3:1a:
        9d:fa:b5:16:4f:0d:f7:0d:9d:de:ee:53:6f:ad:be:4a:
        2f:b8:95:28:3b:84:19:52:dd:3b:d1:67:97:a2:36:a7:
        a0:58:ae:a8:e5:71:2e:de:3e:05:41:aa:0f:9e:67:c5:
        f0:20:50:9a:d6:92:64:e2:ab:a4:13:b3:a6:7f:68:09:
        18:dd:58:10:c8:7b:2f:d1:90:9f:a0:17:93:15:0b:4a:
        e9:0d:f6:94:51:89:73:01:e2:e8:df:ec:b2:52:fb:62:
        95:a4:d7:c1:81:b7:28:ad:0d:80:b5:f5:c5:41:e6:e4:
        1b:3c:8f:d0:4a:49:70:fa:29:1b:f5:a2:84:99:38:ff:
        d8:8f:da:d5:28:9a:dc:11:ab:11:c7:6c:e2:e7:22:84:
        cf:05:ed:aa:43:ec:72:4e:4e:42:2d:63:a7:bb:cf:de:
        5e:4f:f5:ea:61:3e:a7:72:ad:5e:03:e7:60:4f:62:94:
        eb:a4:79:a3:64:e7:1a:13:bd:65:f8:48:b3:c1:67:3f:
        55:a5:58:09:c9:8e:f8:9a:0b:45:ca:f4:90:b1:13:db:
        ff:0a:18:a0:1d:99:a5:95:98:83:37:1c:dd:f3:a7:4c:
        9d:ce:61:e3:24:94:c3:ae:d7:af:5a:ff:38:18:bd:37
    Fingerprint (SHA-256):
        88:7C:7D:49:24:36:78:19:D6:BE:D8:1D:74:4F:66:7A:FC:52:1A:E8:13:56:F8:4C:5F:BD:4B:CE:62:BE:B0:8E
    Fingerprint (SHA1):
        AD:F2:AD:C5:15:DC:00:EE:FB:7C:64:82:74:41:A7:E5:AD:2C:AD:B4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6371: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6372: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155003 (0x1dee46fb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:50:40 2017
            Not After : Mon May 02 15:50:40 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9e:2d:77:14:e5:23:ef:df:62:2f:5d:41:7b:53:c1:91:
                    17:f1:73:77:09:08:a1:bb:21:80:b5:18:c3:3f:03:39:
                    8f:2b:62:2c:c8:79:dd:21:77:cb:8e:9c:0a:c8:35:cd:
                    5c:4d:86:c2:03:87:dc:bd:e7:60:2e:b5:24:69:ca:a7:
                    40:8d:51:63:86:b6:99:1a:eb:8f:dc:a6:1a:23:1b:49:
                    03:95:8b:00:7c:f3:82:6b:21:56:8b:a0:bc:d0:f6:c0:
                    63:2c:72:b9:19:60:87:4c:47:45:0d:c8:8c:89:b3:14:
                    00:ff:70:6c:b6:e3:08:ae:26:ba:f0:ea:10:bd:33:58:
                    c5:08:ab:b4:ba:aa:34:35:56:47:f1:45:60:6e:91:b9:
                    81:40:00:0f:5a:17:0d:fe:0a:d9:fa:08:00:c9:8d:29:
                    38:02:f5:70:e6:90:8d:07:eb:0b:0a:d7:e1:e9:c9:27:
                    05:6e:4f:61:f6:c0:f0:e3:3b:bc:15:96:b6:dc:a4:93:
                    b5:9c:3d:69:67:cb:32:25:5f:30:95:dd:4a:e0:a7:fa:
                    2d:ac:32:de:f0:31:14:90:7c:f5:98:a9:83:87:64:3c:
                    4f:4c:1a:82:22:dd:85:bb:90:06:56:1c:e2:d3:dc:bf:
                    1b:9e:19:c5:3c:52:1b:19:36:26:61:6a:26:1f:c1:5b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:79:a7:b6:15:62:9e:02:d8:74:9b:c1:36:e4:4d:64:
        42:46:a6:a0:5d:02:4f:d0:a2:c4:0e:d8:05:ed:13:5c:
        71:4f:69:cc:e1:79:64:bf:ae:d7:8f:3d:c4:e1:17:6b:
        f6:f9:e2:12:b0:27:05:af:1c:b5:e5:38:79:0d:36:f0:
        b7:2b:05:96:47:41:92:7f:3a:d2:20:15:81:95:f6:22:
        c4:e3:a5:f2:09:24:0a:33:1a:a9:05:65:79:28:64:c8:
        e3:30:52:13:3c:b7:8a:da:6d:5e:b1:c4:64:d7:2b:c9:
        d3:08:1b:20:a7:f7:03:fb:e4:56:2b:78:d1:12:61:c7:
        d3:d1:c2:4a:9b:f2:7d:df:f6:4f:2f:ca:5a:ce:c4:d3:
        98:da:f0:ac:5e:df:c4:b5:7d:42:f6:e9:5b:d1:ff:e8:
        06:2e:ea:f1:b9:46:bb:9d:ee:b8:89:64:b9:6a:18:39:
        50:b7:a9:0d:c3:00:df:1c:07:7b:77:8f:a5:10:14:7a:
        bc:b5:0d:a2:9d:18:3d:88:89:59:db:6a:4a:b4:0f:f2:
        43:22:fb:96:76:1a:54:90:15:39:20:47:94:44:83:46:
        f8:fc:11:8b:ad:03:26:22:f8:cb:91:98:2f:0e:63:e9:
        55:3c:f8:d6:f3:a4:f7:36:14:b4:ed:7a:17:27:76:35
    Fingerprint (SHA-256):
        A3:7A:4D:A9:BD:67:33:D9:03:D7:BC:24:3A:A0:39:07:09:F1:95:97:95:85:7C:37:9F:7A:E4:5C:CA:D4:4B:7E
    Fingerprint (SHA1):
        AE:1A:E1:9D:72:19:8B:01:69:54:72:1D:89:82:5F:58:F3:39:C3:63
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6373: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6374: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155005 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6375: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6376: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6377: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6378: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155006   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6379: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6380: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6381: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6382: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155007   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6383: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6384: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6385: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6386: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502155008   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6387: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6388: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6389: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6390: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502155009   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6391: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6392: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6393: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6394: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6395: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6396: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #6397: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155005 (0x1dee46fd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:50:43 2017
            Not After : Mon May 02 15:50:43 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:ad:1d:78:87:e8:1a:ec:3d:1c:2c:b3:93:28:e8:e7:
                    3f:f9:6a:a1:4e:b9:26:5e:a0:b0:dc:be:e6:6b:40:53:
                    5f:9a:c1:ed:1f:84:0c:53:00:d6:54:2f:6c:5b:19:93:
                    6d:c8:77:3e:68:3c:73:96:48:df:47:47:7d:ce:16:15:
                    69:e2:d9:85:8f:94:33:7c:9a:4a:8c:f1:48:3f:bd:ab:
                    87:07:c0:5a:00:4c:69:89:8c:8c:6e:d7:39:a3:a7:db:
                    a1:9c:81:fa:aa:8c:a3:66:5d:8c:e9:f8:60:c9:4d:0a:
                    11:fb:69:c0:d9:c2:a0:95:38:50:39:2e:5f:91:11:f6:
                    4b:39:09:6b:14:f1:43:34:09:48:64:d9:af:eb:5d:7c:
                    04:22:8d:04:bf:b7:e9:ce:1f:0d:80:e4:1e:bf:ea:d4:
                    43:78:ad:47:a2:7d:94:fa:df:fe:f3:0d:33:4f:d9:6b:
                    f5:1c:12:b0:cf:a7:9b:a5:12:39:df:14:fc:9a:35:e5:
                    67:16:e5:52:76:0e:8b:45:3a:4d:41:37:35:f0:b7:da:
                    0f:ab:d3:57:ee:af:25:83:b8:2c:c8:29:9c:71:97:d5:
                    cb:28:3e:44:4f:c9:7a:91:1c:f2:7d:cb:16:a7:ed:13:
                    8d:25:7c:f9:70:dd:7e:63:73:b1:24:b6:7d:44:d8:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a8:3e:7e:3d:42:d4:9c:38:f4:7f:54:a4:96:5d:4a:d4:
        36:6d:d2:76:3e:83:3d:88:5b:6b:63:22:0b:c8:3d:89:
        94:ff:2b:36:97:0d:0f:b1:39:50:9e:4a:73:1f:ee:77:
        4c:73:3f:75:b6:20:ff:eb:10:0d:1b:f8:7a:51:97:38:
        3b:47:4d:49:b8:49:d0:a9:a8:b0:f0:16:10:f0:7a:d2:
        7c:b5:7a:eb:9c:a6:ca:d4:f3:00:db:cf:a7:5a:c5:30:
        85:f5:5c:60:3d:ca:fa:60:ab:ec:7f:73:f6:31:8a:39:
        8d:f9:3a:34:3a:15:22:04:0c:99:7f:9b:73:88:bf:78:
        3f:f7:c3:8b:7a:4b:38:92:bc:68:d6:1e:7f:6e:20:63:
        e7:0b:a2:00:97:b6:31:02:5d:57:35:fa:95:54:7f:2e:
        ce:66:71:69:ea:67:74:53:9d:90:c1:96:38:c4:46:43:
        b8:73:1a:78:db:4e:26:05:d2:30:d4:e1:63:ae:e9:28:
        08:40:85:32:ba:84:12:b8:65:5f:29:d0:64:8f:45:e1:
        66:3b:48:66:e1:87:ba:f6:ab:fa:9f:d7:48:ee:55:98:
        57:61:14:25:e6:68:e2:ef:0f:95:b2:e1:10:a3:d6:bd:
        18:d6:0f:e7:6e:db:6d:83:0a:e9:bb:34:2d:a5:94:26
    Fingerprint (SHA-256):
        B1:87:4A:D2:FB:F4:73:47:5F:11:25:C1:92:40:AA:1D:8D:3F:D9:4D:F1:53:66:EF:2C:A7:6E:E0:3D:70:D9:BA
    Fingerprint (SHA1):
        6B:1D:4A:53:80:B7:13:D2:22:97:AB:0F:66:B7:26:51:E8:31:63:37
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6398: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6399: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155006 (0x1dee46fe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:50:44 2017
            Not After : Mon May 02 15:50:44 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:b5:44:f0:72:f2:3c:1e:40:e2:05:93:cc:0f:ae:34:
                    3f:b5:f4:b1:2c:6f:de:cd:98:6c:4f:68:7a:b6:76:84:
                    f7:7d:9f:9a:8a:9e:d0:1a:ca:ea:ea:18:31:45:57:ac:
                    7e:62:b3:e9:95:d9:c1:35:57:61:0f:c8:e0:81:52:04:
                    67:20:b1:ef:68:52:3d:d5:55:71:5c:8c:b3:94:4c:cc:
                    8c:d0:4d:42:66:c5:1e:85:d0:59:02:cc:19:8f:c3:56:
                    87:a3:34:c7:5e:02:c3:59:d4:2f:7e:f5:d9:e5:7a:b3:
                    e7:06:35:1f:31:74:3c:21:4c:aa:4d:3b:63:78:44:75:
                    7c:88:31:d3:b6:62:53:1b:a0:cd:dd:41:26:e2:a1:39:
                    be:53:b0:75:6a:9f:a0:d3:79:87:dc:44:62:2a:32:d8:
                    1a:a5:23:10:24:3c:d3:d3:70:66:58:ce:c6:5f:e6:46:
                    a6:36:d1:05:2b:14:35:1a:48:f5:46:fa:46:a1:31:4d:
                    0b:44:3e:1c:be:74:b7:08:a1:54:1a:46:a0:e1:20:ca:
                    b4:e2:5c:7a:90:2c:4d:cd:b1:c9:f7:08:36:67:1f:55:
                    1a:61:8b:67:fa:c6:e8:c1:e7:9e:61:56:22:a6:7f:e9:
                    b5:f5:04:95:ed:13:7d:c9:e3:ed:48:75:95:05:8e:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        10:e9:8a:de:01:57:40:dd:72:d9:61:10:c9:18:e1:bc:
        94:0e:d3:44:74:bb:ba:f3:9b:8a:e2:bd:c1:45:eb:1d:
        cd:40:c0:6f:44:6a:48:de:27:8b:cd:9a:47:fe:d5:af:
        b7:83:99:4a:17:19:58:4b:be:b1:0d:ed:05:29:b6:3b:
        64:9c:4c:3b:38:7a:ef:58:3d:0b:a4:91:22:7e:fc:d7:
        b0:cf:b2:9e:c2:e7:1e:38:7b:6c:f0:8e:5b:e2:a7:c8:
        24:c6:ca:d2:88:35:4f:0b:75:df:bf:cb:53:e7:d9:fd:
        ca:cd:3c:a2:95:52:91:c5:54:c1:fc:c3:75:90:40:0c:
        40:d7:c1:c7:82:b9:2f:d8:c7:bf:e9:9f:b3:d5:40:73:
        bf:56:4d:46:ac:47:64:9b:9c:d5:22:2f:78:df:6d:a9:
        65:e8:5c:ef:1d:6c:1a:da:19:04:1f:c2:9c:be:64:e6:
        2e:47:32:c3:2f:8f:de:7d:8d:f9:86:f3:66:7a:ac:65:
        d6:d2:04:8e:d7:25:5a:2a:2f:8b:2a:e1:cd:9d:8e:58:
        7c:88:37:6b:3f:04:e6:4f:88:ab:2c:76:4b:d6:a3:51:
        00:3e:1d:87:52:3d:f8:ef:c9:1c:70:cc:8d:c4:5a:6c:
        32:ed:66:f7:49:41:2e:33:70:a2:cd:92:b8:8f:f0:5b
    Fingerprint (SHA-256):
        54:1B:10:45:EB:E1:AF:9E:A6:31:01:F8:E0:71:EC:A4:8C:9A:5B:EE:78:AD:C2:81:F3:9E:38:02:57:88:3D:51
    Fingerprint (SHA1):
        EA:A5:0A:6E:C6:14:4B:9F:63:FF:1B:0D:F0:88:C3:F6:2D:19:8C:68
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6400: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6401: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6402: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155007 (0x1dee46ff)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:50:44 2017
            Not After : Mon May 02 15:50:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:08:50:86:1b:82:dc:7a:fd:c9:a4:cd:15:65:8f:0b:
                    6c:72:d4:bf:27:8e:b3:75:de:06:25:fc:5d:19:4b:05:
                    c5:93:cf:7d:f1:af:e5:39:0c:5f:c0:74:d8:05:bf:dd:
                    2b:c5:bf:09:5c:fa:9f:5b:c1:f2:3a:03:97:61:d5:ae:
                    9d:18:f1:5b:60:1b:05:7e:d6:77:78:51:29:67:ff:98:
                    b4:db:08:6e:da:65:9f:1b:39:72:d1:f7:c9:7e:b2:27:
                    5c:85:0c:28:a0:3d:d8:ea:c8:41:9d:b3:05:74:42:10:
                    37:f1:ab:da:b6:8d:0e:1a:e1:f3:63:98:a7:26:63:f2:
                    fc:44:bf:03:f6:da:e4:f8:d5:06:2f:c7:df:66:bd:39:
                    2a:d8:a0:3b:5b:3b:90:73:10:32:3f:31:b6:69:df:70:
                    3e:20:05:b8:b4:3d:2d:44:1f:e4:45:c9:ab:18:b5:f5:
                    94:49:23:f7:e9:4f:c5:40:27:57:52:a4:36:72:79:14:
                    5f:9d:76:df:53:35:b6:a4:24:35:e4:e5:4c:8e:81:0e:
                    cb:91:e0:28:11:b8:2c:bd:3c:6a:60:06:0b:87:1c:cd:
                    14:8a:39:a1:4e:0c:3e:f9:25:10:cc:ec:52:89:a6:49:
                    b4:4a:db:82:3e:f7:70:f9:4c:1a:8a:de:de:78:07:f5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:a9:fa:0b:6e:a2:99:ca:23:29:d7:3f:c7:c5:13:66:
        ea:d6:90:15:0a:51:01:cd:52:ad:f1:b2:0b:f5:98:2e:
        6d:b9:b0:64:41:9a:3b:54:e4:aa:3e:95:2b:4e:8e:e5:
        0c:3d:6a:f0:ac:75:18:39:0b:e5:c7:c7:7f:96:3a:19:
        ba:20:c4:2e:ae:dc:81:86:d8:d1:4e:0b:05:5a:4d:c5:
        cd:59:8d:b6:d9:ff:01:2f:11:ce:ad:fe:f7:4d:50:11:
        ee:01:1e:0a:6c:67:43:8d:bc:10:9e:e9:7d:48:5a:53:
        b1:b1:c4:0c:03:aa:06:7b:3e:d8:23:e9:71:70:4a:49:
        a9:23:1f:c1:81:c9:e9:3d:8a:62:86:0d:be:64:62:8b:
        95:1f:0f:a1:e7:c5:44:dc:25:44:5b:61:5f:94:cb:52:
        3e:00:92:c9:33:a0:1d:b5:29:76:7d:18:d2:03:76:8b:
        75:93:f6:38:3d:33:1b:dd:0f:b4:c0:23:34:4a:97:16:
        f9:8e:15:29:45:26:da:82:0b:a0:52:9d:84:d3:fc:79:
        e5:f7:e5:6c:56:8a:f4:ed:26:cf:ee:ea:04:61:f7:5e:
        87:51:71:58:da:1f:29:8f:c3:4d:d6:42:17:82:2f:ea:
        01:45:69:50:88:27:47:02:fe:a8:ed:27:c0:24:ec:de
    Fingerprint (SHA-256):
        28:EF:DE:06:82:28:76:11:36:71:D7:4C:1A:A8:1B:04:C2:26:92:D9:D2:82:5A:49:B3:30:3E:CF:A8:9B:06:38
    Fingerprint (SHA1):
        57:56:10:B2:AA:D2:34:36:43:57:E6:F6:A4:14:BC:BE:E5:A9:4B:11
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #6403: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6404: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155010 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6405: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6406: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6407: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6408: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155011   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6409: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6410: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6411: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6412: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155012   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA1Root-502154919.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6413: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6414: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6415: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6416: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155013   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6417: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6418: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #6419: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155010 (0x1dee4702)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:50:47 2017
            Not After : Mon May 02 15:50:47 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e9:0a:cb:1f:b4:ae:8b:0b:12:42:02:07:88:26:de:14:
                    fc:9f:5d:3c:08:14:33:fe:5b:50:7c:30:55:b5:6c:2c:
                    e7:44:9b:fb:79:48:67:3e:55:60:db:b0:90:f0:4b:aa:
                    4a:20:33:ee:3d:76:9c:37:aa:3f:f9:a6:90:d5:94:41:
                    cf:87:00:af:fa:93:71:07:fe:f3:ef:51:1b:5b:78:13:
                    60:3f:a7:89:ac:40:fe:b0:11:80:ae:bc:73:76:60:c4:
                    1d:3e:c3:29:d8:66:fb:8d:55:3c:86:5a:2c:36:e6:15:
                    21:9c:3c:2c:80:b5:d5:5b:8c:6d:ff:7f:98:42:01:66:
                    a0:b6:5c:10:e1:b6:89:c3:ef:62:7d:fe:57:93:e6:e3:
                    78:bf:a8:ad:f5:25:e9:1c:1a:f5:cb:11:2d:95:c7:a8:
                    dc:e0:8f:49:36:da:8f:4a:70:b9:fd:1a:ba:dc:c1:cf:
                    8e:0e:c4:62:34:ab:2b:fe:c0:10:72:2e:b3:07:cf:dd:
                    30:c6:b9:92:06:e6:b7:57:ce:5c:a0:c0:ef:e3:e1:b3:
                    16:4d:05:06:f6:bc:10:80:aa:41:63:e2:cc:b3:f3:b0:
                    20:7a:96:9d:ce:ab:9a:f0:e2:c7:e3:b6:e6:95:7e:4e:
                    6c:94:d2:96:f3:ee:b7:bc:ac:7f:e2:e7:41:ed:1c:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:1e:e7:f9:a4:5e:2e:62:1c:40:41:4f:1c:a5:1a:b3:
        ed:4e:3f:73:fc:0b:de:ce:60:9c:42:06:c3:0d:52:47:
        5d:0c:ef:eb:f9:f6:1f:0b:8d:66:6f:a8:74:eb:a0:ed:
        77:e8:b5:54:d5:0d:3c:ab:9f:8d:94:7a:6e:30:21:d4:
        8f:f5:eb:e4:ec:88:70:4f:14:f6:1e:5e:a7:d4:aa:51:
        a3:66:21:b0:fc:d4:ff:f0:64:84:41:61:e1:21:cf:1c:
        02:0d:5a:81:5d:03:e0:01:07:0d:f7:03:20:b7:ba:04:
        f4:82:7f:28:23:87:b2:0f:46:98:cd:a5:16:85:67:6b:
        63:2d:46:43:1f:4c:b7:11:e6:50:e4:53:d5:d3:ce:4e:
        36:68:f5:90:10:ae:aa:94:67:fb:88:1d:19:5f:7a:41:
        16:44:2f:d5:a4:57:80:08:8e:2b:93:2d:d1:36:e6:af:
        25:63:00:bf:7f:93:78:7c:f4:30:2a:93:c6:1d:46:43:
        6f:25:f6:a7:ab:f4:04:8d:7a:6e:4e:6f:85:7b:96:0c:
        1b:a6:13:2b:c4:17:d0:0b:59:b2:6a:99:bb:27:b7:94:
        f4:53:03:6a:cf:1f:3e:18:f2:a4:e4:46:dc:08:65:7c:
        52:3a:3e:98:b9:02:9d:24:97:ee:bc:2d:bd:27:d1:51
    Fingerprint (SHA-256):
        BC:4D:81:FF:E4:A2:8E:E4:D1:D9:7E:B0:99:35:BC:58:20:9B:91:DA:56:F0:25:97:02:49:C8:41:7F:59:81:37
    Fingerprint (SHA1):
        49:75:3B:92:71:4E:52:3B:68:94:40:62:2A:92:27:AF:15:FA:95:47
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6420: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6421: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155014 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6422: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6423: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6424: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155015 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6425: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6426: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6427: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6428: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155016 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6429: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6430: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155017 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6431: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6432: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6433: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6434: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6435: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155018   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502154920.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6436: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6437: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6438: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6439: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155019   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6440: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6441: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6442: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6443: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155015 (0x1dee4707)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:50:52 2017
            Not After : Mon May 02 15:50:52 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:70:0f:88:82:3c:cb:81:53:e3:02:1a:49:a4:bc:e4:
                    6f:e4:6a:5a:23:d9:eb:8a:2d:f7:fc:d4:b5:5d:92:07:
                    e7:89:03:7d:ca:1a:a1:a9:12:b4:a4:5b:90:b0:37:c9:
                    a1:ec:45:94:4b:00:e9:f5:59:3a:6a:e0:1c:00:5a:b9:
                    fd:5b:76:5c:df:d5:33:08:b4:9c:d7:ab:56:65:d3:e7:
                    83:fd:b8:b7:35:67:a0:6a:85:27:d9:95:3a:d7:d8:9c:
                    5f:09:45:6b:c5:64:27:ff:fc:a9:82:3f:9d:26:c8:c7:
                    25:ff:7f:63:c7:97:24:02:47:26:e6:e5:32:81:5a:23:
                    8b:ad:21:80:2f:13:54:20:15:ee:11:de:4e:91:79:70:
                    9e:9b:06:5e:0b:88:44:78:be:f0:ca:c9:1b:6e:be:fb:
                    15:0b:e4:0c:4c:38:69:52:43:2c:5a:32:1b:07:4d:c2:
                    f2:cc:37:69:b0:80:0b:cc:1f:c9:70:0e:16:1c:88:1e:
                    72:a1:00:29:5f:ba:79:88:7e:60:00:3a:ec:0b:a0:fd:
                    b2:f5:6d:d8:41:97:e2:42:90:75:c6:9f:e5:1a:83:c9:
                    10:5b:47:21:ad:46:38:32:fb:10:ff:f1:f2:07:07:8b:
                    bd:2e:e3:e5:0f:5d:96:c7:0b:e9:81:ca:ee:82:55:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:de:25:2a:37:50:f9:e8:8f:b6:c1:3a:57:c2:a8:48:
        92:aa:b8:9a:19:47:15:ba:8a:c1:4e:44:ae:dd:6a:70:
        e1:46:c8:cd:f7:77:6d:3d:ae:8d:cd:c8:a6:b2:f6:f9:
        ee:cc:6a:c1:3c:05:e5:f9:f1:ab:4b:c9:6b:a8:e7:f7:
        64:aa:43:c9:c2:53:cf:61:06:9b:92:9a:38:d2:7e:f9:
        ee:e1:99:73:85:e3:80:f6:6d:81:02:7b:2c:fa:5c:93:
        fa:80:d9:93:56:ce:1b:a0:94:d3:a7:a1:4d:81:0d:6d:
        2d:d1:46:48:cb:b6:28:d8:73:b8:cc:d7:2c:2c:4f:55:
        9e:82:05:a3:df:70:53:24:aa:23:43:ec:d3:b7:cd:25:
        00:82:fb:43:9f:52:bb:2b:f3:4f:e7:13:78:43:c4:f0:
        36:d2:a4:73:c8:9c:86:51:5d:ff:e8:a3:ea:c6:fd:78:
        27:15:44:74:40:97:a7:f7:ef:d2:7b:8b:b1:cf:ad:86:
        68:4a:d4:7c:0a:c5:7e:01:d9:ae:d9:ef:ec:bf:68:1f:
        7b:ad:3b:8b:1f:3e:04:2b:a9:73:e9:c3:1c:4a:2a:bb:
        b7:96:52:78:81:94:91:3d:bd:a4:2a:a7:26:7f:9b:7f:
        72:a0:00:59:94:7e:ae:ca:6e:7e:3c:ac:83:47:39:18
    Fingerprint (SHA-256):
        8E:77:97:00:98:EB:CF:70:CB:1E:DD:D3:36:23:0D:B2:31:05:C8:C6:5F:B6:97:2F:AA:37:D5:0C:A9:D1:6E:BC
    Fingerprint (SHA1):
        18:58:C9:39:C9:AB:CF:69:05:25:AF:48:08:A0:7F:DF:BE:33:47:A1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6444: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155015 (0x1dee4707)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:50:52 2017
            Not After : Mon May 02 15:50:52 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:70:0f:88:82:3c:cb:81:53:e3:02:1a:49:a4:bc:e4:
                    6f:e4:6a:5a:23:d9:eb:8a:2d:f7:fc:d4:b5:5d:92:07:
                    e7:89:03:7d:ca:1a:a1:a9:12:b4:a4:5b:90:b0:37:c9:
                    a1:ec:45:94:4b:00:e9:f5:59:3a:6a:e0:1c:00:5a:b9:
                    fd:5b:76:5c:df:d5:33:08:b4:9c:d7:ab:56:65:d3:e7:
                    83:fd:b8:b7:35:67:a0:6a:85:27:d9:95:3a:d7:d8:9c:
                    5f:09:45:6b:c5:64:27:ff:fc:a9:82:3f:9d:26:c8:c7:
                    25:ff:7f:63:c7:97:24:02:47:26:e6:e5:32:81:5a:23:
                    8b:ad:21:80:2f:13:54:20:15:ee:11:de:4e:91:79:70:
                    9e:9b:06:5e:0b:88:44:78:be:f0:ca:c9:1b:6e:be:fb:
                    15:0b:e4:0c:4c:38:69:52:43:2c:5a:32:1b:07:4d:c2:
                    f2:cc:37:69:b0:80:0b:cc:1f:c9:70:0e:16:1c:88:1e:
                    72:a1:00:29:5f:ba:79:88:7e:60:00:3a:ec:0b:a0:fd:
                    b2:f5:6d:d8:41:97:e2:42:90:75:c6:9f:e5:1a:83:c9:
                    10:5b:47:21:ad:46:38:32:fb:10:ff:f1:f2:07:07:8b:
                    bd:2e:e3:e5:0f:5d:96:c7:0b:e9:81:ca:ee:82:55:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:de:25:2a:37:50:f9:e8:8f:b6:c1:3a:57:c2:a8:48:
        92:aa:b8:9a:19:47:15:ba:8a:c1:4e:44:ae:dd:6a:70:
        e1:46:c8:cd:f7:77:6d:3d:ae:8d:cd:c8:a6:b2:f6:f9:
        ee:cc:6a:c1:3c:05:e5:f9:f1:ab:4b:c9:6b:a8:e7:f7:
        64:aa:43:c9:c2:53:cf:61:06:9b:92:9a:38:d2:7e:f9:
        ee:e1:99:73:85:e3:80:f6:6d:81:02:7b:2c:fa:5c:93:
        fa:80:d9:93:56:ce:1b:a0:94:d3:a7:a1:4d:81:0d:6d:
        2d:d1:46:48:cb:b6:28:d8:73:b8:cc:d7:2c:2c:4f:55:
        9e:82:05:a3:df:70:53:24:aa:23:43:ec:d3:b7:cd:25:
        00:82:fb:43:9f:52:bb:2b:f3:4f:e7:13:78:43:c4:f0:
        36:d2:a4:73:c8:9c:86:51:5d:ff:e8:a3:ea:c6:fd:78:
        27:15:44:74:40:97:a7:f7:ef:d2:7b:8b:b1:cf:ad:86:
        68:4a:d4:7c:0a:c5:7e:01:d9:ae:d9:ef:ec:bf:68:1f:
        7b:ad:3b:8b:1f:3e:04:2b:a9:73:e9:c3:1c:4a:2a:bb:
        b7:96:52:78:81:94:91:3d:bd:a4:2a:a7:26:7f:9b:7f:
        72:a0:00:59:94:7e:ae:ca:6e:7e:3c:ac:83:47:39:18
    Fingerprint (SHA-256):
        8E:77:97:00:98:EB:CF:70:CB:1E:DD:D3:36:23:0D:B2:31:05:C8:C6:5F:B6:97:2F:AA:37:D5:0C:A9:D1:6E:BC
    Fingerprint (SHA1):
        18:58:C9:39:C9:AB:CF:69:05:25:AF:48:08:A0:7F:DF:BE:33:47:A1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6445: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6446: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155020 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6447: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6448: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6449: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155021 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6450: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6451: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6452: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6453: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155022 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6454: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6455: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155023 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6456: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6457: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6458: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6459: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6460: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155024   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502154921.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6461: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6462: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6463: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6464: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155025   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6465: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6466: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6467: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6468: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502155026   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-BridgeNavy-502154922.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6469: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6470: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6471: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6472: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155027   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6473: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6474: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6475: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6476: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155021 (0x1dee470d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:50:56 2017
            Not After : Mon May 02 15:50:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:ca:10:65:66:2c:91:fe:41:1c:85:b5:85:98:88:9d:
                    33:3d:fc:6a:40:dc:77:9a:ac:dc:39:32:c0:db:10:49:
                    fe:d3:12:f2:9c:e0:d6:97:54:1a:52:99:cd:01:06:85:
                    0a:32:17:05:87:a2:0a:9f:a3:83:6c:6d:0b:a3:75:b0:
                    7d:76:a4:d3:c9:be:d5:e8:e1:ff:e0:4e:34:c6:9a:85:
                    61:89:66:77:da:67:d1:8c:7a:9f:8a:81:16:3b:65:fb:
                    1e:45:4d:31:b6:ee:84:a2:38:61:0e:7a:7b:7f:d1:b0:
                    e2:52:57:53:d1:dc:7c:15:39:46:ac:a3:5d:77:a2:e4:
                    41:55:e0:f2:8d:96:13:ea:77:5e:2b:b5:22:3f:08:a6:
                    ad:78:ba:5a:14:f1:76:fb:4a:6e:90:5f:34:83:ac:42:
                    00:28:06:60:eb:57:99:17:1e:88:04:1e:f0:2f:8d:ee:
                    ef:f5:97:01:d4:c0:65:ec:90:64:2d:9f:3a:a8:16:4b:
                    70:9b:44:3b:51:f5:17:3d:14:68:dd:be:3e:f2:fe:c8:
                    da:3c:a5:09:60:b4:48:0d:a2:25:55:0b:3e:37:11:1e:
                    c5:cb:b3:79:f6:d2:cb:f6:33:20:9a:0b:05:43:30:16:
                    56:04:dc:11:a1:ed:e0:c7:24:99:ed:77:77:24:81:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:61:4f:82:9f:08:fc:00:f3:bc:c3:dd:af:5e:f6:82:
        69:a2:24:58:6e:03:02:9c:65:11:95:06:f8:19:4f:df:
        f3:d6:6b:0f:8b:ab:13:71:31:54:d2:56:12:e1:29:56:
        e0:f3:3c:59:0f:a3:99:52:2c:67:e6:f2:49:bf:8c:e7:
        72:fd:c4:ec:13:21:66:65:2c:b1:89:f7:05:42:9f:1e:
        17:e3:17:80:4b:da:52:6e:8a:4d:22:9c:c1:fa:53:3d:
        11:c7:e1:3b:1f:81:01:66:4d:a5:66:7d:c4:a9:c6:d7:
        e0:ea:b3:cc:1e:b8:0e:a7:71:38:d8:9b:db:b5:52:ba:
        02:6f:d8:f3:a5:f2:38:f0:83:47:08:32:e9:19:17:c8:
        e2:60:b3:a8:98:ba:41:65:f0:43:33:39:d0:ba:74:97:
        46:e8:4f:fc:bf:51:81:c1:79:51:1f:3d:cf:b3:c2:e2:
        a4:c2:3c:40:ad:93:b9:d4:5f:a6:72:ab:e8:2c:ea:0e:
        e8:f3:50:e2:53:83:f9:6f:ef:94:df:d3:9e:f3:e0:72:
        09:e8:e3:22:11:d3:26:55:9e:11:13:ab:0b:b0:b9:39:
        17:44:c4:32:39:ee:7c:c5:2f:74:b2:95:05:50:31:1a:
        b6:a4:de:14:cd:9a:02:32:c0:47:c8:47:67:c4:36:63
    Fingerprint (SHA-256):
        56:5C:C5:62:CC:07:EA:02:CD:C3:F0:7D:74:11:CE:36:BC:F6:84:06:0C:95:58:8F:C7:C9:A7:36:A6:A2:05:33
    Fingerprint (SHA1):
        A1:B5:48:41:0C:1B:F3:1B:C1:F0:18:DD:F3:DB:E3:AC:4C:7D:CF:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6477: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155021 (0x1dee470d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:50:56 2017
            Not After : Mon May 02 15:50:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:ca:10:65:66:2c:91:fe:41:1c:85:b5:85:98:88:9d:
                    33:3d:fc:6a:40:dc:77:9a:ac:dc:39:32:c0:db:10:49:
                    fe:d3:12:f2:9c:e0:d6:97:54:1a:52:99:cd:01:06:85:
                    0a:32:17:05:87:a2:0a:9f:a3:83:6c:6d:0b:a3:75:b0:
                    7d:76:a4:d3:c9:be:d5:e8:e1:ff:e0:4e:34:c6:9a:85:
                    61:89:66:77:da:67:d1:8c:7a:9f:8a:81:16:3b:65:fb:
                    1e:45:4d:31:b6:ee:84:a2:38:61:0e:7a:7b:7f:d1:b0:
                    e2:52:57:53:d1:dc:7c:15:39:46:ac:a3:5d:77:a2:e4:
                    41:55:e0:f2:8d:96:13:ea:77:5e:2b:b5:22:3f:08:a6:
                    ad:78:ba:5a:14:f1:76:fb:4a:6e:90:5f:34:83:ac:42:
                    00:28:06:60:eb:57:99:17:1e:88:04:1e:f0:2f:8d:ee:
                    ef:f5:97:01:d4:c0:65:ec:90:64:2d:9f:3a:a8:16:4b:
                    70:9b:44:3b:51:f5:17:3d:14:68:dd:be:3e:f2:fe:c8:
                    da:3c:a5:09:60:b4:48:0d:a2:25:55:0b:3e:37:11:1e:
                    c5:cb:b3:79:f6:d2:cb:f6:33:20:9a:0b:05:43:30:16:
                    56:04:dc:11:a1:ed:e0:c7:24:99:ed:77:77:24:81:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:61:4f:82:9f:08:fc:00:f3:bc:c3:dd:af:5e:f6:82:
        69:a2:24:58:6e:03:02:9c:65:11:95:06:f8:19:4f:df:
        f3:d6:6b:0f:8b:ab:13:71:31:54:d2:56:12:e1:29:56:
        e0:f3:3c:59:0f:a3:99:52:2c:67:e6:f2:49:bf:8c:e7:
        72:fd:c4:ec:13:21:66:65:2c:b1:89:f7:05:42:9f:1e:
        17:e3:17:80:4b:da:52:6e:8a:4d:22:9c:c1:fa:53:3d:
        11:c7:e1:3b:1f:81:01:66:4d:a5:66:7d:c4:a9:c6:d7:
        e0:ea:b3:cc:1e:b8:0e:a7:71:38:d8:9b:db:b5:52:ba:
        02:6f:d8:f3:a5:f2:38:f0:83:47:08:32:e9:19:17:c8:
        e2:60:b3:a8:98:ba:41:65:f0:43:33:39:d0:ba:74:97:
        46:e8:4f:fc:bf:51:81:c1:79:51:1f:3d:cf:b3:c2:e2:
        a4:c2:3c:40:ad:93:b9:d4:5f:a6:72:ab:e8:2c:ea:0e:
        e8:f3:50:e2:53:83:f9:6f:ef:94:df:d3:9e:f3:e0:72:
        09:e8:e3:22:11:d3:26:55:9e:11:13:ab:0b:b0:b9:39:
        17:44:c4:32:39:ee:7c:c5:2f:74:b2:95:05:50:31:1a:
        b6:a4:de:14:cd:9a:02:32:c0:47:c8:47:67:c4:36:63
    Fingerprint (SHA-256):
        56:5C:C5:62:CC:07:EA:02:CD:C3:F0:7D:74:11:CE:36:BC:F6:84:06:0C:95:58:8F:C7:C9:A7:36:A6:A2:05:33
    Fingerprint (SHA1):
        A1:B5:48:41:0C:1B:F3:1B:C1:F0:18:DD:F3:DB:E3:AC:4C:7D:CF:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6478: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #6479: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155020 (0x1dee470c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:50:55 2017
            Not After : Mon May 02 15:50:55 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:d1:cb:a3:de:d6:6b:59:c9:2e:57:74:49:89:9f:ee:
                    64:37:6c:99:fb:02:88:ca:90:0d:9b:18:43:c6:e0:46:
                    dc:4a:cc:94:32:55:a7:fb:dd:28:7b:bc:67:b6:f4:bf:
                    30:68:7d:99:79:44:4e:7c:31:e4:78:f4:13:36:39:6b:
                    71:09:ed:4a:a3:fb:c0:e0:a3:6e:11:9b:4d:d4:54:5b:
                    ab:8b:85:90:13:c1:9a:9d:0b:0d:c9:a5:f8:9a:21:f2:
                    c4:4c:84:15:06:f1:43:55:a0:b1:1d:db:76:a2:92:02:
                    17:47:d7:aa:52:4b:87:a7:43:5c:6c:e0:1b:ca:b8:59:
                    88:26:59:91:55:ef:12:51:b7:de:61:40:e5:f6:ff:39:
                    76:16:07:3d:a6:27:d2:5c:27:99:ee:be:6e:e6:15:bf:
                    a6:01:73:d1:b0:7b:bd:3a:30:5f:f9:6a:9e:83:9d:d9:
                    81:3f:e0:6d:1a:dc:10:08:43:7e:78:35:f2:4c:7f:56:
                    13:5b:b0:1b:63:c4:35:9d:72:56:64:e6:4d:63:9e:09:
                    7f:0c:8a:10:79:da:6d:08:fd:82:bd:59:1a:32:59:64:
                    57:56:21:d1:f0:f2:ce:fa:a5:92:99:d9:db:5d:de:1c:
                    98:4c:5b:02:02:cc:21:77:17:44:41:c0:10:3e:3f:05
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        87:4b:dc:7e:9a:41:dd:21:ec:45:ad:f0:8e:44:46:0b:
        64:a4:3d:0f:65:a7:7d:1b:1e:87:c5:fc:f3:fe:1f:d6:
        7d:31:a3:dc:43:7c:dd:4f:3b:62:77:6c:5d:10:36:01:
        03:f2:14:c9:34:31:af:3d:3f:e1:4d:f3:3f:7c:f8:eb:
        fb:fd:98:6d:51:56:8e:06:31:9d:48:54:98:95:d3:62:
        54:da:52:ff:28:32:a2:e6:95:7b:b8:f0:09:b5:31:05:
        f6:63:63:9b:59:11:d1:ca:a2:ff:11:68:3b:ba:7c:06:
        07:3f:e0:2a:ea:cf:9d:67:b7:7a:c2:71:8a:94:65:4e:
        b1:fc:1f:e8:43:3a:28:bd:81:2f:dc:6e:5a:d4:a9:06:
        03:bb:ba:d6:25:cd:ef:96:9d:fe:97:72:2e:ef:ce:dc:
        bf:f9:f5:24:80:a3:ab:7b:a4:22:4f:77:bf:74:b7:1f:
        27:41:1a:ab:f9:ca:5d:d0:54:38:01:ec:fb:a7:7f:f5:
        33:8b:03:08:76:a0:90:5c:1b:8c:4e:35:7b:3c:d8:e9:
        74:2f:9a:86:44:d1:05:2c:ae:d3:6d:2b:6e:f2:45:23:
        43:40:19:6a:45:aa:36:f4:1f:e5:aa:1d:ca:9e:4a:e8:
        fb:c6:5b:fc:6d:a0:51:ff:5a:62:c4:43:20:5d:b7:25
    Fingerprint (SHA-256):
        2A:EB:B8:42:20:5F:29:AC:A3:9E:E7:EE:2D:0D:4C:70:84:89:93:1A:89:86:A0:98:99:47:EA:44:11:B9:8C:2C
    Fingerprint (SHA1):
        38:CC:FE:8F:27:CD:61:DA:FE:16:39:F2:13:67:98:EC:DD:37:81:B5
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6480: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155021 (0x1dee470d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:50:56 2017
            Not After : Mon May 02 15:50:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:ca:10:65:66:2c:91:fe:41:1c:85:b5:85:98:88:9d:
                    33:3d:fc:6a:40:dc:77:9a:ac:dc:39:32:c0:db:10:49:
                    fe:d3:12:f2:9c:e0:d6:97:54:1a:52:99:cd:01:06:85:
                    0a:32:17:05:87:a2:0a:9f:a3:83:6c:6d:0b:a3:75:b0:
                    7d:76:a4:d3:c9:be:d5:e8:e1:ff:e0:4e:34:c6:9a:85:
                    61:89:66:77:da:67:d1:8c:7a:9f:8a:81:16:3b:65:fb:
                    1e:45:4d:31:b6:ee:84:a2:38:61:0e:7a:7b:7f:d1:b0:
                    e2:52:57:53:d1:dc:7c:15:39:46:ac:a3:5d:77:a2:e4:
                    41:55:e0:f2:8d:96:13:ea:77:5e:2b:b5:22:3f:08:a6:
                    ad:78:ba:5a:14:f1:76:fb:4a:6e:90:5f:34:83:ac:42:
                    00:28:06:60:eb:57:99:17:1e:88:04:1e:f0:2f:8d:ee:
                    ef:f5:97:01:d4:c0:65:ec:90:64:2d:9f:3a:a8:16:4b:
                    70:9b:44:3b:51:f5:17:3d:14:68:dd:be:3e:f2:fe:c8:
                    da:3c:a5:09:60:b4:48:0d:a2:25:55:0b:3e:37:11:1e:
                    c5:cb:b3:79:f6:d2:cb:f6:33:20:9a:0b:05:43:30:16:
                    56:04:dc:11:a1:ed:e0:c7:24:99:ed:77:77:24:81:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:61:4f:82:9f:08:fc:00:f3:bc:c3:dd:af:5e:f6:82:
        69:a2:24:58:6e:03:02:9c:65:11:95:06:f8:19:4f:df:
        f3:d6:6b:0f:8b:ab:13:71:31:54:d2:56:12:e1:29:56:
        e0:f3:3c:59:0f:a3:99:52:2c:67:e6:f2:49:bf:8c:e7:
        72:fd:c4:ec:13:21:66:65:2c:b1:89:f7:05:42:9f:1e:
        17:e3:17:80:4b:da:52:6e:8a:4d:22:9c:c1:fa:53:3d:
        11:c7:e1:3b:1f:81:01:66:4d:a5:66:7d:c4:a9:c6:d7:
        e0:ea:b3:cc:1e:b8:0e:a7:71:38:d8:9b:db:b5:52:ba:
        02:6f:d8:f3:a5:f2:38:f0:83:47:08:32:e9:19:17:c8:
        e2:60:b3:a8:98:ba:41:65:f0:43:33:39:d0:ba:74:97:
        46:e8:4f:fc:bf:51:81:c1:79:51:1f:3d:cf:b3:c2:e2:
        a4:c2:3c:40:ad:93:b9:d4:5f:a6:72:ab:e8:2c:ea:0e:
        e8:f3:50:e2:53:83:f9:6f:ef:94:df:d3:9e:f3:e0:72:
        09:e8:e3:22:11:d3:26:55:9e:11:13:ab:0b:b0:b9:39:
        17:44:c4:32:39:ee:7c:c5:2f:74:b2:95:05:50:31:1a:
        b6:a4:de:14:cd:9a:02:32:c0:47:c8:47:67:c4:36:63
    Fingerprint (SHA-256):
        56:5C:C5:62:CC:07:EA:02:CD:C3:F0:7D:74:11:CE:36:BC:F6:84:06:0C:95:58:8F:C7:C9:A7:36:A6:A2:05:33
    Fingerprint (SHA1):
        A1:B5:48:41:0C:1B:F3:1B:C1:F0:18:DD:F3:DB:E3:AC:4C:7D:CF:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6481: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155021 (0x1dee470d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:50:56 2017
            Not After : Mon May 02 15:50:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:ca:10:65:66:2c:91:fe:41:1c:85:b5:85:98:88:9d:
                    33:3d:fc:6a:40:dc:77:9a:ac:dc:39:32:c0:db:10:49:
                    fe:d3:12:f2:9c:e0:d6:97:54:1a:52:99:cd:01:06:85:
                    0a:32:17:05:87:a2:0a:9f:a3:83:6c:6d:0b:a3:75:b0:
                    7d:76:a4:d3:c9:be:d5:e8:e1:ff:e0:4e:34:c6:9a:85:
                    61:89:66:77:da:67:d1:8c:7a:9f:8a:81:16:3b:65:fb:
                    1e:45:4d:31:b6:ee:84:a2:38:61:0e:7a:7b:7f:d1:b0:
                    e2:52:57:53:d1:dc:7c:15:39:46:ac:a3:5d:77:a2:e4:
                    41:55:e0:f2:8d:96:13:ea:77:5e:2b:b5:22:3f:08:a6:
                    ad:78:ba:5a:14:f1:76:fb:4a:6e:90:5f:34:83:ac:42:
                    00:28:06:60:eb:57:99:17:1e:88:04:1e:f0:2f:8d:ee:
                    ef:f5:97:01:d4:c0:65:ec:90:64:2d:9f:3a:a8:16:4b:
                    70:9b:44:3b:51:f5:17:3d:14:68:dd:be:3e:f2:fe:c8:
                    da:3c:a5:09:60:b4:48:0d:a2:25:55:0b:3e:37:11:1e:
                    c5:cb:b3:79:f6:d2:cb:f6:33:20:9a:0b:05:43:30:16:
                    56:04:dc:11:a1:ed:e0:c7:24:99:ed:77:77:24:81:fd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:61:4f:82:9f:08:fc:00:f3:bc:c3:dd:af:5e:f6:82:
        69:a2:24:58:6e:03:02:9c:65:11:95:06:f8:19:4f:df:
        f3:d6:6b:0f:8b:ab:13:71:31:54:d2:56:12:e1:29:56:
        e0:f3:3c:59:0f:a3:99:52:2c:67:e6:f2:49:bf:8c:e7:
        72:fd:c4:ec:13:21:66:65:2c:b1:89:f7:05:42:9f:1e:
        17:e3:17:80:4b:da:52:6e:8a:4d:22:9c:c1:fa:53:3d:
        11:c7:e1:3b:1f:81:01:66:4d:a5:66:7d:c4:a9:c6:d7:
        e0:ea:b3:cc:1e:b8:0e:a7:71:38:d8:9b:db:b5:52:ba:
        02:6f:d8:f3:a5:f2:38:f0:83:47:08:32:e9:19:17:c8:
        e2:60:b3:a8:98:ba:41:65:f0:43:33:39:d0:ba:74:97:
        46:e8:4f:fc:bf:51:81:c1:79:51:1f:3d:cf:b3:c2:e2:
        a4:c2:3c:40:ad:93:b9:d4:5f:a6:72:ab:e8:2c:ea:0e:
        e8:f3:50:e2:53:83:f9:6f:ef:94:df:d3:9e:f3:e0:72:
        09:e8:e3:22:11:d3:26:55:9e:11:13:ab:0b:b0:b9:39:
        17:44:c4:32:39:ee:7c:c5:2f:74:b2:95:05:50:31:1a:
        b6:a4:de:14:cd:9a:02:32:c0:47:c8:47:67:c4:36:63
    Fingerprint (SHA-256):
        56:5C:C5:62:CC:07:EA:02:CD:C3:F0:7D:74:11:CE:36:BC:F6:84:06:0C:95:58:8F:C7:C9:A7:36:A6:A2:05:33
    Fingerprint (SHA1):
        A1:B5:48:41:0C:1B:F3:1B:C1:F0:18:DD:F3:DB:E3:AC:4C:7D:CF:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6482: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6483: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155028 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6484: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6485: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6486: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155029 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6487: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6488: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #6489: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6490: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502155030   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6491: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6492: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #6493: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6494: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502155031   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6495: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6496: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6497: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6498: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502155032 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6499: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6500: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502155033 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #6501: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6502: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #6503: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6504: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6505: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155034   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6506: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6507: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6508: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6509: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502155035   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6510: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6511: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6512: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6513: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155036   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6514: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6515: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6516: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6517: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155037   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6518: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6519: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6520: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155028 (0x1dee4714)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:51:01 2017
            Not After : Mon May 02 15:51:01 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c2:f2:4c:46:c0:d5:ad:e2:7e:13:92:71:f6:0c:c6:26:
                    3b:a9:41:26:4e:2e:8f:c7:7a:49:9d:ca:b6:89:19:f9:
                    cc:09:10:ce:86:62:34:41:b1:16:ae:7b:6c:0e:89:af:
                    b1:c0:5d:7f:52:29:c9:ae:29:82:ab:3a:cf:d1:20:88:
                    30:30:30:5f:75:5d:dd:b3:85:bd:d7:d4:26:f1:30:fb:
                    e3:b1:22:23:cd:5a:da:22:ab:2a:d3:c6:dd:60:72:62:
                    60:5b:5c:d8:da:12:55:bc:9d:6e:b7:b3:56:5f:4f:52:
                    1c:a2:6c:bf:41:22:74:6d:e6:68:0b:6b:d7:07:e2:f7:
                    ea:ff:f6:dd:a6:d6:8c:92:91:37:9e:b9:8f:e5:ea:7b:
                    64:e0:69:e7:ee:46:0a:9e:22:88:c3:7e:29:e0:c5:24:
                    ce:81:ae:36:e8:97:ab:6b:da:70:c1:e0:8f:6f:b9:3b:
                    82:7f:f3:89:ea:d6:4d:9b:6f:b7:54:bb:8b:dd:ee:79:
                    04:f0:dd:2a:96:61:32:a6:7a:33:be:2c:69:62:27:b1:
                    62:a4:de:2c:51:76:f5:57:c2:50:09:90:c5:4d:1c:c6:
                    01:a7:fa:3d:f8:6b:57:9a:9e:02:cc:07:63:aa:71:e4:
                    b7:0e:a1:9b:df:00:7a:cb:20:29:fb:df:8f:c9:7a:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        31:ac:af:2d:e8:9b:a4:46:4d:80:9b:56:f1:1a:c1:41:
        d0:d8:8c:25:be:fb:77:1b:87:a3:32:8d:12:77:e4:84:
        5a:6f:6d:22:ef:f8:0b:1b:b4:2b:b0:50:67:29:ea:8c:
        29:c8:82:5c:80:80:37:08:9f:5f:cb:37:87:d9:1c:1b:
        ff:00:23:8b:9d:c5:59:e5:5b:c3:3f:6d:7d:dc:15:60:
        03:52:e4:7e:16:ef:c2:c8:4e:74:13:52:46:84:e5:6c:
        a9:b0:ce:30:29:96:ba:c6:cc:e2:2e:39:60:a8:7b:aa:
        ae:91:79:e4:ba:7b:ce:2e:c7:df:01:f5:5a:f4:34:28:
        59:b2:6a:19:e0:73:3d:d5:bd:86:a7:9f:39:95:18:69:
        eb:e9:9e:d6:74:05:80:b6:c0:21:85:7e:df:1c:d1:9a:
        20:d7:d3:98:86:1a:11:d2:8b:85:eb:0a:43:d9:76:f3:
        41:f0:96:29:50:d0:c1:4d:e1:df:e1:7e:48:a6:d9:82:
        a7:b6:48:d7:00:69:9a:0e:b8:74:20:33:40:3f:48:53:
        2c:38:25:fa:88:dd:be:fc:98:5e:6f:cf:73:7e:3e:22:
        36:fc:9e:bc:88:c9:ec:11:f8:d4:72:5c:cd:c1:d4:60:
        b9:b1:3e:67:ab:3e:e9:a8:a3:79:31:25:2c:88:1a:96
    Fingerprint (SHA-256):
        FB:31:CE:F6:62:87:E2:09:6D:56:72:0D:E1:5C:78:33:57:03:2F:66:C1:B8:C1:BF:EE:DF:43:F6:28:6B:1C:52
    Fingerprint (SHA1):
        0C:C0:88:6D:5A:47:DC:17:16:05:B0:94:31:A3:FB:D7:18:DC:26:DE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #6521: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6522: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6523: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6524: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6525: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6526: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6527: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6528: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6529: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155029 (0x1dee4715)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:51:02 2017
            Not After : Mon May 02 15:51:02 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a0:8b:f0:e3:d6:56:de:39:ab:bb:45:0f:d2:0f:a3:58:
                    63:53:15:24:39:54:29:f5:7c:1e:3a:95:7a:5d:50:02:
                    b9:e4:88:6e:0a:2d:39:47:e1:9c:1f:4c:d4:49:9a:63:
                    2b:d2:d4:cb:8b:02:b4:46:57:24:24:d9:aa:32:df:3c:
                    62:c9:3f:d9:5f:90:7a:ef:a7:3b:1b:1b:60:f1:56:62:
                    16:bd:c8:f8:0a:8c:30:7b:10:fa:7f:d7:ca:52:af:97:
                    72:16:85:60:d3:0b:94:05:3c:16:49:16:d7:09:ea:f2:
                    e8:b2:7e:78:29:3e:2e:ba:74:4d:dd:51:20:2b:35:b3:
                    d9:da:23:5a:e7:9c:e5:77:6e:3a:b7:2b:00:62:fc:d8:
                    dd:40:2a:75:d4:ea:80:db:90:42:36:94:be:00:9c:dc:
                    58:7f:87:43:f3:f6:06:95:46:62:4b:0e:57:0b:a0:10:
                    c7:e7:dd:7e:66:b8:88:f5:5a:50:ca:34:87:e3:87:f6:
                    fe:08:7f:06:2f:c2:1f:f6:fc:8b:16:05:e0:89:3e:59:
                    c1:bb:5b:3b:59:b3:08:7b:e3:5b:98:19:b3:99:a2:4e:
                    31:e1:45:fd:fa:21:73:b2:f9:93:e2:3b:f6:b0:1e:fd:
                    c2:c2:2e:c7:e6:de:cb:9d:34:46:92:d0:7c:b1:12:51
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        29:6b:4e:e7:e9:40:70:c0:5e:3b:5f:cb:7b:24:ae:39:
        7d:ce:6d:f9:b3:e3:1b:02:be:ac:5a:bc:3b:11:a4:ca:
        25:53:62:9f:c5:99:8b:ac:46:6f:aa:79:69:58:11:3b:
        26:33:ca:c7:9d:9a:2e:b7:08:19:ed:ab:f3:5e:63:4c:
        ac:2f:16:fb:2c:50:fb:b1:0f:5b:29:6b:ae:5b:7b:52:
        af:a3:9b:11:a8:5f:d6:1c:cd:51:76:d6:1f:c1:1a:a4:
        18:c4:10:e6:f1:4a:37:5d:4f:c1:1a:76:d7:26:0b:30:
        42:63:da:6f:72:c4:a7:a7:7f:96:ae:6d:28:88:9e:11:
        4e:7e:de:de:5b:cc:db:4a:00:0e:e9:93:59:b6:a4:b6:
        49:43:63:29:4a:7b:ef:37:ca:07:ec:3d:bd:03:26:81:
        d7:8d:17:c4:71:44:89:18:bc:9f:92:bd:9c:2e:c1:1b:
        e3:40:74:55:28:e0:af:3d:ce:f4:dc:ff:6c:be:8b:a6:
        1c:54:28:29:ee:7e:4b:c6:3d:99:9c:07:df:79:65:c7:
        b6:fa:d1:af:cc:06:7e:2a:cc:2f:49:e7:24:de:59:cb:
        e4:3f:cf:49:16:08:eb:51:2f:fc:11:a6:b9:e7:b7:68:
        67:ba:a7:6f:03:8b:f0:50:b5:17:4b:0a:81:5c:1d:2e
    Fingerprint (SHA-256):
        6D:47:E5:DF:A5:8D:18:C4:9E:37:BE:93:10:FD:CF:83:46:EC:DE:8D:7C:F7:79:A0:31:2B:1B:F1:2F:71:62:97
    Fingerprint (SHA1):
        C3:FB:69:F8:59:C1:80:1C:0F:67:6F:97:FC:25:A5:36:3A:F9:F6:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #6530: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6531: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6532: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6533: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6534: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6535: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6536: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #6537: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #6538: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #6539: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #6540: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #6541: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #6542: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #6543: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6544: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6545: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #6546: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #6547: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6548: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155038 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6549: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6550: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6551: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6552: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155039   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6553: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6554: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6555: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6556: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155040   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6557: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6558: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6559: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6560: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502155041   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6561: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6562: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6563: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6564: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155042   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6565: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6566: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6567: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6568: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502155043   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6569: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6570: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #6571: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6572: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502155044   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6573: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6574: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #6575: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6576: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502155045   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6577: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6578: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #6579: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6580: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502155046   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6581: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6582: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6583: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155038 (0x1dee471e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:08 2017
            Not After : Mon May 02 15:51:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    55:54:bd:13:3a:ff:f3:23:98:b9:12:60:3c:92:b8:3f:
                    65:92:90:7a:41:a2:eb:7c:e9:0c:cb:44:62:42:49:5a:
                    69:c4:a6:92:1d:58:e1:e8:a3:fa:34:83:a9:5e:f5:16:
                    91:51:02:af:6c:71:0c:87:ab:dc:d6:7b:88:a3:d7:a3:
                    f0:55:70:64:fe:02:95:15:66:6e:67:ef:c3:78:94:73:
                    f4:2a:d0:ee:35:aa:e6:15:02:9c:bd:32:f9:66:ee:74:
                    07:58:f0:18:fd:73:9f:c1:79:f9:6c:c9:be:69:d3:ce:
                    c4:c3:38:c1:da:e3:53:a3:42:33:a5:1f:71:56:a8:94:
                    a1:2b:ba:46:a1:62:4b:fa:7e:7f:f5:db:1e:78:a1:9c:
                    17:33:62:91:a8:d5:77:a8:59:1a:fa:a1:07:ca:ab:e9:
                    63:45:ef:b0:df:5b:9e:12:07:90:08:a2:4b:b4:6c:fc:
                    1e:1b:d0:cf:e9:5b:5e:61:ee:50:8a:b8:78:01:9a:eb:
                    27:a4:52:11:66:43:fc:16:1b:fc:cb:0b:50:f4:b4:1b:
                    74:51:a9:47:fc:8a:ef:29:c4:ec:dc:61:ff:b4:ef:10:
                    cc:dc:51:ee:b2:c5:49:4f:7d:f6:d7:57:d0:bc:d2:de:
                    fb:c4:32:60:fd:55:8f:93:b1:53:a4:cb:90:d5:f7:1d
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:b9:3c:74:6c:da:3c:82:db:de:43:93:
        f8:50:75:d4:28:39:f0:7c:40:44:d4:71:a3:67:fa:36:
        d0:02:1d:00:89:1f:c0:0b:9a:5a:95:af:00:69:7d:8e:
        40:09:bf:75:af:33:81:76:42:71:69:69:18:ec:7b:65
    Fingerprint (SHA-256):
        F4:30:1A:04:95:79:41:76:29:10:14:7F:2B:F8:AD:7B:8B:A6:C5:AF:E1:26:DA:42:C6:BB:D7:2C:FA:CE:1C:D6
    Fingerprint (SHA1):
        45:69:E5:D0:FF:C0:54:66:3E:B3:B8:D1:74:E2:8C:2F:B1:D3:D6:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6584: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155038 (0x1dee471e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:08 2017
            Not After : Mon May 02 15:51:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    55:54:bd:13:3a:ff:f3:23:98:b9:12:60:3c:92:b8:3f:
                    65:92:90:7a:41:a2:eb:7c:e9:0c:cb:44:62:42:49:5a:
                    69:c4:a6:92:1d:58:e1:e8:a3:fa:34:83:a9:5e:f5:16:
                    91:51:02:af:6c:71:0c:87:ab:dc:d6:7b:88:a3:d7:a3:
                    f0:55:70:64:fe:02:95:15:66:6e:67:ef:c3:78:94:73:
                    f4:2a:d0:ee:35:aa:e6:15:02:9c:bd:32:f9:66:ee:74:
                    07:58:f0:18:fd:73:9f:c1:79:f9:6c:c9:be:69:d3:ce:
                    c4:c3:38:c1:da:e3:53:a3:42:33:a5:1f:71:56:a8:94:
                    a1:2b:ba:46:a1:62:4b:fa:7e:7f:f5:db:1e:78:a1:9c:
                    17:33:62:91:a8:d5:77:a8:59:1a:fa:a1:07:ca:ab:e9:
                    63:45:ef:b0:df:5b:9e:12:07:90:08:a2:4b:b4:6c:fc:
                    1e:1b:d0:cf:e9:5b:5e:61:ee:50:8a:b8:78:01:9a:eb:
                    27:a4:52:11:66:43:fc:16:1b:fc:cb:0b:50:f4:b4:1b:
                    74:51:a9:47:fc:8a:ef:29:c4:ec:dc:61:ff:b4:ef:10:
                    cc:dc:51:ee:b2:c5:49:4f:7d:f6:d7:57:d0:bc:d2:de:
                    fb:c4:32:60:fd:55:8f:93:b1:53:a4:cb:90:d5:f7:1d
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:b9:3c:74:6c:da:3c:82:db:de:43:93:
        f8:50:75:d4:28:39:f0:7c:40:44:d4:71:a3:67:fa:36:
        d0:02:1d:00:89:1f:c0:0b:9a:5a:95:af:00:69:7d:8e:
        40:09:bf:75:af:33:81:76:42:71:69:69:18:ec:7b:65
    Fingerprint (SHA-256):
        F4:30:1A:04:95:79:41:76:29:10:14:7F:2B:F8:AD:7B:8B:A6:C5:AF:E1:26:DA:42:C6:BB:D7:2C:FA:CE:1C:D6
    Fingerprint (SHA1):
        45:69:E5:D0:FF:C0:54:66:3E:B3:B8:D1:74:E2:8C:2F:B1:D3:D6:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6585: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155038 (0x1dee471e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:08 2017
            Not After : Mon May 02 15:51:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    55:54:bd:13:3a:ff:f3:23:98:b9:12:60:3c:92:b8:3f:
                    65:92:90:7a:41:a2:eb:7c:e9:0c:cb:44:62:42:49:5a:
                    69:c4:a6:92:1d:58:e1:e8:a3:fa:34:83:a9:5e:f5:16:
                    91:51:02:af:6c:71:0c:87:ab:dc:d6:7b:88:a3:d7:a3:
                    f0:55:70:64:fe:02:95:15:66:6e:67:ef:c3:78:94:73:
                    f4:2a:d0:ee:35:aa:e6:15:02:9c:bd:32:f9:66:ee:74:
                    07:58:f0:18:fd:73:9f:c1:79:f9:6c:c9:be:69:d3:ce:
                    c4:c3:38:c1:da:e3:53:a3:42:33:a5:1f:71:56:a8:94:
                    a1:2b:ba:46:a1:62:4b:fa:7e:7f:f5:db:1e:78:a1:9c:
                    17:33:62:91:a8:d5:77:a8:59:1a:fa:a1:07:ca:ab:e9:
                    63:45:ef:b0:df:5b:9e:12:07:90:08:a2:4b:b4:6c:fc:
                    1e:1b:d0:cf:e9:5b:5e:61:ee:50:8a:b8:78:01:9a:eb:
                    27:a4:52:11:66:43:fc:16:1b:fc:cb:0b:50:f4:b4:1b:
                    74:51:a9:47:fc:8a:ef:29:c4:ec:dc:61:ff:b4:ef:10:
                    cc:dc:51:ee:b2:c5:49:4f:7d:f6:d7:57:d0:bc:d2:de:
                    fb:c4:32:60:fd:55:8f:93:b1:53:a4:cb:90:d5:f7:1d
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:b9:3c:74:6c:da:3c:82:db:de:43:93:
        f8:50:75:d4:28:39:f0:7c:40:44:d4:71:a3:67:fa:36:
        d0:02:1d:00:89:1f:c0:0b:9a:5a:95:af:00:69:7d:8e:
        40:09:bf:75:af:33:81:76:42:71:69:69:18:ec:7b:65
    Fingerprint (SHA-256):
        F4:30:1A:04:95:79:41:76:29:10:14:7F:2B:F8:AD:7B:8B:A6:C5:AF:E1:26:DA:42:C6:BB:D7:2C:FA:CE:1C:D6
    Fingerprint (SHA1):
        45:69:E5:D0:FF:C0:54:66:3E:B3:B8:D1:74:E2:8C:2F:B1:D3:D6:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #6586: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155038 (0x1dee471e)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:08 2017
            Not After : Mon May 02 15:51:08 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    55:54:bd:13:3a:ff:f3:23:98:b9:12:60:3c:92:b8:3f:
                    65:92:90:7a:41:a2:eb:7c:e9:0c:cb:44:62:42:49:5a:
                    69:c4:a6:92:1d:58:e1:e8:a3:fa:34:83:a9:5e:f5:16:
                    91:51:02:af:6c:71:0c:87:ab:dc:d6:7b:88:a3:d7:a3:
                    f0:55:70:64:fe:02:95:15:66:6e:67:ef:c3:78:94:73:
                    f4:2a:d0:ee:35:aa:e6:15:02:9c:bd:32:f9:66:ee:74:
                    07:58:f0:18:fd:73:9f:c1:79:f9:6c:c9:be:69:d3:ce:
                    c4:c3:38:c1:da:e3:53:a3:42:33:a5:1f:71:56:a8:94:
                    a1:2b:ba:46:a1:62:4b:fa:7e:7f:f5:db:1e:78:a1:9c:
                    17:33:62:91:a8:d5:77:a8:59:1a:fa:a1:07:ca:ab:e9:
                    63:45:ef:b0:df:5b:9e:12:07:90:08:a2:4b:b4:6c:fc:
                    1e:1b:d0:cf:e9:5b:5e:61:ee:50:8a:b8:78:01:9a:eb:
                    27:a4:52:11:66:43:fc:16:1b:fc:cb:0b:50:f4:b4:1b:
                    74:51:a9:47:fc:8a:ef:29:c4:ec:dc:61:ff:b4:ef:10:
                    cc:dc:51:ee:b2:c5:49:4f:7d:f6:d7:57:d0:bc:d2:de:
                    fb:c4:32:60:fd:55:8f:93:b1:53:a4:cb:90:d5:f7:1d
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3e:02:1d:00:b9:3c:74:6c:da:3c:82:db:de:43:93:
        f8:50:75:d4:28:39:f0:7c:40:44:d4:71:a3:67:fa:36:
        d0:02:1d:00:89:1f:c0:0b:9a:5a:95:af:00:69:7d:8e:
        40:09:bf:75:af:33:81:76:42:71:69:69:18:ec:7b:65
    Fingerprint (SHA-256):
        F4:30:1A:04:95:79:41:76:29:10:14:7F:2B:F8:AD:7B:8B:A6:C5:AF:E1:26:DA:42:C6:BB:D7:2C:FA:CE:1C:D6
    Fingerprint (SHA1):
        45:69:E5:D0:FF:C0:54:66:3E:B3:B8:D1:74:E2:8C:2F:B1:D3:D6:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #6587: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6588: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6589: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6590: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #6591: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6592: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6593: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6594: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6595: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6596: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6597: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6598: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #6599: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6600: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6601: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6602: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #6603: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6604: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6605: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6606: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6607: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6608: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6609: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6610: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #6611: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6612: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6613: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6614: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502155118Z
nextupdate=20180502155118Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:51:18 2017
    Next Update: Wed May 02 15:51:18 2018
    CRL Extensions:
chains.sh: #6615: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155118Z
nextupdate=20180502155118Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:51:18 2017
    Next Update: Wed May 02 15:51:18 2018
    CRL Extensions:
chains.sh: #6616: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155118Z
nextupdate=20180502155118Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:51:18 2017
    Next Update: Wed May 02 15:51:18 2018
    CRL Extensions:
chains.sh: #6617: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502155118Z
nextupdate=20180502155118Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:51:18 2017
    Next Update: Wed May 02 15:51:18 2018
    CRL Extensions:
chains.sh: #6618: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155119Z
addcert 14 20170502155119Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:51:19 2017
    Next Update: Wed May 02 15:51:18 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:51:19 2017
    CRL Extensions:
chains.sh: #6619: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155120Z
addcert 15 20170502155120Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:51:20 2017
    Next Update: Wed May 02 15:51:18 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:51:20 2017
    CRL Extensions:
chains.sh: #6620: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6621: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6622: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #6623: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #6624: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #6625: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #6626: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #6627: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #6628: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #6629: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:13 2017
            Not After : Mon May 02 15:51:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:22:1c:db:15:6e:b9:3f:74:2a:c1:80:64:42:3f:c4:
                    40:0d:4a:5a:10:5e:5d:8f:1c:92:8f:6b:25:83:f8:7f:
                    f6:cf:53:33:3c:bb:2c:00:bb:e3:b4:e0:13:63:8b:1f:
                    c3:c9:47:49:ea:45:9e:7f:23:c2:d9:5b:6f:83:f7:e8:
                    bc:bc:d9:ae:03:5e:9c:50:c8:21:34:02:b5:13:24:ff:
                    a8:7c:21:11:af:e5:94:92:b4:e3:eb:e0:15:c0:61:9d:
                    44:53:db:4a:1f:87:ea:ae:d9:a0:f0:d5:c6:d7:3f:bb:
                    49:58:7d:e1:93:dc:09:59:4c:31:20:02:2a:43:ee:df:
                    0c:18:87:82:22:68:82:74:56:82:8f:a4:93:ff:2f:34:
                    e6:21:ac:2e:1c:c7:18:a8:0c:a3:0b:2a:6e:87:ff:8d:
                    f8:31:29:b0:1b:80:3a:8e:db:77:24:dd:ae:b4:ba:ba:
                    1b:5a:20:ea:72:87:ef:55:56:4c:b5:c4:a1:99:a5:3f:
                    e9:a8:94:84:a4:b1:14:2e:09:6e:b3:1d:8c:50:cb:d9:
                    a5:54:ac:c3:ea:6c:a5:72:25:79:e0:bc:83:30:9b:33:
                    e7:60:8b:7a:73:c8:d3:93:eb:6b:8d:73:73:97:3b:5b:
                    cd:dd:c8:49:08:48:64:67:b1:7c:b8:7a:eb:19:30:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:c2:ad:24:12:09:51:44:76:30:e6:f3:5f:db:68:36:
        6c:38:54:5c:b6:12:75:3f:44:9c:85:c6:9b:7c:c4:17:
        d2:1e:f0:69:67:67:31:6b:48:38:37:eb:b6:07:9f:5c:
        06:02:60:76:60:01:44:ff:41:1e:a6:03:2c:41:94:37:
        47:0f:b8:5f:8a:f4:0b:08:3e:93:9f:00:75:08:5d:69:
        6e:d0:60:42:a5:28:08:84:76:c9:c3:30:20:8d:c3:2a:
        87:fb:ce:69:3d:ff:1b:38:12:9e:61:f2:19:f8:e9:c3:
        4e:68:f5:64:91:38:59:dd:df:6c:18:bf:a7:04:a4:95:
        33:12:bb:d4:09:5c:32:14:b7:e2:d5:ff:73:27:a3:d6:
        ed:31:ef:45:a6:e9:65:8a:05:6a:ba:33:9d:af:f4:b0:
        91:e0:0b:92:5d:78:80:63:f0:57:ad:ea:3a:18:77:07:
        66:43:52:50:cb:07:b4:03:26:52:2d:ac:af:e2:d6:43:
        cb:e5:d9:87:bc:17:ab:65:0f:10:6f:27:bf:d1:30:b9:
        49:75:ba:82:42:09:23:f4:1f:86:6a:13:c2:aa:9b:84:
        98:3e:7f:f3:71:da:da:bd:b4:3b:ba:53:aa:01:29:1d:
        eb:e6:69:91:95:ce:75:55:fa:04:ac:89:68:89:8c:cf
    Fingerprint (SHA-256):
        B4:ED:47:A3:7F:B2:07:45:89:F9:FF:38:55:76:7D:53:30:87:3B:DE:8A:3F:F1:DF:C8:DC:E2:B9:C0:8A:BB:9C
    Fingerprint (SHA1):
        42:82:29:A7:17:FA:FE:0D:EB:B1:DC:A3:27:3C:15:18:67:3D:EC:EA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6630: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6631: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:13 2017
            Not After : Mon May 02 15:51:13 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:22:1c:db:15:6e:b9:3f:74:2a:c1:80:64:42:3f:c4:
                    40:0d:4a:5a:10:5e:5d:8f:1c:92:8f:6b:25:83:f8:7f:
                    f6:cf:53:33:3c:bb:2c:00:bb:e3:b4:e0:13:63:8b:1f:
                    c3:c9:47:49:ea:45:9e:7f:23:c2:d9:5b:6f:83:f7:e8:
                    bc:bc:d9:ae:03:5e:9c:50:c8:21:34:02:b5:13:24:ff:
                    a8:7c:21:11:af:e5:94:92:b4:e3:eb:e0:15:c0:61:9d:
                    44:53:db:4a:1f:87:ea:ae:d9:a0:f0:d5:c6:d7:3f:bb:
                    49:58:7d:e1:93:dc:09:59:4c:31:20:02:2a:43:ee:df:
                    0c:18:87:82:22:68:82:74:56:82:8f:a4:93:ff:2f:34:
                    e6:21:ac:2e:1c:c7:18:a8:0c:a3:0b:2a:6e:87:ff:8d:
                    f8:31:29:b0:1b:80:3a:8e:db:77:24:dd:ae:b4:ba:ba:
                    1b:5a:20:ea:72:87:ef:55:56:4c:b5:c4:a1:99:a5:3f:
                    e9:a8:94:84:a4:b1:14:2e:09:6e:b3:1d:8c:50:cb:d9:
                    a5:54:ac:c3:ea:6c:a5:72:25:79:e0:bc:83:30:9b:33:
                    e7:60:8b:7a:73:c8:d3:93:eb:6b:8d:73:73:97:3b:5b:
                    cd:dd:c8:49:08:48:64:67:b1:7c:b8:7a:eb:19:30:1d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:c2:ad:24:12:09:51:44:76:30:e6:f3:5f:db:68:36:
        6c:38:54:5c:b6:12:75:3f:44:9c:85:c6:9b:7c:c4:17:
        d2:1e:f0:69:67:67:31:6b:48:38:37:eb:b6:07:9f:5c:
        06:02:60:76:60:01:44:ff:41:1e:a6:03:2c:41:94:37:
        47:0f:b8:5f:8a:f4:0b:08:3e:93:9f:00:75:08:5d:69:
        6e:d0:60:42:a5:28:08:84:76:c9:c3:30:20:8d:c3:2a:
        87:fb:ce:69:3d:ff:1b:38:12:9e:61:f2:19:f8:e9:c3:
        4e:68:f5:64:91:38:59:dd:df:6c:18:bf:a7:04:a4:95:
        33:12:bb:d4:09:5c:32:14:b7:e2:d5:ff:73:27:a3:d6:
        ed:31:ef:45:a6:e9:65:8a:05:6a:ba:33:9d:af:f4:b0:
        91:e0:0b:92:5d:78:80:63:f0:57:ad:ea:3a:18:77:07:
        66:43:52:50:cb:07:b4:03:26:52:2d:ac:af:e2:d6:43:
        cb:e5:d9:87:bc:17:ab:65:0f:10:6f:27:bf:d1:30:b9:
        49:75:ba:82:42:09:23:f4:1f:86:6a:13:c2:aa:9b:84:
        98:3e:7f:f3:71:da:da:bd:b4:3b:ba:53:aa:01:29:1d:
        eb:e6:69:91:95:ce:75:55:fa:04:ac:89:68:89:8c:cf
    Fingerprint (SHA-256):
        B4:ED:47:A3:7F:B2:07:45:89:F9:FF:38:55:76:7D:53:30:87:3B:DE:8A:3F:F1:DF:C8:DC:E2:B9:C0:8A:BB:9C
    Fingerprint (SHA1):
        42:82:29:A7:17:FA:FE:0D:EB:B1:DC:A3:27:3C:15:18:67:3D:EC:EA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6632: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6633: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6634: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155047 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6635: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6636: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #6637: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6638: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502155048   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6639: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6640: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6641: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154938.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6642: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154923.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6643: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6644: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #6645: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154938.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6646: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502155049   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6647: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6648: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6649: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154938.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6650: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154924.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6651: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6652: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #6653: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6654: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502155050   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6655: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6656: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6657: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154938.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6658: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154925.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6659: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6660: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6661: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154938.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6662: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154926.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #6663: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6664: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502155126Z
nextupdate=20180502155126Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:51:26 2017
    Next Update: Wed May 02 15:51:26 2018
    CRL Extensions:
chains.sh: #6665: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155126Z
nextupdate=20180502155126Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:51:26 2017
    Next Update: Wed May 02 15:51:26 2018
    CRL Extensions:
chains.sh: #6666: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155126Z
nextupdate=20180502155126Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:51:26 2017
    Next Update: Wed May 02 15:51:26 2018
    CRL Extensions:
chains.sh: #6667: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502155126Z
nextupdate=20180502155126Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:51:26 2017
    Next Update: Wed May 02 15:51:26 2018
    CRL Extensions:
chains.sh: #6668: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155127Z
addcert 20 20170502155127Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:51:27 2017
    Next Update: Wed May 02 15:51:26 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:51:27 2017
    CRL Extensions:
chains.sh: #6669: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155128Z
addcert 40 20170502155128Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:51:28 2017
    Next Update: Wed May 02 15:51:26 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:51:27 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:51:28 2017
    CRL Extensions:
chains.sh: #6670: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6671: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6672: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #6673: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155047 (0x1dee4727)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:21 2017
            Not After : Mon May 02 15:51:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:c7:e7:d7:48:8c:11:b4:f4:df:c5:cb:1d:ed:56:09:
                    02:f4:87:a7:77:d8:e0:b2:73:6e:6b:de:d8:e9:4f:a9:
                    6f:8a:1c:5f:f9:d7:e2:21:ab:84:2e:95:9d:1d:41:c4:
                    48:fe:40:83:0f:9a:f8:7e:25:c9:ba:ae:04:82:83:aa:
                    d1:d6:c0:5c:dc:1e:cc:d5:7b:ab:33:8d:bf:5f:85:c0:
                    42:2e:3f:d7:d4:91:61:77:54:37:51:39:3b:01:70:7e:
                    4b:c2:50:f9:21:3a:08:7c:48:7d:d8:a4:66:68:8e:fb:
                    d5:b2:6d:65:6a:7f:f7:e6:9b:33:3d:8f:94:92:05:bf:
                    a9:61:a7:b1:1f:64:c7:82:4f:bd:64:2c:99:b0:e3:09:
                    34:26:5f:c2:c9:aa:22:9b:4d:1b:9b:8b:11:dd:6e:af:
                    68:d7:b1:72:53:a4:d8:c1:bc:67:e9:7f:49:86:0a:50:
                    c3:e2:62:da:63:cf:1a:5d:bd:d1:d5:62:a8:6e:04:e7:
                    90:8a:31:49:c7:22:89:6a:f9:90:37:99:6a:1e:07:dc:
                    fb:18:3d:53:25:e0:33:f0:34:22:31:47:8d:af:36:92:
                    ea:d4:f1:80:69:b2:8c:70:bc:65:e4:1b:93:b3:0c:9c:
                    8b:c0:26:f0:34:cc:66:52:fb:c0:af:2a:ba:88:92:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:c2:de:9b:be:af:be:db:21:b2:12:84:4a:59:cf:f8:
        3d:b0:4d:a0:1f:ce:75:bc:a6:c3:a7:ea:08:ac:eb:61:
        15:72:81:2c:0c:91:84:a2:7a:d2:fe:2f:ce:c0:73:7e:
        35:47:fd:9e:db:a3:76:8a:b3:5a:5f:3b:e6:c5:64:ef:
        98:0e:39:c9:0a:23:fb:a0:b0:92:72:67:51:1e:2e:a5:
        7a:45:1d:e3:9b:61:66:6f:ce:6b:85:d1:46:33:40:f1:
        70:7f:a8:f9:3a:30:be:33:a8:53:0f:6a:f1:99:ec:cc:
        07:d9:2b:f7:ef:6a:66:64:2d:74:3d:e8:29:1e:c0:44:
        ed:94:90:70:c1:68:9a:06:f8:fd:6d:f6:73:32:77:99:
        7f:34:2a:a4:71:64:09:f1:1b:c0:2e:64:1d:3c:54:d1:
        c4:2f:37:87:7a:23:27:2a:55:c3:92:26:7a:3c:2c:1f:
        b6:96:b1:e9:21:b9:69:1f:4a:0e:4d:a1:1c:9c:ed:66:
        73:47:de:ef:bb:22:9d:4b:8c:f3:4d:6e:f0:69:71:49:
        59:f9:6f:63:e6:8c:58:c5:06:b6:a7:95:cc:15:7b:4d:
        80:c4:17:ae:74:09:17:b4:bd:7b:1f:bb:24:39:09:93:
        1d:69:5f:e6:35:15:4b:b4:3e:90:28:90:32:af:94:96
    Fingerprint (SHA-256):
        17:BB:74:B8:C7:AE:34:DE:34:F3:E3:6C:40:B1:3D:4C:8C:13:A4:17:F9:DF:FC:F6:3E:F7:8B:76:5C:44:74:57
    Fingerprint (SHA1):
        C8:D7:1C:D5:F7:50:01:AB:8A:ED:AD:A7:8B:E0:80:08:98:DD:4C:4C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6674: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6675: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155047 (0x1dee4727)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:21 2017
            Not After : Mon May 02 15:51:21 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:c7:e7:d7:48:8c:11:b4:f4:df:c5:cb:1d:ed:56:09:
                    02:f4:87:a7:77:d8:e0:b2:73:6e:6b:de:d8:e9:4f:a9:
                    6f:8a:1c:5f:f9:d7:e2:21:ab:84:2e:95:9d:1d:41:c4:
                    48:fe:40:83:0f:9a:f8:7e:25:c9:ba:ae:04:82:83:aa:
                    d1:d6:c0:5c:dc:1e:cc:d5:7b:ab:33:8d:bf:5f:85:c0:
                    42:2e:3f:d7:d4:91:61:77:54:37:51:39:3b:01:70:7e:
                    4b:c2:50:f9:21:3a:08:7c:48:7d:d8:a4:66:68:8e:fb:
                    d5:b2:6d:65:6a:7f:f7:e6:9b:33:3d:8f:94:92:05:bf:
                    a9:61:a7:b1:1f:64:c7:82:4f:bd:64:2c:99:b0:e3:09:
                    34:26:5f:c2:c9:aa:22:9b:4d:1b:9b:8b:11:dd:6e:af:
                    68:d7:b1:72:53:a4:d8:c1:bc:67:e9:7f:49:86:0a:50:
                    c3:e2:62:da:63:cf:1a:5d:bd:d1:d5:62:a8:6e:04:e7:
                    90:8a:31:49:c7:22:89:6a:f9:90:37:99:6a:1e:07:dc:
                    fb:18:3d:53:25:e0:33:f0:34:22:31:47:8d:af:36:92:
                    ea:d4:f1:80:69:b2:8c:70:bc:65:e4:1b:93:b3:0c:9c:
                    8b:c0:26:f0:34:cc:66:52:fb:c0:af:2a:ba:88:92:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:c2:de:9b:be:af:be:db:21:b2:12:84:4a:59:cf:f8:
        3d:b0:4d:a0:1f:ce:75:bc:a6:c3:a7:ea:08:ac:eb:61:
        15:72:81:2c:0c:91:84:a2:7a:d2:fe:2f:ce:c0:73:7e:
        35:47:fd:9e:db:a3:76:8a:b3:5a:5f:3b:e6:c5:64:ef:
        98:0e:39:c9:0a:23:fb:a0:b0:92:72:67:51:1e:2e:a5:
        7a:45:1d:e3:9b:61:66:6f:ce:6b:85:d1:46:33:40:f1:
        70:7f:a8:f9:3a:30:be:33:a8:53:0f:6a:f1:99:ec:cc:
        07:d9:2b:f7:ef:6a:66:64:2d:74:3d:e8:29:1e:c0:44:
        ed:94:90:70:c1:68:9a:06:f8:fd:6d:f6:73:32:77:99:
        7f:34:2a:a4:71:64:09:f1:1b:c0:2e:64:1d:3c:54:d1:
        c4:2f:37:87:7a:23:27:2a:55:c3:92:26:7a:3c:2c:1f:
        b6:96:b1:e9:21:b9:69:1f:4a:0e:4d:a1:1c:9c:ed:66:
        73:47:de:ef:bb:22:9d:4b:8c:f3:4d:6e:f0:69:71:49:
        59:f9:6f:63:e6:8c:58:c5:06:b6:a7:95:cc:15:7b:4d:
        80:c4:17:ae:74:09:17:b4:bd:7b:1f:bb:24:39:09:93:
        1d:69:5f:e6:35:15:4b:b4:3e:90:28:90:32:af:94:96
    Fingerprint (SHA-256):
        17:BB:74:B8:C7:AE:34:DE:34:F3:E3:6C:40:B1:3D:4C:8C:13:A4:17:F9:DF:FC:F6:3E:F7:8B:76:5C:44:74:57
    Fingerprint (SHA1):
        C8:D7:1C:D5:F7:50:01:AB:8A:ED:AD:A7:8B:E0:80:08:98:DD:4C:4C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #6676: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #6677: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6678: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155051 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6679: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6680: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6681: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6682: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502155052   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6683: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6684: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6685: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6686: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155053   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6687: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6688: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6689: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6690: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502155054   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6691: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6692: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #6693: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155055 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6694: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #6695: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #6696: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6697: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502155056   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6698: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6699: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #6700: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6701: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502155057   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6702: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6703: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #6704: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #6705: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #6706: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155051 (0x1dee472b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:29 2017
            Not After : Mon May 02 15:51:29 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:f9:44:e5:25:7a:fa:10:2e:6f:c3:52:b2:6a:3f:18:
                    8a:60:41:1f:9e:8a:fa:f3:b4:80:96:f1:9a:90:41:ea:
                    a1:9c:00:35:66:71:d0:ec:82:49:ce:1a:e9:c0:e0:1b:
                    ab:34:6a:de:7b:d5:eb:ee:d7:f2:40:ac:e8:1d:cd:33:
                    b8:f4:91:c5:aa:84:d1:79:2d:be:e3:d4:50:4b:1c:93:
                    af:bf:2a:08:f5:a1:82:99:3e:23:c8:b4:98:a9:9c:e5:
                    5c:e6:38:a3:fa:25:8b:26:71:9a:60:d1:3b:68:2a:ba:
                    7d:9d:72:d5:7d:43:84:d5:30:76:78:ae:87:b8:5c:ca:
                    08:31:2f:0c:9a:e9:61:e5:18:cf:15:9e:af:e4:38:73:
                    c5:1e:5b:28:3c:31:e1:de:84:7d:0e:a8:07:d2:e5:c8:
                    6c:31:6b:8f:50:c6:5a:2f:01:2a:c9:fb:49:34:ec:3c:
                    54:4c:2a:c5:01:ed:a4:e6:c6:35:02:1e:10:7f:8f:35:
                    df:ec:8a:f7:ce:26:73:3c:cf:b5:fe:c1:aa:6b:a3:41:
                    7b:85:ce:1d:d6:e2:39:b6:67:6e:46:59:de:3e:82:09:
                    f7:d8:9e:01:09:39:ce:d1:6e:73:41:43:48:5d:e6:aa:
                    07:96:b7:94:67:90:bb:f7:f5:f2:9b:35:a2:b2:d6:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:7a:e3:42:5c:85:19:1e:c1:83:c9:89:fa:82:51:19:
        ca:0d:05:f6:2b:68:cc:37:59:10:98:5a:19:5a:22:fc:
        3e:8d:3f:cf:50:bb:5b:c6:cb:bc:0e:36:0c:c2:5a:b5:
        e2:0e:9b:35:0d:01:f0:ae:30:bb:11:de:67:e6:9a:0d:
        d5:ef:d2:5e:ab:1c:49:df:5a:94:b1:b0:36:83:d1:a5:
        04:2a:e7:5b:71:54:c0:19:be:c7:ae:9c:1e:c3:e5:63:
        1e:76:da:05:66:25:7a:57:d8:01:69:01:00:fd:4f:88:
        5c:52:6f:9a:44:5b:59:00:ab:ad:af:b5:61:92:a9:ce:
        94:43:32:94:25:4a:3b:4c:b1:59:66:6f:f9:82:bb:7c:
        86:4a:b0:68:af:b8:b7:20:2a:03:cd:e4:05:18:de:f1:
        3d:2c:c0:37:05:bd:b6:ab:ab:46:f3:55:67:cf:d8:ed:
        57:1f:b4:dd:77:78:bf:27:81:fa:2a:4c:0c:57:34:95:
        18:9d:5e:8a:8a:61:1d:41:8c:6e:2b:f1:e6:54:9b:94:
        16:38:4e:75:1b:1c:8b:71:7f:24:6e:17:12:35:26:9b:
        c4:42:09:3a:59:52:ae:e8:c2:28:86:2c:92:a8:86:df:
        b7:81:48:a6:d5:db:90:f8:23:66:64:50:ba:c2:7e:f4
    Fingerprint (SHA-256):
        63:C3:80:D6:65:71:C1:68:CA:36:05:70:63:F7:B1:C3:0A:53:8D:A8:B8:53:4C:F5:EB:63:F4:88:F6:CB:E1:74
    Fingerprint (SHA1):
        A7:95:D9:78:28:A6:E8:EA:9C:6E:FE:EE:38:64:A7:38:F5:DB:45:3F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6707: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155053 (0x1dee472d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:31 2017
            Not After : Mon May 02 15:51:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:6f:de:fb:bb:a2:49:3a:0b:ac:b2:b4:75:98:54:69:
                    07:73:60:18:69:b9:43:4b:29:f3:18:4b:2f:9b:5d:a8:
                    89:c6:10:57:60:f7:14:c5:f6:35:5e:85:1b:2d:d8:5f:
                    6c:52:e1:7d:57:02:b7:dd:72:a2:1a:4e:d7:73:bf:7b:
                    ab:eb:e4:6a:04:11:6f:3b:73:d5:f2:93:bd:b6:84:70:
                    94:3d:4f:f5:6e:38:22:92:d8:3b:63:e7:c0:32:e3:2f:
                    19:f0:6c:b6:09:52:90:32:bb:1b:e3:1d:4e:37:d2:1d:
                    b4:f1:c3:57:5d:71:92:24:3f:2f:dd:c7:e9:0e:11:c2:
                    37:49:94:54:dc:ac:38:83:c8:f4:ef:48:3e:7e:cb:ec:
                    4d:99:f2:cd:b3:03:44:99:45:6c:84:b2:95:b6:e3:b1:
                    f2:86:3a:cc:c2:2f:0b:51:60:ea:27:61:e8:14:3c:5b:
                    39:b1:00:9e:80:36:1e:75:4a:c8:f9:cd:ab:71:68:38:
                    28:9b:a4:8e:0a:f3:70:33:22:58:44:55:d7:9e:4b:b9:
                    c3:20:2a:85:86:c9:b4:33:0f:64:26:15:14:ff:38:5e:
                    a5:af:a7:7f:59:55:c0:49:f7:7f:13:84:97:d0:5b:95:
                    78:5f:32:ff:71:e7:42:76:6d:dc:6b:28:05:71:93:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:c8:d8:72:90:de:b5:76:af:4c:82:36:90:42:74:f0:
        6b:b7:ab:2e:34:11:1f:99:af:c2:54:13:ec:8c:c4:95:
        eb:3c:3b:2b:9f:93:54:4c:1a:0b:50:a1:f9:b8:12:44:
        d5:95:56:a5:e9:5b:a7:8b:2d:9a:d6:61:36:01:bc:64:
        84:9b:1a:98:cb:4e:0c:f0:38:f8:6c:33:e6:96:1f:1f:
        e4:ec:c5:a4:9c:f2:81:09:8d:ac:5a:08:13:27:c7:26:
        74:44:ef:db:7d:fb:0b:ce:78:d0:66:96:44:c3:ed:8b:
        d8:10:cb:be:6e:73:37:ea:57:4a:fa:38:12:42:36:20:
        f6:3a:f4:21:6a:07:2a:5b:2b:07:00:b4:96:c7:ef:86:
        bc:e0:ff:35:68:52:bb:8f:af:7d:f6:1f:59:96:30:51:
        2c:bf:37:50:b7:0f:0f:76:d2:f7:a8:4c:72:c0:a1:0a:
        8e:b6:3b:44:f3:14:0c:6a:bb:6d:22:15:2a:64:5b:e2:
        f5:bd:6b:ef:d4:c0:5b:f4:96:bf:c2:d6:45:77:48:b1:
        34:76:8c:44:72:ef:dd:b6:f9:9a:e9:b4:f7:0b:0c:ad:
        38:ac:71:0f:b0:ce:2c:b0:be:52:00:0b:aa:cc:55:a7:
        9b:02:fb:e9:eb:bd:04:e5:8e:52:75:dd:44:0f:9e:dd
    Fingerprint (SHA-256):
        13:62:CB:88:82:AE:C4:44:EB:3B:92:BD:55:76:9E:9A:BC:8D:BF:38:FD:2C:75:0B:8C:49:1B:0E:D5:30:8A:DA
    Fingerprint (SHA1):
        9E:B4:7E:1B:81:18:7D:7F:27:A5:08:37:F3:20:FC:EC:73:B3:25:CB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6708: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155051 (0x1dee472b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:29 2017
            Not After : Mon May 02 15:51:29 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:f9:44:e5:25:7a:fa:10:2e:6f:c3:52:b2:6a:3f:18:
                    8a:60:41:1f:9e:8a:fa:f3:b4:80:96:f1:9a:90:41:ea:
                    a1:9c:00:35:66:71:d0:ec:82:49:ce:1a:e9:c0:e0:1b:
                    ab:34:6a:de:7b:d5:eb:ee:d7:f2:40:ac:e8:1d:cd:33:
                    b8:f4:91:c5:aa:84:d1:79:2d:be:e3:d4:50:4b:1c:93:
                    af:bf:2a:08:f5:a1:82:99:3e:23:c8:b4:98:a9:9c:e5:
                    5c:e6:38:a3:fa:25:8b:26:71:9a:60:d1:3b:68:2a:ba:
                    7d:9d:72:d5:7d:43:84:d5:30:76:78:ae:87:b8:5c:ca:
                    08:31:2f:0c:9a:e9:61:e5:18:cf:15:9e:af:e4:38:73:
                    c5:1e:5b:28:3c:31:e1:de:84:7d:0e:a8:07:d2:e5:c8:
                    6c:31:6b:8f:50:c6:5a:2f:01:2a:c9:fb:49:34:ec:3c:
                    54:4c:2a:c5:01:ed:a4:e6:c6:35:02:1e:10:7f:8f:35:
                    df:ec:8a:f7:ce:26:73:3c:cf:b5:fe:c1:aa:6b:a3:41:
                    7b:85:ce:1d:d6:e2:39:b6:67:6e:46:59:de:3e:82:09:
                    f7:d8:9e:01:09:39:ce:d1:6e:73:41:43:48:5d:e6:aa:
                    07:96:b7:94:67:90:bb:f7:f5:f2:9b:35:a2:b2:d6:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:7a:e3:42:5c:85:19:1e:c1:83:c9:89:fa:82:51:19:
        ca:0d:05:f6:2b:68:cc:37:59:10:98:5a:19:5a:22:fc:
        3e:8d:3f:cf:50:bb:5b:c6:cb:bc:0e:36:0c:c2:5a:b5:
        e2:0e:9b:35:0d:01:f0:ae:30:bb:11:de:67:e6:9a:0d:
        d5:ef:d2:5e:ab:1c:49:df:5a:94:b1:b0:36:83:d1:a5:
        04:2a:e7:5b:71:54:c0:19:be:c7:ae:9c:1e:c3:e5:63:
        1e:76:da:05:66:25:7a:57:d8:01:69:01:00:fd:4f:88:
        5c:52:6f:9a:44:5b:59:00:ab:ad:af:b5:61:92:a9:ce:
        94:43:32:94:25:4a:3b:4c:b1:59:66:6f:f9:82:bb:7c:
        86:4a:b0:68:af:b8:b7:20:2a:03:cd:e4:05:18:de:f1:
        3d:2c:c0:37:05:bd:b6:ab:ab:46:f3:55:67:cf:d8:ed:
        57:1f:b4:dd:77:78:bf:27:81:fa:2a:4c:0c:57:34:95:
        18:9d:5e:8a:8a:61:1d:41:8c:6e:2b:f1:e6:54:9b:94:
        16:38:4e:75:1b:1c:8b:71:7f:24:6e:17:12:35:26:9b:
        c4:42:09:3a:59:52:ae:e8:c2:28:86:2c:92:a8:86:df:
        b7:81:48:a6:d5:db:90:f8:23:66:64:50:ba:c2:7e:f4
    Fingerprint (SHA-256):
        63:C3:80:D6:65:71:C1:68:CA:36:05:70:63:F7:B1:C3:0A:53:8D:A8:B8:53:4C:F5:EB:63:F4:88:F6:CB:E1:74
    Fingerprint (SHA1):
        A7:95:D9:78:28:A6:E8:EA:9C:6E:FE:EE:38:64:A7:38:F5:DB:45:3F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6709: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #6710: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155051 (0x1dee472b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:29 2017
            Not After : Mon May 02 15:51:29 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:f9:44:e5:25:7a:fa:10:2e:6f:c3:52:b2:6a:3f:18:
                    8a:60:41:1f:9e:8a:fa:f3:b4:80:96:f1:9a:90:41:ea:
                    a1:9c:00:35:66:71:d0:ec:82:49:ce:1a:e9:c0:e0:1b:
                    ab:34:6a:de:7b:d5:eb:ee:d7:f2:40:ac:e8:1d:cd:33:
                    b8:f4:91:c5:aa:84:d1:79:2d:be:e3:d4:50:4b:1c:93:
                    af:bf:2a:08:f5:a1:82:99:3e:23:c8:b4:98:a9:9c:e5:
                    5c:e6:38:a3:fa:25:8b:26:71:9a:60:d1:3b:68:2a:ba:
                    7d:9d:72:d5:7d:43:84:d5:30:76:78:ae:87:b8:5c:ca:
                    08:31:2f:0c:9a:e9:61:e5:18:cf:15:9e:af:e4:38:73:
                    c5:1e:5b:28:3c:31:e1:de:84:7d:0e:a8:07:d2:e5:c8:
                    6c:31:6b:8f:50:c6:5a:2f:01:2a:c9:fb:49:34:ec:3c:
                    54:4c:2a:c5:01:ed:a4:e6:c6:35:02:1e:10:7f:8f:35:
                    df:ec:8a:f7:ce:26:73:3c:cf:b5:fe:c1:aa:6b:a3:41:
                    7b:85:ce:1d:d6:e2:39:b6:67:6e:46:59:de:3e:82:09:
                    f7:d8:9e:01:09:39:ce:d1:6e:73:41:43:48:5d:e6:aa:
                    07:96:b7:94:67:90:bb:f7:f5:f2:9b:35:a2:b2:d6:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:7a:e3:42:5c:85:19:1e:c1:83:c9:89:fa:82:51:19:
        ca:0d:05:f6:2b:68:cc:37:59:10:98:5a:19:5a:22:fc:
        3e:8d:3f:cf:50:bb:5b:c6:cb:bc:0e:36:0c:c2:5a:b5:
        e2:0e:9b:35:0d:01:f0:ae:30:bb:11:de:67:e6:9a:0d:
        d5:ef:d2:5e:ab:1c:49:df:5a:94:b1:b0:36:83:d1:a5:
        04:2a:e7:5b:71:54:c0:19:be:c7:ae:9c:1e:c3:e5:63:
        1e:76:da:05:66:25:7a:57:d8:01:69:01:00:fd:4f:88:
        5c:52:6f:9a:44:5b:59:00:ab:ad:af:b5:61:92:a9:ce:
        94:43:32:94:25:4a:3b:4c:b1:59:66:6f:f9:82:bb:7c:
        86:4a:b0:68:af:b8:b7:20:2a:03:cd:e4:05:18:de:f1:
        3d:2c:c0:37:05:bd:b6:ab:ab:46:f3:55:67:cf:d8:ed:
        57:1f:b4:dd:77:78:bf:27:81:fa:2a:4c:0c:57:34:95:
        18:9d:5e:8a:8a:61:1d:41:8c:6e:2b:f1:e6:54:9b:94:
        16:38:4e:75:1b:1c:8b:71:7f:24:6e:17:12:35:26:9b:
        c4:42:09:3a:59:52:ae:e8:c2:28:86:2c:92:a8:86:df:
        b7:81:48:a6:d5:db:90:f8:23:66:64:50:ba:c2:7e:f4
    Fingerprint (SHA-256):
        63:C3:80:D6:65:71:C1:68:CA:36:05:70:63:F7:B1:C3:0A:53:8D:A8:B8:53:4C:F5:EB:63:F4:88:F6:CB:E1:74
    Fingerprint (SHA1):
        A7:95:D9:78:28:A6:E8:EA:9C:6E:FE:EE:38:64:A7:38:F5:DB:45:3F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6711: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155053 (0x1dee472d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:31 2017
            Not After : Mon May 02 15:51:31 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:6f:de:fb:bb:a2:49:3a:0b:ac:b2:b4:75:98:54:69:
                    07:73:60:18:69:b9:43:4b:29:f3:18:4b:2f:9b:5d:a8:
                    89:c6:10:57:60:f7:14:c5:f6:35:5e:85:1b:2d:d8:5f:
                    6c:52:e1:7d:57:02:b7:dd:72:a2:1a:4e:d7:73:bf:7b:
                    ab:eb:e4:6a:04:11:6f:3b:73:d5:f2:93:bd:b6:84:70:
                    94:3d:4f:f5:6e:38:22:92:d8:3b:63:e7:c0:32:e3:2f:
                    19:f0:6c:b6:09:52:90:32:bb:1b:e3:1d:4e:37:d2:1d:
                    b4:f1:c3:57:5d:71:92:24:3f:2f:dd:c7:e9:0e:11:c2:
                    37:49:94:54:dc:ac:38:83:c8:f4:ef:48:3e:7e:cb:ec:
                    4d:99:f2:cd:b3:03:44:99:45:6c:84:b2:95:b6:e3:b1:
                    f2:86:3a:cc:c2:2f:0b:51:60:ea:27:61:e8:14:3c:5b:
                    39:b1:00:9e:80:36:1e:75:4a:c8:f9:cd:ab:71:68:38:
                    28:9b:a4:8e:0a:f3:70:33:22:58:44:55:d7:9e:4b:b9:
                    c3:20:2a:85:86:c9:b4:33:0f:64:26:15:14:ff:38:5e:
                    a5:af:a7:7f:59:55:c0:49:f7:7f:13:84:97:d0:5b:95:
                    78:5f:32:ff:71:e7:42:76:6d:dc:6b:28:05:71:93:ed
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        18:c8:d8:72:90:de:b5:76:af:4c:82:36:90:42:74:f0:
        6b:b7:ab:2e:34:11:1f:99:af:c2:54:13:ec:8c:c4:95:
        eb:3c:3b:2b:9f:93:54:4c:1a:0b:50:a1:f9:b8:12:44:
        d5:95:56:a5:e9:5b:a7:8b:2d:9a:d6:61:36:01:bc:64:
        84:9b:1a:98:cb:4e:0c:f0:38:f8:6c:33:e6:96:1f:1f:
        e4:ec:c5:a4:9c:f2:81:09:8d:ac:5a:08:13:27:c7:26:
        74:44:ef:db:7d:fb:0b:ce:78:d0:66:96:44:c3:ed:8b:
        d8:10:cb:be:6e:73:37:ea:57:4a:fa:38:12:42:36:20:
        f6:3a:f4:21:6a:07:2a:5b:2b:07:00:b4:96:c7:ef:86:
        bc:e0:ff:35:68:52:bb:8f:af:7d:f6:1f:59:96:30:51:
        2c:bf:37:50:b7:0f:0f:76:d2:f7:a8:4c:72:c0:a1:0a:
        8e:b6:3b:44:f3:14:0c:6a:bb:6d:22:15:2a:64:5b:e2:
        f5:bd:6b:ef:d4:c0:5b:f4:96:bf:c2:d6:45:77:48:b1:
        34:76:8c:44:72:ef:dd:b6:f9:9a:e9:b4:f7:0b:0c:ad:
        38:ac:71:0f:b0:ce:2c:b0:be:52:00:0b:aa:cc:55:a7:
        9b:02:fb:e9:eb:bd:04:e5:8e:52:75:dd:44:0f:9e:dd
    Fingerprint (SHA-256):
        13:62:CB:88:82:AE:C4:44:EB:3B:92:BD:55:76:9E:9A:BC:8D:BF:38:FD:2C:75:0B:8C:49:1B:0E:D5:30:8A:DA
    Fingerprint (SHA1):
        9E:B4:7E:1B:81:18:7D:7F:27:A5:08:37:F3:20:FC:EC:73:B3:25:CB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6712: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #6713: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #6714: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #6715: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155051 (0x1dee472b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:29 2017
            Not After : Mon May 02 15:51:29 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:f9:44:e5:25:7a:fa:10:2e:6f:c3:52:b2:6a:3f:18:
                    8a:60:41:1f:9e:8a:fa:f3:b4:80:96:f1:9a:90:41:ea:
                    a1:9c:00:35:66:71:d0:ec:82:49:ce:1a:e9:c0:e0:1b:
                    ab:34:6a:de:7b:d5:eb:ee:d7:f2:40:ac:e8:1d:cd:33:
                    b8:f4:91:c5:aa:84:d1:79:2d:be:e3:d4:50:4b:1c:93:
                    af:bf:2a:08:f5:a1:82:99:3e:23:c8:b4:98:a9:9c:e5:
                    5c:e6:38:a3:fa:25:8b:26:71:9a:60:d1:3b:68:2a:ba:
                    7d:9d:72:d5:7d:43:84:d5:30:76:78:ae:87:b8:5c:ca:
                    08:31:2f:0c:9a:e9:61:e5:18:cf:15:9e:af:e4:38:73:
                    c5:1e:5b:28:3c:31:e1:de:84:7d:0e:a8:07:d2:e5:c8:
                    6c:31:6b:8f:50:c6:5a:2f:01:2a:c9:fb:49:34:ec:3c:
                    54:4c:2a:c5:01:ed:a4:e6:c6:35:02:1e:10:7f:8f:35:
                    df:ec:8a:f7:ce:26:73:3c:cf:b5:fe:c1:aa:6b:a3:41:
                    7b:85:ce:1d:d6:e2:39:b6:67:6e:46:59:de:3e:82:09:
                    f7:d8:9e:01:09:39:ce:d1:6e:73:41:43:48:5d:e6:aa:
                    07:96:b7:94:67:90:bb:f7:f5:f2:9b:35:a2:b2:d6:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:7a:e3:42:5c:85:19:1e:c1:83:c9:89:fa:82:51:19:
        ca:0d:05:f6:2b:68:cc:37:59:10:98:5a:19:5a:22:fc:
        3e:8d:3f:cf:50:bb:5b:c6:cb:bc:0e:36:0c:c2:5a:b5:
        e2:0e:9b:35:0d:01:f0:ae:30:bb:11:de:67:e6:9a:0d:
        d5:ef:d2:5e:ab:1c:49:df:5a:94:b1:b0:36:83:d1:a5:
        04:2a:e7:5b:71:54:c0:19:be:c7:ae:9c:1e:c3:e5:63:
        1e:76:da:05:66:25:7a:57:d8:01:69:01:00:fd:4f:88:
        5c:52:6f:9a:44:5b:59:00:ab:ad:af:b5:61:92:a9:ce:
        94:43:32:94:25:4a:3b:4c:b1:59:66:6f:f9:82:bb:7c:
        86:4a:b0:68:af:b8:b7:20:2a:03:cd:e4:05:18:de:f1:
        3d:2c:c0:37:05:bd:b6:ab:ab:46:f3:55:67:cf:d8:ed:
        57:1f:b4:dd:77:78:bf:27:81:fa:2a:4c:0c:57:34:95:
        18:9d:5e:8a:8a:61:1d:41:8c:6e:2b:f1:e6:54:9b:94:
        16:38:4e:75:1b:1c:8b:71:7f:24:6e:17:12:35:26:9b:
        c4:42:09:3a:59:52:ae:e8:c2:28:86:2c:92:a8:86:df:
        b7:81:48:a6:d5:db:90:f8:23:66:64:50:ba:c2:7e:f4
    Fingerprint (SHA-256):
        63:C3:80:D6:65:71:C1:68:CA:36:05:70:63:F7:B1:C3:0A:53:8D:A8:B8:53:4C:F5:EB:63:F4:88:F6:CB:E1:74
    Fingerprint (SHA1):
        A7:95:D9:78:28:A6:E8:EA:9C:6E:FE:EE:38:64:A7:38:F5:DB:45:3F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6716: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155055 (0x1dee472f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:51:32 2017
            Not After : Mon May 02 15:51:32 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9b:b9:98:dc:ef:ed:ad:52:93:0e:f3:3f:79:f9:a4:8f:
                    dd:0a:cd:48:fb:dc:b8:02:36:d3:0b:56:96:12:65:17:
                    d6:b0:78:ab:e7:8a:e5:b6:1b:da:1a:74:9d:04:17:83:
                    8e:79:a7:48:f6:80:95:0d:12:78:be:7e:b2:a0:cb:ba:
                    76:78:4f:7e:5e:7a:42:87:90:57:e2:dc:7f:00:54:6e:
                    e6:28:d8:83:3d:5d:aa:4b:07:27:e5:3d:9c:b2:33:fe:
                    f2:e1:b3:e6:a0:63:86:6a:1f:ad:45:b3:72:0f:e9:bb:
                    8a:32:e9:41:0a:1e:ab:1e:cb:02:ac:db:8b:48:99:a5:
                    51:d3:c4:a3:ed:b9:76:f7:c0:3f:ff:fa:c4:db:37:71:
                    29:c9:25:52:cf:83:d7:20:c8:50:99:5b:d8:ba:b9:85:
                    5a:87:78:3b:41:fa:14:6a:ec:29:88:00:c9:8b:bf:a8:
                    91:24:51:58:8e:0d:32:9d:76:01:a9:56:07:06:bc:c6:
                    75:cf:6b:97:c5:65:71:3c:9c:f0:8f:d2:13:07:9a:0a:
                    51:f0:5e:23:93:b5:5b:65:4c:2d:14:af:b4:ee:66:80:
                    97:e6:67:16:e9:dc:53:fb:3d:38:c3:8b:79:65:83:90:
                    89:c1:5a:a5:fb:72:8d:9d:cc:28:69:ef:fc:fa:c7:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        66:d3:84:3d:75:c9:83:59:2d:92:a8:3e:dc:91:b6:11:
        8d:6e:44:4c:c5:04:3f:f3:18:4c:bf:a1:6b:b4:79:af:
        e9:de:8f:c4:fa:93:07:ca:de:f3:77:cf:c0:24:c5:b2:
        26:41:ea:3c:b7:f9:a8:50:ec:0e:ca:6f:ad:cb:7d:df:
        1e:e7:c6:cf:cc:14:51:9a:b6:3e:65:ed:89:8b:db:1b:
        75:18:09:26:7d:29:7e:2b:ce:d7:0a:97:a2:21:e0:66:
        35:6b:b6:15:c9:d2:07:6b:65:53:ac:c1:73:af:83:0a:
        4b:0c:d9:81:8e:98:46:4c:73:33:26:93:fa:9d:95:18:
        5d:86:3a:49:32:12:ee:0c:bc:20:81:bf:c7:fd:28:f0:
        5c:c8:53:6f:87:39:e7:05:dd:b0:8d:64:13:5f:bb:93:
        5c:ba:59:ec:bd:49:b6:6e:e3:b9:21:2e:81:97:5c:97:
        df:b1:5e:68:ac:eb:52:61:a1:a7:fc:e0:64:f1:cb:4d:
        10:3a:2d:e7:32:0b:87:fd:63:f1:fb:54:6b:3c:d2:8f:
        44:2d:5d:e8:68:ec:81:83:c4:4a:53:81:1f:89:d4:c6:
        17:74:d5:39:77:78:c4:78:68:ca:e3:4e:d1:f8:69:87:
        8c:0f:92:3b:fe:92:d7:71:71:54:8c:d8:f2:4c:07:5e
    Fingerprint (SHA-256):
        F9:45:79:3A:A2:DD:F4:37:0D:E4:4D:8D:63:AB:DA:82:FF:72:54:8D:5B:22:4D:B5:6F:15:C5:C5:6F:F7:FE:6C
    Fingerprint (SHA1):
        73:D1:12:D2:80:2E:E0:39:8A:CB:C2:7C:FB:E2:D9:32:92:B4:AB:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #6717: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155051 (0x1dee472b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:51:29 2017
            Not After : Mon May 02 15:51:29 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:f9:44:e5:25:7a:fa:10:2e:6f:c3:52:b2:6a:3f:18:
                    8a:60:41:1f:9e:8a:fa:f3:b4:80:96:f1:9a:90:41:ea:
                    a1:9c:00:35:66:71:d0:ec:82:49:ce:1a:e9:c0:e0:1b:
                    ab:34:6a:de:7b:d5:eb:ee:d7:f2:40:ac:e8:1d:cd:33:
                    b8:f4:91:c5:aa:84:d1:79:2d:be:e3:d4:50:4b:1c:93:
                    af:bf:2a:08:f5:a1:82:99:3e:23:c8:b4:98:a9:9c:e5:
                    5c:e6:38:a3:fa:25:8b:26:71:9a:60:d1:3b:68:2a:ba:
                    7d:9d:72:d5:7d:43:84:d5:30:76:78:ae:87:b8:5c:ca:
                    08:31:2f:0c:9a:e9:61:e5:18:cf:15:9e:af:e4:38:73:
                    c5:1e:5b:28:3c:31:e1:de:84:7d:0e:a8:07:d2:e5:c8:
                    6c:31:6b:8f:50:c6:5a:2f:01:2a:c9:fb:49:34:ec:3c:
                    54:4c:2a:c5:01:ed:a4:e6:c6:35:02:1e:10:7f:8f:35:
                    df:ec:8a:f7:ce:26:73:3c:cf:b5:fe:c1:aa:6b:a3:41:
                    7b:85:ce:1d:d6:e2:39:b6:67:6e:46:59:de:3e:82:09:
                    f7:d8:9e:01:09:39:ce:d1:6e:73:41:43:48:5d:e6:aa:
                    07:96:b7:94:67:90:bb:f7:f5:f2:9b:35:a2:b2:d6:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:7a:e3:42:5c:85:19:1e:c1:83:c9:89:fa:82:51:19:
        ca:0d:05:f6:2b:68:cc:37:59:10:98:5a:19:5a:22:fc:
        3e:8d:3f:cf:50:bb:5b:c6:cb:bc:0e:36:0c:c2:5a:b5:
        e2:0e:9b:35:0d:01:f0:ae:30:bb:11:de:67:e6:9a:0d:
        d5:ef:d2:5e:ab:1c:49:df:5a:94:b1:b0:36:83:d1:a5:
        04:2a:e7:5b:71:54:c0:19:be:c7:ae:9c:1e:c3:e5:63:
        1e:76:da:05:66:25:7a:57:d8:01:69:01:00:fd:4f:88:
        5c:52:6f:9a:44:5b:59:00:ab:ad:af:b5:61:92:a9:ce:
        94:43:32:94:25:4a:3b:4c:b1:59:66:6f:f9:82:bb:7c:
        86:4a:b0:68:af:b8:b7:20:2a:03:cd:e4:05:18:de:f1:
        3d:2c:c0:37:05:bd:b6:ab:ab:46:f3:55:67:cf:d8:ed:
        57:1f:b4:dd:77:78:bf:27:81:fa:2a:4c:0c:57:34:95:
        18:9d:5e:8a:8a:61:1d:41:8c:6e:2b:f1:e6:54:9b:94:
        16:38:4e:75:1b:1c:8b:71:7f:24:6e:17:12:35:26:9b:
        c4:42:09:3a:59:52:ae:e8:c2:28:86:2c:92:a8:86:df:
        b7:81:48:a6:d5:db:90:f8:23:66:64:50:ba:c2:7e:f4
    Fingerprint (SHA-256):
        63:C3:80:D6:65:71:C1:68:CA:36:05:70:63:F7:B1:C3:0A:53:8D:A8:B8:53:4C:F5:EB:63:F4:88:F6:CB:E1:74
    Fingerprint (SHA1):
        A7:95:D9:78:28:A6:E8:EA:9C:6E:FE:EE:38:64:A7:38:F5:DB:45:3F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6718: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #6719: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #6720: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #6721: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #6722: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #6723: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155056 (0x1dee4730)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:51:33 2017
            Not After : Mon May 02 15:51:33 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:63:a9:bc:a5:dc:7d:06:0f:59:c9:28:cb:d7:03:1b:
                    6a:17:40:27:26:66:16:f6:b2:9f:9a:58:d3:80:72:53:
                    55:c6:44:7b:1d:ca:b2:20:2d:38:2c:47:64:7a:9d:15:
                    3d:ff:85:c6:50:58:19:a1:d0:1b:24:ab:cf:81:84:c7:
                    a1:5a:f1:91:b1:54:c4:ec:62:b5:41:66:cb:84:9d:50:
                    9c:83:e8:0d:49:74:37:9f:1e:56:ac:96:4b:35:9a:f4:
                    c4:6e:35:08:08:25:f0:7f:82:ba:84:ae:a3:d6:5e:eb:
                    94:d7:85:62:be:a5:8c:1b:76:4c:29:58:e8:36:23:97:
                    21:5a:e8:9f:7d:e8:a5:1f:74:7f:d2:89:d7:68:e2:14:
                    44:37:83:30:69:7d:55:37:33:6f:24:8e:0c:09:d3:8a:
                    4e:95:47:aa:f0:38:d9:2a:a0:43:45:e5:ea:d7:29:d4:
                    c5:9b:53:30:39:de:b4:42:cc:90:59:c1:7e:f7:2d:e6:
                    ef:f6:bd:64:bd:92:fa:49:3e:36:0e:4a:4b:6f:41:51:
                    7f:0c:35:e6:f3:9c:9d:87:e3:8a:22:38:75:2f:46:b3:
                    1c:f9:58:32:38:1d:e3:ec:b4:14:b8:96:04:3b:80:48:
                    fc:d4:5c:25:ae:52:a2:83:5e:f9:78:ca:2c:db:1d:95
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:89:0b:8b:eb:99:af:ae:45:5a:30:94:53:1b:7b:42:
        5b:21:57:6f:b6:dc:85:f5:e0:95:99:da:06:c4:ba:cc:
        e6:7a:a7:09:a6:01:a2:8d:bc:eb:cf:49:a2:78:1b:8a:
        42:80:f0:eb:48:93:52:5c:b2:d9:d9:11:fa:55:29:59:
        1c:e5:b5:6c:8b:18:d4:06:b2:8f:5f:37:5f:e1:7e:38:
        8f:75:32:5c:7c:88:02:77:45:07:63:c9:47:bf:3b:28:
        ab:8f:fe:ab:fb:12:04:2b:3e:a4:7a:21:9e:8c:74:c1:
        c1:c4:cc:37:fb:5b:1f:08:12:54:9f:b8:44:b6:64:fe:
        e5:d5:f5:2b:12:5f:92:5a:79:25:7e:0d:7e:92:47:4c:
        58:98:6f:fd:9a:41:4f:8e:05:b1:27:14:6a:16:4c:13:
        33:2b:b2:d4:d3:2c:eb:7b:b8:58:a1:f6:31:94:59:38:
        89:45:7e:be:77:fe:f2:6c:6b:bd:29:45:6f:56:77:c9:
        c6:c2:a6:a2:f9:24:a9:65:13:46:24:8d:3b:c7:55:51:
        61:0d:7f:ad:ab:44:bd:5e:13:f9:1a:2f:47:67:0a:a2:
        27:63:16:7a:83:44:8a:11:ae:bc:0e:59:13:63:8f:1c:
        76:87:f1:58:e3:b1:14:0a:1e:41:47:f4:65:a3:b1:6a
    Fingerprint (SHA-256):
        35:5C:3B:C2:19:62:EB:EA:C9:EE:BE:29:B7:46:84:43:48:81:46:D5:01:C9:D6:01:0B:C4:8D:8E:CF:29:ED:C6
    Fingerprint (SHA1):
        87:94:DD:E3:7E:4A:D1:50:A2:E8:39:6C:21:F0:5E:25:83:3D:ED:E4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6724: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #6725: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #6726: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #6727: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #6728: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6729: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6730: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6731: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6732: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6733: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6734: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6735: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6736: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6737: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6738: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #6739: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6740: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #6741: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6742: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #6743: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6744: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6745: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #6746: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #6747: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 2697 at Tue May  2 15:51:36 UTC 2017
kill -USR1 2697
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 2697 killed at Tue May  2 15:51:36 UTC 2017
httpserv starting at Tue May  2 15:51:36 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 15:51:36 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 18100 >/dev/null 2>/dev/null
httpserv with PID 18100 found at Tue May  2 15:51:36 UTC 2017
httpserv with PID 18100 started at Tue May  2 15:51:36 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #6748: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155058 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6749: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #6750: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #6751: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155059 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6752: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #6753: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #6754: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6755: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155060 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6756: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6757: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155061 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6758: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6759: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #6760: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6761: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6762: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502155062   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6763: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6764: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6765: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #6766: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #6767: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155059 (0x1dee4733)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:51:37 2017
            Not After : Mon May 02 15:51:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:d2:28:9a:d9:bc:8a:b1:f2:22:dc:4e:c2:d3:23:98:
                    97:9e:19:dd:d5:52:01:f0:5c:26:f4:11:35:02:23:5b:
                    e1:f9:49:78:ea:a4:48:25:dc:58:fa:f5:66:3f:4a:91:
                    66:50:c5:6c:21:e3:e3:85:fb:64:10:f6:77:56:c1:f1:
                    6e:45:68:12:9f:9a:ab:72:45:b5:83:0a:61:85:f1:0f:
                    8e:ec:6f:0e:c5:2e:90:60:aa:6f:a1:b6:bb:8a:df:96:
                    9c:5c:2e:2f:ea:8a:e6:05:e6:bc:bd:12:d8:fa:25:56:
                    a7:ef:16:1f:25:04:4d:90:db:ec:23:7d:7f:b1:4e:ba:
                    05:0f:66:d1:c4:b2:92:6c:e5:2e:b2:b3:d1:26:d1:3e:
                    3d:28:56:79:3a:1d:8a:d8:fe:8c:ee:f5:98:4a:75:df:
                    1f:b6:ba:05:1e:7e:12:0e:6c:e0:84:9a:2f:bd:1f:0a:
                    f3:ee:30:9c:66:67:24:08:1d:2d:08:62:2b:b2:ed:c5:
                    40:67:30:14:25:2c:18:31:7a:40:df:49:97:57:4d:f7:
                    31:dd:39:10:fe:94:c0:41:99:8f:1d:7b:87:64:cc:dd:
                    7a:55:77:f8:c5:57:bd:40:38:45:42:63:fd:0c:81:d4:
                    8e:0e:3c:cf:70:6c:be:7b:93:62:3c:ef:5b:c7:13:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:cb:6c:55:18:c9:a6:3e:15:aa:d3:45:d2:5a:90:9c:
        64:f0:2b:76:60:f7:82:cf:32:09:aa:4d:67:3e:f2:e5:
        3f:a9:d2:5f:58:94:bf:d6:53:50:30:70:8f:44:81:70:
        bb:fc:4f:93:e5:6a:41:3c:09:41:db:12:b2:f1:68:4e:
        32:89:a7:9f:20:d1:76:cf:a2:cd:6c:12:54:3e:21:ec:
        2e:1e:7d:14:a3:68:78:cc:4d:2a:65:5d:e4:8b:bd:53:
        f8:27:3b:c1:75:bd:ae:a1:01:62:3d:71:b6:ef:a2:98:
        57:a2:ac:e4:64:6a:7f:da:ee:b6:d3:cd:79:1c:93:e5:
        54:eb:9b:e8:a5:a5:73:98:28:ec:b1:c0:18:bc:fa:d2:
        13:9c:13:3e:dd:7b:65:8b:ea:b4:d1:83:48:e6:42:c0:
        9b:4a:34:13:04:14:78:5a:0e:1a:e5:7b:6b:c3:5a:08:
        0a:45:b8:75:2a:8e:79:81:59:d8:41:a5:0d:1b:f7:f6:
        ad:a3:4e:c1:26:3c:ab:5e:83:1e:55:42:56:d7:32:f3:
        f9:bc:e9:e2:d1:b4:dd:7c:a5:a2:90:a0:8e:93:eb:e3:
        6b:b2:e6:fa:00:55:37:70:df:04:8b:41:78:16:0f:da:
        b4:60:3f:61:3a:00:f8:bc:dc:d2:af:13:8e:e1:e8:bc
    Fingerprint (SHA-256):
        79:C5:6A:3B:07:D8:21:14:F3:6D:41:51:98:CF:16:BB:F7:68:B5:44:3E:1B:1A:36:F2:76:19:7E:F7:05:FB:BD
    Fingerprint (SHA1):
        7D:B7:C7:39:5B:F5:34:91:7C:1E:E1:F8:42:92:8E:6D:47:F4:BB:4F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6768: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155058 (0x1dee4732)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:51:36 2017
            Not After : Mon May 02 15:51:36 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:8d:6c:b3:4b:a3:f5:c5:31:ad:0d:e6:a6:b6:69:ef:
                    2a:fd:6b:7b:d3:38:30:ee:9a:da:2d:38:28:0d:b0:b9:
                    5f:11:d3:43:10:35:0b:e3:0b:6a:26:15:d2:c9:18:f6:
                    55:9c:7d:93:b4:0f:b2:9d:d2:27:41:45:c1:aa:8b:b6:
                    3d:49:76:75:86:7d:3d:4c:8e:26:89:22:c1:9b:58:0e:
                    ce:19:e9:28:5a:ab:6c:7a:25:c4:ba:47:8c:db:c4:18:
                    b8:fe:3a:66:2e:8a:2b:47:48:02:19:57:2d:b9:98:8a:
                    58:f7:b0:32:22:18:28:54:19:f2:eb:38:4d:1b:36:4b:
                    95:b8:ac:12:83:ff:1b:49:bb:14:47:f7:04:e2:95:f3:
                    29:38:d1:29:51:ec:31:d0:7a:d4:76:0d:8f:05:47:60:
                    cf:36:b9:9e:49:fc:a6:31:a8:88:f9:31:d4:67:c4:30:
                    b8:be:fb:8d:c2:24:7c:2d:26:23:8c:8c:4f:92:40:ce:
                    25:1b:84:3c:36:b9:a2:f5:ba:bb:fe:db:ae:74:09:1f:
                    66:63:07:de:47:f8:36:1e:d5:af:73:f7:59:10:a5:e7:
                    ca:fe:1b:3e:95:5c:fe:79:85:8c:6a:02:2e:4c:30:cc:
                    ed:fd:00:03:e0:9c:2d:68:52:41:95:8f:f1:0f:72:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:1c:d3:3d:18:59:fb:cb:db:3b:32:03:5e:63:b3:1a:
        2b:c6:0d:b1:a9:84:70:09:8f:0a:db:51:a5:28:ae:09:
        22:70:71:46:81:eb:c3:4d:7f:2f:45:d6:cd:cb:9d:c9:
        2d:78:78:c1:0c:ab:ff:de:90:10:17:d1:db:f2:63:8a:
        e9:b0:d1:ae:a0:22:0b:b8:d8:40:35:17:f9:2a:f6:ad:
        75:fa:48:8b:7a:1c:76:e9:32:30:e7:43:41:28:3d:87:
        00:ec:37:37:57:f0:63:64:22:2c:23:0f:a5:1b:f6:81:
        ff:d4:7b:dc:5c:10:70:dc:06:90:45:00:20:be:af:b6:
        66:3d:29:a2:40:b4:39:71:3e:20:41:4c:8b:d1:04:53:
        29:a0:df:a9:ff:e6:2e:76:13:7e:d3:e6:4d:a7:d8:a8:
        1b:62:a5:61:e1:e2:29:ea:c2:65:6f:48:36:c6:6b:91:
        a2:38:26:4e:68:c0:2d:ee:1d:1c:ac:7d:a9:92:ee:51:
        74:64:17:ec:15:24:83:1e:df:b8:dd:28:b9:78:22:1e:
        8e:3e:e5:80:18:52:17:f6:c3:40:35:7b:dc:cd:a9:5f:
        fa:12:99:1b:45:4d:38:fb:36:13:08:93:1d:dd:25:b5:
        08:c8:db:8f:db:cc:c0:68:43:94:86:51:cd:39:40:ab
    Fingerprint (SHA-256):
        F9:9B:84:6D:2E:DC:91:32:5A:92:63:F7:29:2F:9A:0C:F2:67:D4:B6:A3:2B:94:0D:A4:C7:E0:EA:25:C3:2D:42
    Fingerprint (SHA1):
        72:30:48:FA:0E:A1:EF:F9:03:9A:A9:F3:22:87:D0:59:07:DB:AC:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6769: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6770: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #6771: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #6772: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155058 (0x1dee4732)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:51:36 2017
            Not After : Mon May 02 15:51:36 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:8d:6c:b3:4b:a3:f5:c5:31:ad:0d:e6:a6:b6:69:ef:
                    2a:fd:6b:7b:d3:38:30:ee:9a:da:2d:38:28:0d:b0:b9:
                    5f:11:d3:43:10:35:0b:e3:0b:6a:26:15:d2:c9:18:f6:
                    55:9c:7d:93:b4:0f:b2:9d:d2:27:41:45:c1:aa:8b:b6:
                    3d:49:76:75:86:7d:3d:4c:8e:26:89:22:c1:9b:58:0e:
                    ce:19:e9:28:5a:ab:6c:7a:25:c4:ba:47:8c:db:c4:18:
                    b8:fe:3a:66:2e:8a:2b:47:48:02:19:57:2d:b9:98:8a:
                    58:f7:b0:32:22:18:28:54:19:f2:eb:38:4d:1b:36:4b:
                    95:b8:ac:12:83:ff:1b:49:bb:14:47:f7:04:e2:95:f3:
                    29:38:d1:29:51:ec:31:d0:7a:d4:76:0d:8f:05:47:60:
                    cf:36:b9:9e:49:fc:a6:31:a8:88:f9:31:d4:67:c4:30:
                    b8:be:fb:8d:c2:24:7c:2d:26:23:8c:8c:4f:92:40:ce:
                    25:1b:84:3c:36:b9:a2:f5:ba:bb:fe:db:ae:74:09:1f:
                    66:63:07:de:47:f8:36:1e:d5:af:73:f7:59:10:a5:e7:
                    ca:fe:1b:3e:95:5c:fe:79:85:8c:6a:02:2e:4c:30:cc:
                    ed:fd:00:03:e0:9c:2d:68:52:41:95:8f:f1:0f:72:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:1c:d3:3d:18:59:fb:cb:db:3b:32:03:5e:63:b3:1a:
        2b:c6:0d:b1:a9:84:70:09:8f:0a:db:51:a5:28:ae:09:
        22:70:71:46:81:eb:c3:4d:7f:2f:45:d6:cd:cb:9d:c9:
        2d:78:78:c1:0c:ab:ff:de:90:10:17:d1:db:f2:63:8a:
        e9:b0:d1:ae:a0:22:0b:b8:d8:40:35:17:f9:2a:f6:ad:
        75:fa:48:8b:7a:1c:76:e9:32:30:e7:43:41:28:3d:87:
        00:ec:37:37:57:f0:63:64:22:2c:23:0f:a5:1b:f6:81:
        ff:d4:7b:dc:5c:10:70:dc:06:90:45:00:20:be:af:b6:
        66:3d:29:a2:40:b4:39:71:3e:20:41:4c:8b:d1:04:53:
        29:a0:df:a9:ff:e6:2e:76:13:7e:d3:e6:4d:a7:d8:a8:
        1b:62:a5:61:e1:e2:29:ea:c2:65:6f:48:36:c6:6b:91:
        a2:38:26:4e:68:c0:2d:ee:1d:1c:ac:7d:a9:92:ee:51:
        74:64:17:ec:15:24:83:1e:df:b8:dd:28:b9:78:22:1e:
        8e:3e:e5:80:18:52:17:f6:c3:40:35:7b:dc:cd:a9:5f:
        fa:12:99:1b:45:4d:38:fb:36:13:08:93:1d:dd:25:b5:
        08:c8:db:8f:db:cc:c0:68:43:94:86:51:cd:39:40:ab
    Fingerprint (SHA-256):
        F9:9B:84:6D:2E:DC:91:32:5A:92:63:F7:29:2F:9A:0C:F2:67:D4:B6:A3:2B:94:0D:A4:C7:E0:EA:25:C3:2D:42
    Fingerprint (SHA1):
        72:30:48:FA:0E:A1:EF:F9:03:9A:A9:F3:22:87:D0:59:07:DB:AC:C0
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6773: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155059 (0x1dee4733)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:51:37 2017
            Not After : Mon May 02 15:51:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:d2:28:9a:d9:bc:8a:b1:f2:22:dc:4e:c2:d3:23:98:
                    97:9e:19:dd:d5:52:01:f0:5c:26:f4:11:35:02:23:5b:
                    e1:f9:49:78:ea:a4:48:25:dc:58:fa:f5:66:3f:4a:91:
                    66:50:c5:6c:21:e3:e3:85:fb:64:10:f6:77:56:c1:f1:
                    6e:45:68:12:9f:9a:ab:72:45:b5:83:0a:61:85:f1:0f:
                    8e:ec:6f:0e:c5:2e:90:60:aa:6f:a1:b6:bb:8a:df:96:
                    9c:5c:2e:2f:ea:8a:e6:05:e6:bc:bd:12:d8:fa:25:56:
                    a7:ef:16:1f:25:04:4d:90:db:ec:23:7d:7f:b1:4e:ba:
                    05:0f:66:d1:c4:b2:92:6c:e5:2e:b2:b3:d1:26:d1:3e:
                    3d:28:56:79:3a:1d:8a:d8:fe:8c:ee:f5:98:4a:75:df:
                    1f:b6:ba:05:1e:7e:12:0e:6c:e0:84:9a:2f:bd:1f:0a:
                    f3:ee:30:9c:66:67:24:08:1d:2d:08:62:2b:b2:ed:c5:
                    40:67:30:14:25:2c:18:31:7a:40:df:49:97:57:4d:f7:
                    31:dd:39:10:fe:94:c0:41:99:8f:1d:7b:87:64:cc:dd:
                    7a:55:77:f8:c5:57:bd:40:38:45:42:63:fd:0c:81:d4:
                    8e:0e:3c:cf:70:6c:be:7b:93:62:3c:ef:5b:c7:13:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:cb:6c:55:18:c9:a6:3e:15:aa:d3:45:d2:5a:90:9c:
        64:f0:2b:76:60:f7:82:cf:32:09:aa:4d:67:3e:f2:e5:
        3f:a9:d2:5f:58:94:bf:d6:53:50:30:70:8f:44:81:70:
        bb:fc:4f:93:e5:6a:41:3c:09:41:db:12:b2:f1:68:4e:
        32:89:a7:9f:20:d1:76:cf:a2:cd:6c:12:54:3e:21:ec:
        2e:1e:7d:14:a3:68:78:cc:4d:2a:65:5d:e4:8b:bd:53:
        f8:27:3b:c1:75:bd:ae:a1:01:62:3d:71:b6:ef:a2:98:
        57:a2:ac:e4:64:6a:7f:da:ee:b6:d3:cd:79:1c:93:e5:
        54:eb:9b:e8:a5:a5:73:98:28:ec:b1:c0:18:bc:fa:d2:
        13:9c:13:3e:dd:7b:65:8b:ea:b4:d1:83:48:e6:42:c0:
        9b:4a:34:13:04:14:78:5a:0e:1a:e5:7b:6b:c3:5a:08:
        0a:45:b8:75:2a:8e:79:81:59:d8:41:a5:0d:1b:f7:f6:
        ad:a3:4e:c1:26:3c:ab:5e:83:1e:55:42:56:d7:32:f3:
        f9:bc:e9:e2:d1:b4:dd:7c:a5:a2:90:a0:8e:93:eb:e3:
        6b:b2:e6:fa:00:55:37:70:df:04:8b:41:78:16:0f:da:
        b4:60:3f:61:3a:00:f8:bc:dc:d2:af:13:8e:e1:e8:bc
    Fingerprint (SHA-256):
        79:C5:6A:3B:07:D8:21:14:F3:6D:41:51:98:CF:16:BB:F7:68:B5:44:3E:1B:1A:36:F2:76:19:7E:F7:05:FB:BD
    Fingerprint (SHA1):
        7D:B7:C7:39:5B:F5:34:91:7C:1E:E1:F8:42:92:8E:6D:47:F4:BB:4F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6774: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #6775: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #6776: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6777: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6778: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #6779: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155059 (0x1dee4733)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:51:37 2017
            Not After : Mon May 02 15:51:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:d2:28:9a:d9:bc:8a:b1:f2:22:dc:4e:c2:d3:23:98:
                    97:9e:19:dd:d5:52:01:f0:5c:26:f4:11:35:02:23:5b:
                    e1:f9:49:78:ea:a4:48:25:dc:58:fa:f5:66:3f:4a:91:
                    66:50:c5:6c:21:e3:e3:85:fb:64:10:f6:77:56:c1:f1:
                    6e:45:68:12:9f:9a:ab:72:45:b5:83:0a:61:85:f1:0f:
                    8e:ec:6f:0e:c5:2e:90:60:aa:6f:a1:b6:bb:8a:df:96:
                    9c:5c:2e:2f:ea:8a:e6:05:e6:bc:bd:12:d8:fa:25:56:
                    a7:ef:16:1f:25:04:4d:90:db:ec:23:7d:7f:b1:4e:ba:
                    05:0f:66:d1:c4:b2:92:6c:e5:2e:b2:b3:d1:26:d1:3e:
                    3d:28:56:79:3a:1d:8a:d8:fe:8c:ee:f5:98:4a:75:df:
                    1f:b6:ba:05:1e:7e:12:0e:6c:e0:84:9a:2f:bd:1f:0a:
                    f3:ee:30:9c:66:67:24:08:1d:2d:08:62:2b:b2:ed:c5:
                    40:67:30:14:25:2c:18:31:7a:40:df:49:97:57:4d:f7:
                    31:dd:39:10:fe:94:c0:41:99:8f:1d:7b:87:64:cc:dd:
                    7a:55:77:f8:c5:57:bd:40:38:45:42:63:fd:0c:81:d4:
                    8e:0e:3c:cf:70:6c:be:7b:93:62:3c:ef:5b:c7:13:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:cb:6c:55:18:c9:a6:3e:15:aa:d3:45:d2:5a:90:9c:
        64:f0:2b:76:60:f7:82:cf:32:09:aa:4d:67:3e:f2:e5:
        3f:a9:d2:5f:58:94:bf:d6:53:50:30:70:8f:44:81:70:
        bb:fc:4f:93:e5:6a:41:3c:09:41:db:12:b2:f1:68:4e:
        32:89:a7:9f:20:d1:76:cf:a2:cd:6c:12:54:3e:21:ec:
        2e:1e:7d:14:a3:68:78:cc:4d:2a:65:5d:e4:8b:bd:53:
        f8:27:3b:c1:75:bd:ae:a1:01:62:3d:71:b6:ef:a2:98:
        57:a2:ac:e4:64:6a:7f:da:ee:b6:d3:cd:79:1c:93:e5:
        54:eb:9b:e8:a5:a5:73:98:28:ec:b1:c0:18:bc:fa:d2:
        13:9c:13:3e:dd:7b:65:8b:ea:b4:d1:83:48:e6:42:c0:
        9b:4a:34:13:04:14:78:5a:0e:1a:e5:7b:6b:c3:5a:08:
        0a:45:b8:75:2a:8e:79:81:59:d8:41:a5:0d:1b:f7:f6:
        ad:a3:4e:c1:26:3c:ab:5e:83:1e:55:42:56:d7:32:f3:
        f9:bc:e9:e2:d1:b4:dd:7c:a5:a2:90:a0:8e:93:eb:e3:
        6b:b2:e6:fa:00:55:37:70:df:04:8b:41:78:16:0f:da:
        b4:60:3f:61:3a:00:f8:bc:dc:d2:af:13:8e:e1:e8:bc
    Fingerprint (SHA-256):
        79:C5:6A:3B:07:D8:21:14:F3:6D:41:51:98:CF:16:BB:F7:68:B5:44:3E:1B:1A:36:F2:76:19:7E:F7:05:FB:BD
    Fingerprint (SHA1):
        7D:B7:C7:39:5B:F5:34:91:7C:1E:E1:F8:42:92:8E:6D:47:F4:BB:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6780: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155059 (0x1dee4733)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:51:37 2017
            Not After : Mon May 02 15:51:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:d2:28:9a:d9:bc:8a:b1:f2:22:dc:4e:c2:d3:23:98:
                    97:9e:19:dd:d5:52:01:f0:5c:26:f4:11:35:02:23:5b:
                    e1:f9:49:78:ea:a4:48:25:dc:58:fa:f5:66:3f:4a:91:
                    66:50:c5:6c:21:e3:e3:85:fb:64:10:f6:77:56:c1:f1:
                    6e:45:68:12:9f:9a:ab:72:45:b5:83:0a:61:85:f1:0f:
                    8e:ec:6f:0e:c5:2e:90:60:aa:6f:a1:b6:bb:8a:df:96:
                    9c:5c:2e:2f:ea:8a:e6:05:e6:bc:bd:12:d8:fa:25:56:
                    a7:ef:16:1f:25:04:4d:90:db:ec:23:7d:7f:b1:4e:ba:
                    05:0f:66:d1:c4:b2:92:6c:e5:2e:b2:b3:d1:26:d1:3e:
                    3d:28:56:79:3a:1d:8a:d8:fe:8c:ee:f5:98:4a:75:df:
                    1f:b6:ba:05:1e:7e:12:0e:6c:e0:84:9a:2f:bd:1f:0a:
                    f3:ee:30:9c:66:67:24:08:1d:2d:08:62:2b:b2:ed:c5:
                    40:67:30:14:25:2c:18:31:7a:40:df:49:97:57:4d:f7:
                    31:dd:39:10:fe:94:c0:41:99:8f:1d:7b:87:64:cc:dd:
                    7a:55:77:f8:c5:57:bd:40:38:45:42:63:fd:0c:81:d4:
                    8e:0e:3c:cf:70:6c:be:7b:93:62:3c:ef:5b:c7:13:7d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:cb:6c:55:18:c9:a6:3e:15:aa:d3:45:d2:5a:90:9c:
        64:f0:2b:76:60:f7:82:cf:32:09:aa:4d:67:3e:f2:e5:
        3f:a9:d2:5f:58:94:bf:d6:53:50:30:70:8f:44:81:70:
        bb:fc:4f:93:e5:6a:41:3c:09:41:db:12:b2:f1:68:4e:
        32:89:a7:9f:20:d1:76:cf:a2:cd:6c:12:54:3e:21:ec:
        2e:1e:7d:14:a3:68:78:cc:4d:2a:65:5d:e4:8b:bd:53:
        f8:27:3b:c1:75:bd:ae:a1:01:62:3d:71:b6:ef:a2:98:
        57:a2:ac:e4:64:6a:7f:da:ee:b6:d3:cd:79:1c:93:e5:
        54:eb:9b:e8:a5:a5:73:98:28:ec:b1:c0:18:bc:fa:d2:
        13:9c:13:3e:dd:7b:65:8b:ea:b4:d1:83:48:e6:42:c0:
        9b:4a:34:13:04:14:78:5a:0e:1a:e5:7b:6b:c3:5a:08:
        0a:45:b8:75:2a:8e:79:81:59:d8:41:a5:0d:1b:f7:f6:
        ad:a3:4e:c1:26:3c:ab:5e:83:1e:55:42:56:d7:32:f3:
        f9:bc:e9:e2:d1:b4:dd:7c:a5:a2:90:a0:8e:93:eb:e3:
        6b:b2:e6:fa:00:55:37:70:df:04:8b:41:78:16:0f:da:
        b4:60:3f:61:3a:00:f8:bc:dc:d2:af:13:8e:e1:e8:bc
    Fingerprint (SHA-256):
        79:C5:6A:3B:07:D8:21:14:F3:6D:41:51:98:CF:16:BB:F7:68:B5:44:3E:1B:1A:36:F2:76:19:7E:F7:05:FB:BD
    Fingerprint (SHA1):
        7D:B7:C7:39:5B:F5:34:91:7C:1E:E1:F8:42:92:8E:6D:47:F4:BB:4F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6781: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #6782: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #6783: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #6784: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6785: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #6786: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155058 (0x1dee4732)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:51:36 2017
            Not After : Mon May 02 15:51:36 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:8d:6c:b3:4b:a3:f5:c5:31:ad:0d:e6:a6:b6:69:ef:
                    2a:fd:6b:7b:d3:38:30:ee:9a:da:2d:38:28:0d:b0:b9:
                    5f:11:d3:43:10:35:0b:e3:0b:6a:26:15:d2:c9:18:f6:
                    55:9c:7d:93:b4:0f:b2:9d:d2:27:41:45:c1:aa:8b:b6:
                    3d:49:76:75:86:7d:3d:4c:8e:26:89:22:c1:9b:58:0e:
                    ce:19:e9:28:5a:ab:6c:7a:25:c4:ba:47:8c:db:c4:18:
                    b8:fe:3a:66:2e:8a:2b:47:48:02:19:57:2d:b9:98:8a:
                    58:f7:b0:32:22:18:28:54:19:f2:eb:38:4d:1b:36:4b:
                    95:b8:ac:12:83:ff:1b:49:bb:14:47:f7:04:e2:95:f3:
                    29:38:d1:29:51:ec:31:d0:7a:d4:76:0d:8f:05:47:60:
                    cf:36:b9:9e:49:fc:a6:31:a8:88:f9:31:d4:67:c4:30:
                    b8:be:fb:8d:c2:24:7c:2d:26:23:8c:8c:4f:92:40:ce:
                    25:1b:84:3c:36:b9:a2:f5:ba:bb:fe:db:ae:74:09:1f:
                    66:63:07:de:47:f8:36:1e:d5:af:73:f7:59:10:a5:e7:
                    ca:fe:1b:3e:95:5c:fe:79:85:8c:6a:02:2e:4c:30:cc:
                    ed:fd:00:03:e0:9c:2d:68:52:41:95:8f:f1:0f:72:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:1c:d3:3d:18:59:fb:cb:db:3b:32:03:5e:63:b3:1a:
        2b:c6:0d:b1:a9:84:70:09:8f:0a:db:51:a5:28:ae:09:
        22:70:71:46:81:eb:c3:4d:7f:2f:45:d6:cd:cb:9d:c9:
        2d:78:78:c1:0c:ab:ff:de:90:10:17:d1:db:f2:63:8a:
        e9:b0:d1:ae:a0:22:0b:b8:d8:40:35:17:f9:2a:f6:ad:
        75:fa:48:8b:7a:1c:76:e9:32:30:e7:43:41:28:3d:87:
        00:ec:37:37:57:f0:63:64:22:2c:23:0f:a5:1b:f6:81:
        ff:d4:7b:dc:5c:10:70:dc:06:90:45:00:20:be:af:b6:
        66:3d:29:a2:40:b4:39:71:3e:20:41:4c:8b:d1:04:53:
        29:a0:df:a9:ff:e6:2e:76:13:7e:d3:e6:4d:a7:d8:a8:
        1b:62:a5:61:e1:e2:29:ea:c2:65:6f:48:36:c6:6b:91:
        a2:38:26:4e:68:c0:2d:ee:1d:1c:ac:7d:a9:92:ee:51:
        74:64:17:ec:15:24:83:1e:df:b8:dd:28:b9:78:22:1e:
        8e:3e:e5:80:18:52:17:f6:c3:40:35:7b:dc:cd:a9:5f:
        fa:12:99:1b:45:4d:38:fb:36:13:08:93:1d:dd:25:b5:
        08:c8:db:8f:db:cc:c0:68:43:94:86:51:cd:39:40:ab
    Fingerprint (SHA-256):
        F9:9B:84:6D:2E:DC:91:32:5A:92:63:F7:29:2F:9A:0C:F2:67:D4:B6:A3:2B:94:0D:A4:C7:E0:EA:25:C3:2D:42
    Fingerprint (SHA1):
        72:30:48:FA:0E:A1:EF:F9:03:9A:A9:F3:22:87:D0:59:07:DB:AC:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6787: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155058 (0x1dee4732)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:51:36 2017
            Not After : Mon May 02 15:51:36 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d7:8d:6c:b3:4b:a3:f5:c5:31:ad:0d:e6:a6:b6:69:ef:
                    2a:fd:6b:7b:d3:38:30:ee:9a:da:2d:38:28:0d:b0:b9:
                    5f:11:d3:43:10:35:0b:e3:0b:6a:26:15:d2:c9:18:f6:
                    55:9c:7d:93:b4:0f:b2:9d:d2:27:41:45:c1:aa:8b:b6:
                    3d:49:76:75:86:7d:3d:4c:8e:26:89:22:c1:9b:58:0e:
                    ce:19:e9:28:5a:ab:6c:7a:25:c4:ba:47:8c:db:c4:18:
                    b8:fe:3a:66:2e:8a:2b:47:48:02:19:57:2d:b9:98:8a:
                    58:f7:b0:32:22:18:28:54:19:f2:eb:38:4d:1b:36:4b:
                    95:b8:ac:12:83:ff:1b:49:bb:14:47:f7:04:e2:95:f3:
                    29:38:d1:29:51:ec:31:d0:7a:d4:76:0d:8f:05:47:60:
                    cf:36:b9:9e:49:fc:a6:31:a8:88:f9:31:d4:67:c4:30:
                    b8:be:fb:8d:c2:24:7c:2d:26:23:8c:8c:4f:92:40:ce:
                    25:1b:84:3c:36:b9:a2:f5:ba:bb:fe:db:ae:74:09:1f:
                    66:63:07:de:47:f8:36:1e:d5:af:73:f7:59:10:a5:e7:
                    ca:fe:1b:3e:95:5c:fe:79:85:8c:6a:02:2e:4c:30:cc:
                    ed:fd:00:03:e0:9c:2d:68:52:41:95:8f:f1:0f:72:27
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        98:1c:d3:3d:18:59:fb:cb:db:3b:32:03:5e:63:b3:1a:
        2b:c6:0d:b1:a9:84:70:09:8f:0a:db:51:a5:28:ae:09:
        22:70:71:46:81:eb:c3:4d:7f:2f:45:d6:cd:cb:9d:c9:
        2d:78:78:c1:0c:ab:ff:de:90:10:17:d1:db:f2:63:8a:
        e9:b0:d1:ae:a0:22:0b:b8:d8:40:35:17:f9:2a:f6:ad:
        75:fa:48:8b:7a:1c:76:e9:32:30:e7:43:41:28:3d:87:
        00:ec:37:37:57:f0:63:64:22:2c:23:0f:a5:1b:f6:81:
        ff:d4:7b:dc:5c:10:70:dc:06:90:45:00:20:be:af:b6:
        66:3d:29:a2:40:b4:39:71:3e:20:41:4c:8b:d1:04:53:
        29:a0:df:a9:ff:e6:2e:76:13:7e:d3:e6:4d:a7:d8:a8:
        1b:62:a5:61:e1:e2:29:ea:c2:65:6f:48:36:c6:6b:91:
        a2:38:26:4e:68:c0:2d:ee:1d:1c:ac:7d:a9:92:ee:51:
        74:64:17:ec:15:24:83:1e:df:b8:dd:28:b9:78:22:1e:
        8e:3e:e5:80:18:52:17:f6:c3:40:35:7b:dc:cd:a9:5f:
        fa:12:99:1b:45:4d:38:fb:36:13:08:93:1d:dd:25:b5:
        08:c8:db:8f:db:cc:c0:68:43:94:86:51:cd:39:40:ab
    Fingerprint (SHA-256):
        F9:9B:84:6D:2E:DC:91:32:5A:92:63:F7:29:2F:9A:0C:F2:67:D4:B6:A3:2B:94:0D:A4:C7:E0:EA:25:C3:2D:42
    Fingerprint (SHA1):
        72:30:48:FA:0E:A1:EF:F9:03:9A:A9:F3:22:87:D0:59:07:DB:AC:C0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #6788: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #6789: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155063 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6790: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #6791: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #6792: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155064 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6793: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #6794: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #6795: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155065 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6796: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #6797: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #6798: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155066 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6799: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #6800: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #6801: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155067 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6802: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #6803: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #6804: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155068 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6805: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #6806: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #6807: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155069 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6808: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #6809: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #6810: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155070 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6811: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #6812: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #6813: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155071 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6814: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #6815: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #6816: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6817: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502155072 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6818: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6819: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502155073 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6820: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6821: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502155074 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6822: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6823: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #6824: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #6825: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6826: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502155075 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6827: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6828: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502155076 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6829: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6830: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502155077 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6831: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6832: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #6833: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #6834: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6835: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502155078 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6836: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6837: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502155079 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6838: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6839: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502155080 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6840: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6841: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #6842: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #6843: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6844: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502155081 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6845: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6846: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502155082 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6847: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6848: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502155083 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6849: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6850: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #6851: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6852: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6853: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502155084   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6854: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6855: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6856: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6857: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155085   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #6858: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6859: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155063 (0x1dee4737)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:41 2017
            Not After : Mon May 02 15:51:41 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:43:c4:a9:2f:b1:0e:b8:b3:ed:d5:a0:cc:d6:ce:8b:
                    53:d2:73:b9:04:42:4a:56:2e:8f:d1:99:1e:47:f2:31:
                    98:80:8b:82:3e:cf:9f:c3:5f:f1:9b:0f:9f:ef:31:53:
                    44:59:27:f1:20:45:19:a0:bd:c6:b1:43:1b:f3:ce:7f:
                    6d:b8:72:18:ab:de:e6:ec:53:ef:a9:ab:4f:52:b5:11:
                    79:62:7a:7a:bd:17:4f:64:e9:e2:23:26:6a:00:9e:6d:
                    5c:4c:bf:a2:e0:98:6b:fe:53:28:b9:b9:26:18:3c:bf:
                    3c:c4:be:8e:19:a0:6a:7d:d0:9d:30:1c:ec:38:fc:2c:
                    11:0d:7c:c8:7e:ad:54:f8:be:ab:43:f9:96:a5:6d:98:
                    00:65:1d:65:31:28:ff:0c:16:10:f4:cd:af:a1:10:71:
                    97:cc:47:22:2a:f9:4b:7a:37:07:d9:85:43:86:52:39:
                    b2:3d:d2:2d:03:47:61:a0:1a:dc:2a:74:39:2f:d8:1b:
                    4a:23:65:3c:91:fa:5f:d3:38:3e:c2:6b:33:76:af:cd:
                    39:94:b0:7e:c5:0f:e9:8d:bf:3a:0f:e4:80:ed:6f:c5:
                    d4:38:56:c3:35:c6:10:5c:53:62:fc:2b:6c:9f:06:74:
                    40:d3:a5:15:61:cd:62:e4:ff:50:53:c0:bc:32:34:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:d3:0c:bb:da:89:cc:d5:13:7d:b9:ed:b2:95:d7:ef:
        5b:cf:8d:d5:90:5b:3f:96:c1:df:9d:3f:e8:de:cc:c6:
        01:2a:f5:6e:b5:2f:ea:4d:83:22:2e:e1:81:6e:e4:e2:
        72:5a:b5:bb:d1:e1:bb:f9:bc:5e:b9:05:51:73:09:88:
        5f:8f:88:9e:29:77:b6:d1:13:1e:5a:ee:6c:86:d4:09:
        e8:c1:75:01:63:42:ed:ee:b2:ce:03:aa:0f:35:6e:1b:
        76:b8:27:7d:68:3b:d5:17:04:a0:b6:63:0e:0b:b7:45:
        5d:89:bf:7b:d3:a5:fb:5b:29:00:b7:0d:62:75:40:72:
        a7:6a:f1:25:51:15:fe:06:1b:d8:40:36:92:4b:d0:43:
        bd:fa:d5:91:f3:10:fc:fc:da:eb:2b:7d:84:29:24:e1:
        8a:50:80:9c:da:ac:a0:26:78:f7:50:ba:f5:f4:93:10:
        10:2a:ae:7c:7e:e8:a6:b9:d9:b0:cb:af:c6:0d:41:61:
        2a:98:48:74:4f:f6:f2:7f:f3:43:f7:82:47:c8:3f:6d:
        9a:2e:69:3f:0f:e6:e6:e0:5d:6e:d6:84:30:12:b5:54:
        fe:c8:44:73:95:89:ba:6c:96:bf:8b:51:cc:df:78:79:
        f2:23:83:34:79:d1:d4:b7:8b:15:e1:81:cb:10:27:d9
    Fingerprint (SHA-256):
        4B:89:7E:1A:4F:41:56:83:04:9C:28:8B:BC:2D:81:4E:30:32:19:28:B0:FA:2C:82:E1:4F:F6:36:CF:B3:53:98
    Fingerprint (SHA1):
        AA:B9:62:80:52:41:08:96:BB:25:EC:BD:97:00:9D:58:DD:3E:9F:CC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6860: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155064 (0x1dee4738)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 15:51:42 2017
            Not After : Mon May 02 15:51:42 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:78:5a:82:be:3c:2f:a8:fa:fd:66:b2:9d:ff:81:72:
                    0c:46:4a:0c:cb:ea:98:e4:7c:64:ce:02:ba:a1:7e:b5:
                    1a:35:63:22:49:22:9a:d9:04:a3:d6:c6:d5:2f:c5:37:
                    2f:6b:6a:c5:4a:59:be:13:40:07:50:f5:93:5e:46:46:
                    97:0b:bd:9a:f6:e3:50:2a:aa:65:f5:fd:80:78:85:ef:
                    13:6c:7a:f2:bc:e6:56:9d:6e:1c:58:36:0d:1a:70:9b:
                    40:d8:e8:41:a9:24:fc:01:39:e1:d2:b5:a9:6a:8f:dc:
                    eb:91:87:6b:5b:3d:e3:3d:56:0b:76:c8:98:18:e4:70:
                    e0:2b:c1:23:47:bc:ea:a6:59:aa:5a:2a:11:62:e7:7b:
                    a0:43:42:90:2c:40:46:40:08:90:b0:9d:d6:90:1e:88:
                    9c:b9:ad:7d:b3:85:d2:12:80:62:52:82:2d:2b:8e:b1:
                    60:01:2a:a9:0d:15:21:4d:87:7a:92:20:b8:01:a0:67:
                    89:c7:60:dd:18:c9:b9:83:98:81:81:04:53:e7:3c:7b:
                    af:fb:49:1c:36:0b:e6:17:b9:27:8b:97:81:eb:ca:2f:
                    38:f5:f0:25:83:65:c0:87:6f:34:5f:45:25:db:98:25:
                    43:4d:e0:20:71:89:77:6f:30:e3:29:a7:9d:cc:4b:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:b5:9b:80:e7:b3:7f:df:be:ab:9e:4d:1b:e7:66:b7:
        67:c5:6e:08:00:b8:cd:44:6b:e7:12:86:ba:27:4f:a3:
        4b:8d:11:a3:6d:46:5f:f5:ed:85:aa:26:a9:fe:94:da:
        42:5b:ad:ee:bf:54:8b:29:0a:9b:45:8b:99:32:33:03:
        a9:9d:11:88:ce:97:15:a7:20:0b:c2:31:26:44:92:f9:
        4e:cb:7f:89:49:b1:62:cd:5e:5a:e5:0b:b0:83:a0:cb:
        cd:82:44:50:21:8d:bf:60:4d:5b:2f:00:12:49:d3:73:
        47:40:b6:b9:a1:d6:fb:f8:0f:33:11:f9:4d:95:2d:2a:
        31:a0:bd:41:7a:87:56:d4:da:c0:9e:64:80:48:54:0d:
        7e:8f:42:eb:59:86:6e:34:7e:1f:11:17:a1:0f:00:a8:
        75:77:67:1c:be:a7:4c:44:a7:60:b2:7e:59:c7:02:76:
        47:e1:c1:cc:d5:d5:9a:3e:07:52:0c:af:de:71:30:65:
        bf:de:b4:6d:30:6c:d9:00:81:ec:9a:80:d5:eb:42:e5:
        92:42:fd:22:5b:a4:81:49:79:94:f3:ad:82:eb:89:75:
        d5:f5:87:dc:35:85:3d:d7:72:9a:13:83:f4:a2:ef:bd:
        b6:df:9d:07:ba:e2:32:f6:1a:b0:e0:47:8f:1f:ad:fd
    Fingerprint (SHA-256):
        B0:FD:DD:3C:E9:19:76:F2:AD:C8:A8:51:B2:7F:7E:9F:9A:9F:19:B9:FE:AF:2B:DF:30:D1:01:C4:16:D9:95:A6
    Fingerprint (SHA1):
        70:14:67:3B:E7:8F:9D:8E:84:CF:3A:1D:B1:65:8A:92:D3:5F:FE:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6861: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155065 (0x1dee4739)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 15:51:43 2017
            Not After : Mon May 02 15:51:43 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    96:b2:79:77:ae:ef:89:08:ec:cc:e5:89:26:65:11:91:
                    96:a6:5c:5b:a0:cc:b3:89:00:a6:ab:27:b1:c6:5f:e2:
                    b2:24:fb:e3:34:4d:7d:67:0e:41:18:c3:99:25:b8:c6:
                    b6:75:33:00:20:1d:43:19:f6:ca:f1:c6:b2:c1:73:81:
                    bf:c9:cf:b3:e3:94:35:64:28:62:68:3c:71:9b:c7:9d:
                    1d:55:58:5b:ad:af:b5:3e:eb:75:ca:62:66:c1:68:2d:
                    6a:ca:90:11:02:20:90:fd:1c:17:40:39:c5:55:bd:8f:
                    8b:64:bb:42:ae:1c:f6:71:e0:1e:90:41:1c:44:6e:2c:
                    ff:e9:e9:39:bb:2f:0e:94:ac:31:03:98:8a:fd:23:27:
                    2e:ef:ca:9f:22:e3:b8:67:fa:37:dc:a8:5b:65:e9:f8:
                    e2:a5:b5:91:6f:a7:6d:1d:90:31:b1:97:01:a3:3e:d7:
                    c7:5e:d1:d1:09:4d:f6:b0:de:fa:c0:2e:a4:0d:91:99:
                    c6:38:e9:d7:8f:ec:0b:53:41:76:99:c2:5b:b2:58:36:
                    27:35:6e:54:6f:1b:0b:fd:52:88:70:7f:60:b9:d2:58:
                    08:f9:ad:5f:cc:4f:6a:b4:7f:a6:47:e1:4e:9e:e6:7f:
                    96:70:72:a1:25:9a:f5:c2:14:19:fa:a5:1c:c1:af:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1d:25:5b:63:91:3b:9e:ed:6a:ed:eb:25:fd:eb:79:cd:
        e5:d3:53:c7:9b:c5:17:3a:1c:66:30:a6:94:6e:2e:cd:
        9c:9a:f3:7f:01:09:a1:62:ce:32:be:4e:f3:db:68:3d:
        c3:80:fe:6d:6b:30:ac:bd:c6:86:0a:14:e3:28:9d:c8:
        09:bf:bd:4f:c8:20:d9:78:00:04:b7:ed:cc:8a:57:4c:
        d3:67:5e:f0:d0:96:9f:28:e5:0f:bc:7a:1f:c4:62:ea:
        6d:2d:95:95:34:b8:0c:9a:98:65:be:7c:e3:ee:aa:80:
        96:17:93:68:f9:fc:8a:7e:e7:3b:c8:4c:5c:f0:9f:e7:
        1e:24:24:e6:8b:32:2e:04:61:20:ff:60:78:91:d0:d0:
        63:44:87:34:81:c2:e6:5a:ec:50:ac:ff:50:65:87:60:
        97:60:5e:c9:06:b5:07:3e:f1:37:a1:7b:5b:f8:35:48:
        30:31:d3:f7:8d:d6:e8:9f:5b:5e:33:dc:72:2a:88:1b:
        76:9d:e4:79:cc:02:58:09:ac:7e:b5:7d:2b:c1:e3:44:
        a4:6d:67:14:ad:3f:e2:06:38:1f:8d:aa:85:cf:0f:4b:
        19:1b:99:4e:23:0c:91:f8:db:cb:f8:58:38:cb:2a:64:
        10:e9:5a:f5:d7:c1:c0:79:5c:3f:cb:86:b5:df:79:a4
    Fingerprint (SHA-256):
        91:D6:CC:5A:3D:5C:4D:B1:0B:8E:42:B3:9A:44:21:17:3F:54:B9:38:55:15:82:7B:03:C3:AC:44:13:9C:09:99
    Fingerprint (SHA1):
        34:70:05:D9:AE:4C:C6:90:6D:11:47:AF:21:B4:5F:45:06:36:06:B8
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #6862: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155066 (0x1dee473a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 15:51:43 2017
            Not After : Mon May 02 15:51:43 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:2e:0b:b0:6b:6c:d4:05:b2:d2:eb:9c:6a:dd:ed:f9:
                    54:07:c3:f4:64:18:a2:64:c0:75:29:a0:6e:e9:c2:fb:
                    e1:7b:c6:7f:1f:db:e8:fe:12:45:b7:67:00:26:cf:aa:
                    c3:63:c6:26:64:6f:f4:a5:a7:f1:3d:e2:da:35:16:b6:
                    e2:ce:a4:d3:82:78:f6:f1:26:50:7c:01:4e:f8:a6:09:
                    6e:51:2f:20:35:a3:77:ea:9e:63:45:cb:5c:9e:3b:dd:
                    49:2e:93:3d:75:91:da:0f:e6:bc:9f:00:1c:0f:17:ba:
                    b7:ff:13:9e:c1:05:94:04:6e:f6:54:dc:cf:0e:07:c2:
                    0c:5f:73:08:af:b5:5c:fa:03:0f:ac:f8:50:e7:a1:ed:
                    86:12:a7:b7:db:ac:a1:d0:85:8e:f9:65:29:8e:a2:af:
                    c5:4f:fb:e3:55:0d:36:49:5c:78:0c:61:c2:ff:00:9d:
                    0d:a3:d1:68:c3:96:da:00:ef:c6:45:62:c1:e3:39:2b:
                    84:e0:60:9f:71:1a:6e:99:c3:1f:bc:c4:ac:e5:a1:6f:
                    d0:9a:dd:06:df:13:b8:ca:17:96:8e:bc:39:dd:b1:73:
                    f2:7e:b6:ba:c9:6c:28:a7:d3:f0:f3:c3:bf:f0:81:af:
                    f1:08:c1:e5:4d:3c:17:71:dc:57:f9:53:53:31:8f:e7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d4:ac:0e:07:94:25:ec:f8:c3:6a:1b:d6:ab:9a:20:e3:
        d0:0e:d4:81:a9:aa:93:75:bf:86:d9:d9:49:29:5d:2b:
        a1:f2:db:4f:2d:93:43:c4:ba:f6:60:7c:39:9e:a5:85:
        32:ba:e7:15:01:92:7d:d4:de:35:01:d1:0a:51:08:3b:
        d2:42:91:fa:8a:c2:73:69:f2:d0:a3:eb:45:d4:b8:9f:
        9d:3e:ba:b6:c6:fd:be:e0:bf:1b:55:13:8d:46:4d:6f:
        0d:d6:18:af:6d:52:4f:d3:b7:8d:bb:fc:94:89:4a:4c:
        15:65:a2:ef:65:c9:c7:ce:61:5f:dc:10:34:f2:da:b6:
        da:26:84:3e:e9:cb:6c:dd:5a:4d:69:44:92:e5:49:a5:
        d8:17:04:0c:15:4c:e5:63:d6:c1:cf:14:5d:e9:09:cf:
        5c:1b:a5:6b:aa:d3:6b:90:6f:90:eb:23:49:4a:a6:2c:
        ac:c6:a1:54:71:07:f7:4a:32:9a:d3:61:13:4f:70:94:
        c1:38:38:ff:bb:dc:32:f3:d1:21:47:5b:dc:2b:c5:81:
        3e:61:67:d0:68:59:19:5f:90:a8:6d:2e:a4:18:d9:0e:
        f2:7d:da:91:eb:fa:cc:ac:54:ef:27:18:10:23:d8:3c:
        b9:e7:92:89:08:06:00:d1:5e:f0:11:fe:a0:7a:46:32
    Fingerprint (SHA-256):
        B8:78:09:55:95:C2:62:87:9D:23:E7:80:17:4A:D8:E5:4C:FD:97:B9:7B:18:4E:CA:59:3D:09:6D:BE:3A:5F:10
    Fingerprint (SHA1):
        F8:D0:C8:9D:E3:00:57:B6:EA:BC:23:A9:B0:82:DE:F5:F1:57:F6:85
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6863: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155067 (0x1dee473b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 15:51:44 2017
            Not After : Mon May 02 15:51:44 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:b1:2b:40:db:22:89:e3:1c:4c:2f:b7:f5:18:d3:28:
                    6f:ab:2c:ee:31:ae:3d:e1:a4:67:35:2c:13:08:21:59:
                    70:53:60:e0:a1:32:cf:75:56:63:eb:4c:86:27:c5:1a:
                    a3:68:7b:92:d5:f6:9a:e2:fc:aa:37:e8:59:5e:39:96:
                    0a:20:e2:83:76:79:a3:d8:42:5f:8d:f8:b0:02:31:b8:
                    f6:26:19:74:ed:78:05:b2:5b:de:17:cc:be:da:3a:2e:
                    60:72:66:6c:1f:f3:a0:29:46:47:0a:57:ea:88:49:6e:
                    3f:c4:f7:25:3b:2c:ad:f5:53:01:9d:e0:82:0b:37:86:
                    93:8c:4b:8f:e3:a9:fe:13:3a:85:8e:56:b6:dc:13:bf:
                    07:92:96:e3:c4:73:c7:bb:81:60:33:58:0c:88:2c:46:
                    d6:12:ff:0f:65:ce:5a:32:e7:81:76:31:94:20:f3:fb:
                    1c:4f:b6:15:0f:14:2a:f4:5d:2b:14:32:a8:c9:ca:82:
                    6f:d6:fd:f9:d9:bd:eb:ad:24:cc:32:30:42:c5:3d:a0:
                    25:3b:5c:34:b3:eb:9f:7b:a7:96:02:42:49:df:de:9f:
                    ad:3a:05:1d:14:00:39:c4:6a:90:71:3e:69:ed:74:9b:
                    b6:42:5d:51:5d:ba:9e:71:5c:46:02:bc:9a:19:a6:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        11:38:55:20:b3:92:e0:9e:f2:d1:e7:56:e0:22:15:9c:
        41:cb:19:42:04:5c:be:7b:dd:00:72:e4:72:a1:89:80:
        bb:2d:28:b2:90:81:a5:dd:c2:3b:e4:63:9d:9b:c4:2a:
        b6:1d:e5:9a:a4:95:c6:48:e0:6e:46:6c:d7:da:44:1c:
        47:b5:be:eb:4e:0f:0b:18:66:3d:27:31:a0:61:26:75:
        76:25:9e:12:79:ff:8b:0d:6e:2e:06:2b:22:94:e1:ae:
        d8:4d:d5:31:95:74:bb:7f:e9:2f:ce:93:a2:16:bd:06:
        3b:f1:b8:c5:31:9f:8a:83:a5:7b:9d:0b:e3:02:71:25:
        83:a9:38:84:87:23:d7:95:ac:dd:32:20:0c:da:81:46:
        74:ec:09:bf:63:02:ba:91:98:b1:be:28:a6:c6:8e:35:
        e7:fc:b5:cd:f2:a6:8e:b8:16:7a:58:ef:c7:13:75:60:
        cc:9c:c0:6c:5c:50:cc:89:1f:ec:89:22:27:fe:59:7d:
        5f:34:fe:62:9c:f8:e7:c9:49:0e:ac:9f:f2:6a:4c:44:
        a2:b1:b8:0e:af:bc:c6:04:d6:e8:18:64:22:59:09:12:
        1e:cd:ca:37:da:b8:b3:7d:3b:c5:6c:1c:1e:2b:d5:3f:
        2c:25:69:2c:35:a8:82:e9:99:76:89:f6:18:d1:e3:51
    Fingerprint (SHA-256):
        96:81:1E:AF:7B:B8:88:D8:10:A0:0A:E4:CB:C1:F7:3E:51:17:41:42:C5:C6:C6:C0:29:F5:DE:7F:CF:A6:A6:AA
    Fingerprint (SHA1):
        3B:6B:7C:DE:92:32:B2:AE:59:23:82:C3:75:82:66:71:EC:63:38:A3
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6864: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155068 (0x1dee473c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 15:51:45 2017
            Not After : Mon May 02 15:51:45 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:c6:05:8e:4d:dd:20:1b:f6:a9:0b:61:08:55:ee:eb:
                    29:01:d2:97:ce:a1:b3:59:e0:55:c6:98:3f:4b:c7:e8:
                    38:d3:42:7c:04:e5:11:ce:19:da:d1:ef:59:53:5f:da:
                    e7:b5:53:71:f2:c8:ad:6a:4b:14:6f:8a:36:aa:5f:7e:
                    79:50:61:d0:0c:e1:00:65:a1:2b:b4:6d:ed:81:48:64:
                    af:a6:0b:2c:ff:03:94:ca:fa:14:ce:da:70:fd:3f:c5:
                    4b:86:9f:0e:6c:60:75:8e:10:b3:06:b9:d7:f5:27:2c:
                    b3:84:3c:57:af:a5:23:fd:b5:92:cf:24:78:1a:4f:1e:
                    51:cc:04:72:e3:6a:1e:3f:f8:eb:bc:e9:fb:fc:c4:4d:
                    97:be:68:f9:1d:b6:9b:0a:5a:21:d0:89:0f:de:72:ee:
                    51:6f:2f:0e:a6:c9:9d:08:f0:ce:77:02:69:c1:ee:85:
                    5d:57:dc:16:a3:17:15:7b:1d:6e:1c:3f:c4:50:9b:9e:
                    dd:82:ba:a6:54:4b:c8:1b:0e:68:52:41:3d:e0:ad:93:
                    9f:79:f1:76:88:3b:82:ab:15:98:ed:92:ee:a1:90:52:
                    2b:e9:83:18:d2:9b:99:0a:75:c1:5a:47:6d:75:c0:fd:
                    8a:e6:e0:f5:1c:51:be:cc:32:62:85:81:7f:97:d8:b9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        99:bc:73:38:c2:b1:d4:be:b7:bf:67:0b:67:85:c8:39:
        c1:51:2c:50:31:22:88:82:18:95:d7:c9:a7:91:09:ef:
        66:00:67:8e:ac:1f:44:b1:ab:d1:c2:63:f2:aa:d8:3f:
        d4:3e:9e:eb:d4:5c:73:e1:19:d6:ba:97:2e:2f:90:bf:
        77:4a:23:7a:42:ed:fa:8c:11:68:13:4f:56:9f:a0:80:
        54:37:b6:aa:1e:5c:0c:78:08:d5:c4:4c:5e:b1:c4:c3:
        2d:23:04:25:2e:9c:a1:7c:26:e0:85:25:ee:37:e6:87:
        1a:3c:6d:13:73:97:7e:b9:31:77:ed:3e:9f:8d:3b:12:
        f8:6d:1a:24:0d:83:07:ce:b0:9c:af:fd:a4:ab:2e:97:
        30:cc:98:b9:6f:0e:13:e3:b5:4a:5d:44:90:60:ff:02:
        44:4e:46:f9:3d:60:e9:40:c9:e6:d0:a6:3a:81:b8:58:
        d4:73:23:67:7e:8a:9d:4d:46:53:cd:d5:bf:fd:29:b8:
        d1:20:7d:92:70:c8:38:3f:48:b1:43:e1:cb:d9:3e:0c:
        fb:a7:ec:66:63:90:aa:5c:6f:bf:5e:c0:0e:49:28:22:
        6a:44:3b:bd:4a:b0:1e:4c:6e:13:22:5f:14:e6:13:e6:
        2d:dc:9d:57:84:90:1d:7c:2f:7b:44:d2:a8:b5:1e:bb
    Fingerprint (SHA-256):
        A5:D1:44:7C:60:D4:87:44:C4:48:EC:E9:10:E9:58:C5:45:7E:A2:1E:61:26:22:A7:03:30:D6:B1:FE:F7:0A:05
    Fingerprint (SHA1):
        8A:B8:B7:97:4B:8B:6D:E0:AE:87:A5:EE:B3:EF:1F:96:41:4B:4D:22
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #6865: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155069 (0x1dee473d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 15:51:45 2017
            Not After : Mon May 02 15:51:45 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:bf:d0:50:f5:06:4c:13:03:6f:ab:e8:53:77:23:54:
                    37:e4:f6:c3:41:0e:fd:96:fb:10:52:31:ce:27:2b:f4:
                    40:e0:e0:65:4f:b0:a4:b1:4c:f6:fc:1d:c9:20:f3:58:
                    b5:89:54:92:ec:c0:87:88:24:4e:6a:c1:86:4a:4c:9c:
                    4f:a5:14:2f:8d:7e:3c:81:6f:2c:5c:bd:50:a4:96:d3:
                    83:91:36:2a:40:c6:ae:a3:bf:fd:e2:90:04:cd:e1:e8:
                    3e:5e:b9:0d:c5:28:91:3f:88:45:dd:26:a0:56:f8:c7:
                    dc:ef:a2:57:e1:27:e3:98:59:99:27:06:f1:d9:32:a1:
                    f5:5b:a2:be:32:fc:7c:31:2b:88:be:8e:3b:b7:1c:36:
                    3b:e0:5f:5d:5b:2e:64:19:2e:85:e5:7f:8e:f4:63:c7:
                    c6:24:80:71:c6:c0:e8:c7:38:34:88:d5:eb:c4:50:4d:
                    34:3f:4f:c7:ea:90:87:85:d4:4c:33:84:36:a4:da:b0:
                    e9:65:2f:d0:94:95:ba:6a:a5:fa:f2:97:45:c8:4d:f8:
                    29:ba:0c:ba:4b:44:f2:0c:ae:40:c0:d5:b3:4d:fa:48:
                    e7:21:50:6e:fa:7d:8b:cf:74:f4:36:1a:d8:9b:d6:bc:
                    59:69:58:df:2c:49:0f:5d:71:cc:e9:f5:30:af:c6:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:69:ca:db:a6:1f:a5:f6:9d:48:92:11:80:ac:6f:4d:
        1f:cb:37:98:9d:64:6a:ea:03:6b:80:66:6a:39:bd:de:
        61:46:ec:77:82:81:37:cc:99:b3:4a:31:3f:4b:6a:72:
        3b:cd:b0:08:56:c2:aa:3c:25:e7:d1:17:5b:ac:45:5a:
        86:a2:f4:13:cd:eb:45:55:f2:d8:72:7b:97:a7:37:1c:
        f4:a6:fd:ee:26:82:e6:88:5b:e8:b6:2f:99:4b:03:31:
        2b:c6:29:3e:38:f0:dc:4d:fc:67:84:ec:51:56:a2:dc:
        fe:1f:5e:1e:bd:fd:6b:c1:97:a5:99:fb:da:bb:c3:5d:
        33:f0:02:92:72:b8:db:2a:28:24:8a:3b:6f:0a:39:4f:
        d0:01:b3:f1:2d:08:44:0d:c7:e1:f6:bc:82:17:93:ff:
        a6:33:b2:7f:30:31:68:3e:06:ea:f0:0d:32:3d:17:0f:
        08:04:44:f7:95:f8:f7:44:8b:7b:c3:f3:d6:a0:de:39:
        8e:69:7e:2f:9d:f2:c6:8e:6b:43:d7:24:10:b7:8a:54:
        1d:be:66:de:dd:7f:e7:8c:eb:61:9f:9e:89:0d:7a:4b:
        c7:13:cd:ab:5e:f5:f1:3b:32:f4:b4:93:4e:be:1d:33:
        90:74:c5:4a:37:d7:e3:6c:7c:30:fe:e9:a4:f0:89:4c
    Fingerprint (SHA-256):
        24:66:F4:7E:89:4A:43:93:CE:D4:A5:91:EE:95:C9:56:7C:75:79:94:30:E3:68:87:A7:91:52:B7:A0:FD:06:33
    Fingerprint (SHA1):
        DA:23:72:CB:0E:8C:75:E5:97:E0:12:4E:6C:37:35:D7:BE:2F:A7:91
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6866: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155070 (0x1dee473e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 15:51:45 2017
            Not After : Mon May 02 15:51:45 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:b3:19:46:93:f6:0f:49:5f:d1:cc:53:0e:8b:30:fd:
                    57:ef:ac:94:f2:91:e0:df:2e:70:00:ae:2f:91:0d:2b:
                    89:2a:6e:52:95:10:a8:e6:09:44:34:11:6c:b7:20:ed:
                    22:cf:00:e0:88:a4:7d:7f:de:58:03:36:ad:f8:d0:8c:
                    e3:91:0c:69:68:f2:9e:0d:0e:0c:90:5d:22:91:15:69:
                    f5:7d:e2:0f:2d:9b:32:0c:dd:70:33:e6:2d:7b:f7:ab:
                    e9:0b:07:80:42:c3:95:ca:70:2b:d4:0d:88:46:df:28:
                    07:10:e0:a9:30:cf:88:79:f7:0f:5f:ba:7f:c6:21:bb:
                    48:81:9b:a1:94:a7:9c:44:0c:b8:d5:5c:89:59:56:ab:
                    b2:82:aa:81:ef:6e:ce:e3:78:3f:5e:f2:39:37:b8:4b:
                    0d:06:75:1e:89:36:d4:d5:f5:36:77:43:1b:ce:37:2e:
                    d4:d9:9f:21:a7:57:18:22:2a:01:0c:f1:15:1b:e4:f8:
                    4c:11:c7:77:16:cb:d1:d0:54:46:56:40:60:24:5e:21:
                    a6:98:c1:97:ac:54:6b:74:9c:f1:a5:3f:27:a9:5f:1a:
                    74:79:52:43:af:90:4a:3a:60:67:1f:dc:1f:d0:84:fc:
                    a7:1a:7c:87:be:8b:b0:1d:ce:a5:1f:5a:72:63:a5:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9d:f8:00:9e:d4:bb:8c:6b:29:de:26:13:f6:16:8d:b1:
        ed:40:60:ba:eb:55:7a:b1:74:5e:0d:94:35:67:c4:b3:
        3c:ba:74:ea:09:1e:aa:cc:1a:a9:41:6e:5f:57:be:63:
        50:b6:a0:d1:3a:1d:6c:ac:cd:c4:b6:51:73:65:28:9a:
        07:ff:50:0b:29:52:e1:ed:50:fe:28:85:ae:0a:f1:93:
        65:62:38:65:3b:f3:aa:8a:2a:96:98:a1:3b:aa:47:73:
        4b:6b:88:ee:cf:7f:c9:3b:ac:0c:71:56:f7:b7:ad:14:
        19:ba:2e:ce:e3:2a:41:4e:40:99:77:66:94:ca:30:5c:
        e0:82:08:48:b9:ca:90:c8:bf:38:42:b7:f9:17:5b:d0:
        f0:a9:56:47:a0:6e:4b:1f:2f:ec:dd:7a:43:bd:6e:72:
        4b:e2:85:91:db:38:ee:85:bd:be:7a:3f:f0:aa:44:4d:
        f3:64:2c:05:6e:c5:6f:ce:bb:6a:6d:30:b2:0d:39:bd:
        1e:06:f3:42:52:ac:3c:96:31:32:96:ba:20:3b:ad:24:
        10:5e:e6:39:35:c4:da:ec:68:ab:ef:1f:94:3c:b7:fe:
        dd:92:a9:ff:16:59:4f:eb:d3:3e:42:a7:2d:b3:89:ac:
        2a:ba:3b:b1:d1:a4:5c:54:70:96:25:e9:d1:cc:fa:ad
    Fingerprint (SHA-256):
        19:6D:18:02:5D:2B:89:18:30:1A:85:C4:BD:0C:73:D8:4A:F6:3F:BB:F3:CA:C6:A1:6E:81:CD:A3:23:10:33:80
    Fingerprint (SHA1):
        26:1F:2D:79:79:7B:03:39:CF:C3:F4:76:71:99:FD:04:3F:8C:72:18
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6867: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155071 (0x1dee473f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 15:51:46 2017
            Not After : Mon May 02 15:51:46 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:cd:a0:1b:dd:96:ff:e6:23:b6:03:41:7f:a2:62:d4:
                    83:5d:80:41:1e:9d:0b:80:07:d4:5b:b4:1d:ce:f6:8f:
                    68:6d:a5:fd:0c:1a:34:28:ad:3c:78:48:a9:77:0f:5b:
                    0f:0e:24:0f:32:94:43:19:87:95:e0:00:d9:61:c2:67:
                    13:3f:b1:04:22:d6:1e:17:fd:e4:59:3e:42:bb:fe:83:
                    6d:7f:f1:d1:53:94:b1:6a:b5:24:b0:41:3b:40:7a:ef:
                    54:d9:b9:bd:da:e3:f8:96:43:db:31:33:45:82:a6:0b:
                    79:69:60:ac:51:0a:ae:b4:f0:60:a2:f8:d5:de:b5:41:
                    23:ee:a8:0f:2e:1a:fe:10:1b:e7:e1:a7:2b:cd:39:96:
                    35:5d:47:16:15:d1:5a:9b:57:e7:c1:99:fb:c5:12:86:
                    96:1a:0d:1e:a3:96:f3:89:01:ee:cb:2d:d8:74:e1:3d:
                    a6:00:c6:9f:bd:b0:81:5d:29:0a:d1:cd:1c:1e:13:ac:
                    a8:0c:d0:05:4c:5d:46:5c:8e:8d:19:f1:d3:92:e4:d9:
                    c4:48:9f:51:86:f3:5b:d5:65:11:c7:6b:92:b3:a6:e5:
                    7d:22:cd:39:ff:42:37:02:fe:c4:78:db:a1:c3:ae:20:
                    01:7a:8b:14:e8:b2:e4:e8:5b:bf:fe:5e:54:da:8f:77
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        91:85:b4:7e:04:f2:19:00:36:8e:b3:b4:f7:cd:ad:dd:
        96:25:58:ec:bf:7f:4d:5f:89:f8:a6:22:61:9a:f0:9b:
        f0:ee:13:79:7b:4d:83:46:30:a6:0b:fd:cb:8c:b5:2f:
        57:66:4d:0b:30:02:d1:a3:c4:0a:46:e1:8d:59:7c:75:
        84:61:39:12:c6:37:df:c0:f7:09:08:e1:12:11:3f:4a:
        93:2b:fe:41:ad:4d:63:79:7b:c4:27:e4:15:3a:17:d1:
        e1:e1:6f:eb:26:c0:93:68:4f:e1:0b:5f:31:28:04:8d:
        a3:d2:99:eb:32:aa:2a:a8:72:ea:24:24:d2:d2:25:43:
        51:82:a2:48:2b:56:40:5f:d7:88:d3:3c:fd:22:d3:54:
        77:71:b5:de:ac:57:e1:a1:06:14:07:8b:8b:11:3a:d4:
        e7:85:f1:e4:49:61:85:86:b5:bd:69:5c:17:01:55:f5:
        93:67:dc:82:e3:09:b4:f7:b2:e7:3c:f2:1a:8b:06:6c:
        59:c7:03:f2:a7:ee:12:c3:29:db:f4:92:33:ed:a8:f3:
        09:63:46:ac:77:31:28:f1:4e:bc:58:54:2c:43:86:96:
        bb:ab:c0:60:8b:ed:15:98:e3:fa:dd:d0:68:f7:c0:e2:
        2c:01:d6:80:59:44:fa:57:f1:04:db:9a:2c:60:e9:55
    Fingerprint (SHA-256):
        5F:C3:D7:75:CF:1D:CF:1F:B9:4B:76:86:DD:58:19:1A:81:AC:D5:73:99:7F:AD:AE:9C:6B:6D:75:54:73:4D:D2
    Fingerprint (SHA1):
        C8:0C:16:47:D6:BA:30:C1:69:7D:F2:BD:53:C8:E3:C8:15:30:2A:E0
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #6868: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6869: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155086 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6870: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6871: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6872: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6873: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155087   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6874: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6875: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6876: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6877: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155088   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6878: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6879: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #6880: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6881: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155089   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6882: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6883: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6884: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155086 (0x1dee474e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:52 2017
            Not After : Mon May 02 15:51:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:14:78:bb:d9:76:cc:bf:87:b3:2f:69:86:09:94:34:
                    34:64:d6:8a:f0:5b:67:82:19:4c:33:55:29:b9:c4:fb:
                    62:b2:f9:54:1f:49:81:00:03:23:0c:c2:a9:4d:22:c3:
                    49:86:b4:39:92:08:78:90:ba:ac:40:4e:c3:78:04:96:
                    9a:90:ff:e2:fa:bc:74:00:78:a3:96:6e:c1:16:5e:be:
                    e5:d2:af:75:bf:af:e4:22:ec:21:61:9c:ba:44:5c:a0:
                    5a:34:c2:18:aa:61:8d:aa:71:d1:73:de:5c:6a:61:29:
                    25:ac:e6:69:3d:fb:7a:47:93:25:8a:ca:68:62:06:e2:
                    14:f7:ed:d8:75:a0:14:2b:77:e4:26:e6:06:57:4b:52:
                    00:cb:18:44:02:31:f5:f5:59:e3:76:84:7a:e8:40:38:
                    53:04:83:96:f3:d9:96:06:ac:e4:15:2c:f3:41:d4:60:
                    d5:4d:e8:4e:8e:42:c1:55:a3:4c:0f:3f:1f:e2:9a:a3:
                    a8:d9:36:54:5a:0b:07:85:8a:b9:07:27:7a:31:d0:6e:
                    d9:6e:a4:fa:3d:d4:cc:14:d5:eb:7d:2a:ca:5d:89:7a:
                    59:1d:cb:b1:d6:3f:11:14:12:9f:f3:35:31:8c:19:6a:
                    d5:64:6d:bf:ce:26:6d:6d:c1:2a:83:3e:2a:cb:b2:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:c4:db:dd:64:ac:d2:2f:ca:bc:94:5b:3b:cc:5e:4a:
        24:1b:92:98:d8:74:aa:85:7b:42:35:fc:6c:62:2f:c1:
        73:ac:57:ed:d0:5a:37:63:38:b0:8b:c0:c7:73:ca:cc:
        7b:d6:0c:24:6e:ea:d1:61:44:9c:f4:5a:cd:97:56:50:
        26:10:0f:2f:ea:86:d1:de:fe:1c:4d:a0:e2:46:1d:db:
        02:b9:73:11:5b:5f:91:17:25:67:9d:35:76:e2:ae:a1:
        42:41:f7:93:d8:02:b3:7a:d8:03:c7:15:c0:83:51:41:
        8d:03:0c:90:35:a1:8c:39:28:d8:b0:9f:86:e6:8e:38:
        ea:2e:4b:2b:1c:6b:b4:ed:0d:ce:51:6d:a9:49:4e:ab:
        5b:33:d8:92:29:94:f3:ba:1e:40:8b:bc:de:36:c1:72:
        a4:2b:a2:c0:51:41:6f:f9:da:4a:f0:2b:28:f5:cf:d8:
        ce:5f:b0:55:af:e4:79:e4:8b:91:b8:1a:85:91:53:4f:
        fb:be:c5:4c:4c:03:8d:bd:09:0a:67:de:77:22:a8:52:
        2a:8f:b2:6b:fb:26:1e:d4:3c:d1:c4:0a:01:93:35:fe:
        b4:3a:74:ee:0b:79:52:de:71:81:1f:c8:12:2c:d8:2d:
        fb:f5:2e:e5:fd:56:37:f4:00:3c:6e:5a:2e:47:15:2e
    Fingerprint (SHA-256):
        B9:05:DB:DB:2C:24:73:F5:FE:0A:F3:DF:BC:75:3D:0D:B3:4E:1A:4B:B2:24:EB:74:C8:AE:10:B1:65:FF:A6:27
    Fingerprint (SHA1):
        93:67:7F:4A:4E:65:CE:C0:D5:0F:2E:F2:5C:FE:C6:70:89:8E:86:E4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6885: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6886: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155087 (0x1dee474f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:53 2017
            Not After : Mon May 02 15:51:53 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:70:05:92:d7:f4:bd:92:d3:5f:5c:1c:77:c2:75:9b:
                    44:2b:47:86:68:99:31:b1:b8:36:8d:58:64:29:87:9b:
                    9d:c1:45:49:8d:86:65:f8:78:ab:4b:f3:cc:7a:64:67:
                    fe:e9:1d:a8:b6:54:8c:40:6f:65:22:23:4f:31:86:2b:
                    e7:ca:5d:6a:c8:84:e5:8e:95:ab:c8:6a:a9:58:b4:96:
                    55:cc:a1:70:c7:c5:a0:97:48:0f:6b:6f:16:d7:00:cd:
                    53:a6:42:fd:6b:79:fa:e4:ca:03:2e:d3:22:80:30:1f:
                    37:cd:93:8a:f6:5a:99:7f:24:40:a5:d9:c6:cd:c1:80:
                    91:b3:13:6f:a8:97:da:a0:9e:2b:df:fb:6c:54:16:d8:
                    7a:be:68:ea:e2:99:5a:cf:5d:50:56:fa:b4:14:03:00:
                    1f:1b:9b:05:7f:4a:9f:12:cd:0d:66:d6:a8:30:51:07:
                    da:e3:e0:0a:33:f4:37:2d:c8:8a:97:2e:8f:16:77:51:
                    de:42:c9:8f:aa:b7:b2:23:d8:eb:b3:61:6d:a0:c6:40:
                    90:c1:58:46:07:e5:9e:f2:33:76:b9:29:65:46:f7:f6:
                    98:12:0e:b9:6d:7f:d4:66:dd:84:2e:a3:34:0f:61:ae:
                    cf:27:f2:bc:17:0d:50:6b:27:1d:84:e5:2a:15:f4:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:94:e1:b4:c3:9c:70:06:6d:fb:f4:16:e6:07:30:31:
        21:5d:38:1e:68:f4:bf:cf:34:f9:10:37:b0:bb:49:d7:
        13:fc:89:67:2b:84:0b:ca:c5:0d:9b:60:a8:ea:db:5f:
        ce:c9:df:37:34:53:f3:b0:fc:1e:86:90:5a:e7:d5:76:
        02:89:fa:cc:9a:a9:dc:ea:f8:64:10:cc:d8:76:31:91:
        07:20:9c:f1:8c:3e:31:50:37:2a:b7:a7:95:78:1a:8d:
        61:dc:1b:65:b4:dc:16:0c:46:09:86:db:c1:de:e9:18:
        4f:92:41:ae:32:d9:af:7a:aa:6f:7c:3f:a8:4b:c7:9c:
        ef:96:60:26:60:d6:35:fd:88:5e:1f:a8:44:87:e1:cf:
        16:fc:5b:27:a3:4a:b5:5e:3f:39:c2:00:88:9f:cb:da:
        a8:87:e6:d0:ff:47:2e:fc:b0:84:b1:9b:51:4e:58:c5:
        b3:38:b9:57:8c:e6:1d:12:db:67:54:24:35:d2:e0:2a:
        f9:12:d4:9a:e2:50:5f:16:6b:dd:cb:4c:c4:2b:81:f3:
        72:5b:30:13:c3:07:70:bb:f3:6d:4b:d3:10:63:fd:51:
        45:b6:b4:ac:f8:24:f6:4c:00:bc:ec:60:90:91:aa:36:
        bb:f9:55:ce:8f:98:88:df:b7:cd:2e:17:af:24:b3:1d
    Fingerprint (SHA-256):
        28:DB:12:25:76:4B:7B:B4:01:D5:59:FC:B0:7B:26:5A:85:C3:20:6A:B1:BC:3D:4B:69:3E:18:1F:88:E4:2E:40
    Fingerprint (SHA1):
        A8:B5:16:B1:93:04:36:C8:7D:6E:07:A1:53:DA:8B:C1:39:78:56:3A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6887: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6888: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155088 (0x1dee4750)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:54 2017
            Not After : Mon May 02 15:51:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:50:d8:cd:fa:7c:9f:4c:f2:16:df:09:1f:3e:09:4e:
                    63:b4:bd:21:71:c8:02:df:8a:eb:44:10:a7:f4:20:b9:
                    30:ee:59:64:cd:30:ee:4b:99:d9:51:56:3f:d7:28:3c:
                    3f:a4:57:13:30:3f:eb:f0:f0:62:c1:f4:b2:14:e2:23:
                    4a:69:44:73:7b:dc:66:3b:f1:91:54:08:69:86:98:d5:
                    1c:6e:93:4a:3f:8a:ad:91:06:9c:5c:f3:3a:d1:a0:31:
                    38:f1:29:1b:72:7d:56:fd:bb:63:f6:c6:4f:e5:82:9a:
                    e4:58:23:34:ab:a3:31:41:98:ef:4a:55:94:67:f4:e9:
                    9b:f4:83:21:fe:bf:75:ea:0f:57:40:39:07:cf:83:2a:
                    fa:a0:33:76:07:74:9c:0d:fe:e6:a9:72:02:d4:de:cf:
                    d9:10:a7:a9:cb:00:53:7f:75:0f:83:b5:d9:ab:2a:28:
                    d7:88:27:aa:c6:ae:1c:11:0a:8e:6d:0f:2e:13:a6:1d:
                    a4:d0:13:9b:65:f6:1b:72:28:40:ce:6c:c7:dc:92:69:
                    a9:23:24:6c:0b:3a:15:4f:b8:9e:55:7f:38:8a:0b:92:
                    4f:b5:ed:47:13:c3:ed:9c:55:57:73:f0:58:a0:33:cc:
                    13:0f:f6:ce:a6:a0:1c:23:f1:1c:46:ff:a0:37:13:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:89:41:eb:e7:f0:ed:13:0c:b5:c9:bb:90:49:1f:8d:
        fd:8c:bc:3c:f2:71:e6:af:ba:f8:ef:64:54:d4:d2:9c:
        9d:38:54:26:98:40:25:89:36:5c:dd:ae:76:fd:86:03:
        ec:a2:60:1c:59:46:35:e2:88:ac:c6:c4:4c:9b:bc:5f:
        67:44:02:63:d6:2a:7e:2f:a2:d8:90:35:be:ce:95:1e:
        57:df:97:10:dc:b5:21:4d:06:7b:cd:9a:c4:3c:d7:53:
        af:e0:99:23:2a:90:dd:9e:c0:74:d9:05:ca:37:6e:02:
        0d:ee:fa:10:38:57:45:03:ab:24:30:15:60:99:88:bd:
        0e:8a:9c:d0:18:e6:8c:a0:d7:5f:25:fd:8a:00:dc:0f:
        d8:60:be:24:ef:44:f5:7a:a6:f1:e9:7c:2f:fc:f8:5f:
        4a:9b:cb:3f:fb:7a:3d:a6:ac:cb:4b:14:88:2a:0c:4c:
        6e:5f:b5:c5:71:ac:05:e0:3a:af:1f:c4:36:10:c5:8a:
        d3:dc:51:fa:80:c4:b5:03:07:86:4a:b5:a7:b8:99:5b:
        35:ec:a9:f9:5d:02:ae:69:85:6c:95:f4:e5:e8:70:0b:
        05:24:b6:da:92:0e:46:d9:f2:a7:b2:61:0c:73:c9:54:
        03:26:79:78:10:05:a3:f9:d3:75:d4:b0:9e:9d:0d:8e
    Fingerprint (SHA-256):
        95:64:9E:AB:78:F0:0B:D5:AD:F1:16:AF:C8:30:12:8F:9C:FE:6A:14:08:5E:83:DE:8A:79:94:DE:BA:DD:CA:1D
    Fingerprint (SHA1):
        11:40:D4:AD:A6:0A:61:56:DA:F5:01:81:78:D8:FE:5C:7B:9E:25:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6889: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6890: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6891: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6892: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6893: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155086 (0x1dee474e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:52 2017
            Not After : Mon May 02 15:51:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:14:78:bb:d9:76:cc:bf:87:b3:2f:69:86:09:94:34:
                    34:64:d6:8a:f0:5b:67:82:19:4c:33:55:29:b9:c4:fb:
                    62:b2:f9:54:1f:49:81:00:03:23:0c:c2:a9:4d:22:c3:
                    49:86:b4:39:92:08:78:90:ba:ac:40:4e:c3:78:04:96:
                    9a:90:ff:e2:fa:bc:74:00:78:a3:96:6e:c1:16:5e:be:
                    e5:d2:af:75:bf:af:e4:22:ec:21:61:9c:ba:44:5c:a0:
                    5a:34:c2:18:aa:61:8d:aa:71:d1:73:de:5c:6a:61:29:
                    25:ac:e6:69:3d:fb:7a:47:93:25:8a:ca:68:62:06:e2:
                    14:f7:ed:d8:75:a0:14:2b:77:e4:26:e6:06:57:4b:52:
                    00:cb:18:44:02:31:f5:f5:59:e3:76:84:7a:e8:40:38:
                    53:04:83:96:f3:d9:96:06:ac:e4:15:2c:f3:41:d4:60:
                    d5:4d:e8:4e:8e:42:c1:55:a3:4c:0f:3f:1f:e2:9a:a3:
                    a8:d9:36:54:5a:0b:07:85:8a:b9:07:27:7a:31:d0:6e:
                    d9:6e:a4:fa:3d:d4:cc:14:d5:eb:7d:2a:ca:5d:89:7a:
                    59:1d:cb:b1:d6:3f:11:14:12:9f:f3:35:31:8c:19:6a:
                    d5:64:6d:bf:ce:26:6d:6d:c1:2a:83:3e:2a:cb:b2:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        cb:c4:db:dd:64:ac:d2:2f:ca:bc:94:5b:3b:cc:5e:4a:
        24:1b:92:98:d8:74:aa:85:7b:42:35:fc:6c:62:2f:c1:
        73:ac:57:ed:d0:5a:37:63:38:b0:8b:c0:c7:73:ca:cc:
        7b:d6:0c:24:6e:ea:d1:61:44:9c:f4:5a:cd:97:56:50:
        26:10:0f:2f:ea:86:d1:de:fe:1c:4d:a0:e2:46:1d:db:
        02:b9:73:11:5b:5f:91:17:25:67:9d:35:76:e2:ae:a1:
        42:41:f7:93:d8:02:b3:7a:d8:03:c7:15:c0:83:51:41:
        8d:03:0c:90:35:a1:8c:39:28:d8:b0:9f:86:e6:8e:38:
        ea:2e:4b:2b:1c:6b:b4:ed:0d:ce:51:6d:a9:49:4e:ab:
        5b:33:d8:92:29:94:f3:ba:1e:40:8b:bc:de:36:c1:72:
        a4:2b:a2:c0:51:41:6f:f9:da:4a:f0:2b:28:f5:cf:d8:
        ce:5f:b0:55:af:e4:79:e4:8b:91:b8:1a:85:91:53:4f:
        fb:be:c5:4c:4c:03:8d:bd:09:0a:67:de:77:22:a8:52:
        2a:8f:b2:6b:fb:26:1e:d4:3c:d1:c4:0a:01:93:35:fe:
        b4:3a:74:ee:0b:79:52:de:71:81:1f:c8:12:2c:d8:2d:
        fb:f5:2e:e5:fd:56:37:f4:00:3c:6e:5a:2e:47:15:2e
    Fingerprint (SHA-256):
        B9:05:DB:DB:2C:24:73:F5:FE:0A:F3:DF:BC:75:3D:0D:B3:4E:1A:4B:B2:24:EB:74:C8:AE:10:B1:65:FF:A6:27
    Fingerprint (SHA1):
        93:67:7F:4A:4E:65:CE:C0:D5:0F:2E:F2:5C:FE:C6:70:89:8E:86:E4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6894: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6895: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155087 (0x1dee474f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:53 2017
            Not After : Mon May 02 15:51:53 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a7:70:05:92:d7:f4:bd:92:d3:5f:5c:1c:77:c2:75:9b:
                    44:2b:47:86:68:99:31:b1:b8:36:8d:58:64:29:87:9b:
                    9d:c1:45:49:8d:86:65:f8:78:ab:4b:f3:cc:7a:64:67:
                    fe:e9:1d:a8:b6:54:8c:40:6f:65:22:23:4f:31:86:2b:
                    e7:ca:5d:6a:c8:84:e5:8e:95:ab:c8:6a:a9:58:b4:96:
                    55:cc:a1:70:c7:c5:a0:97:48:0f:6b:6f:16:d7:00:cd:
                    53:a6:42:fd:6b:79:fa:e4:ca:03:2e:d3:22:80:30:1f:
                    37:cd:93:8a:f6:5a:99:7f:24:40:a5:d9:c6:cd:c1:80:
                    91:b3:13:6f:a8:97:da:a0:9e:2b:df:fb:6c:54:16:d8:
                    7a:be:68:ea:e2:99:5a:cf:5d:50:56:fa:b4:14:03:00:
                    1f:1b:9b:05:7f:4a:9f:12:cd:0d:66:d6:a8:30:51:07:
                    da:e3:e0:0a:33:f4:37:2d:c8:8a:97:2e:8f:16:77:51:
                    de:42:c9:8f:aa:b7:b2:23:d8:eb:b3:61:6d:a0:c6:40:
                    90:c1:58:46:07:e5:9e:f2:33:76:b9:29:65:46:f7:f6:
                    98:12:0e:b9:6d:7f:d4:66:dd:84:2e:a3:34:0f:61:ae:
                    cf:27:f2:bc:17:0d:50:6b:27:1d:84:e5:2a:15:f4:4d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:94:e1:b4:c3:9c:70:06:6d:fb:f4:16:e6:07:30:31:
        21:5d:38:1e:68:f4:bf:cf:34:f9:10:37:b0:bb:49:d7:
        13:fc:89:67:2b:84:0b:ca:c5:0d:9b:60:a8:ea:db:5f:
        ce:c9:df:37:34:53:f3:b0:fc:1e:86:90:5a:e7:d5:76:
        02:89:fa:cc:9a:a9:dc:ea:f8:64:10:cc:d8:76:31:91:
        07:20:9c:f1:8c:3e:31:50:37:2a:b7:a7:95:78:1a:8d:
        61:dc:1b:65:b4:dc:16:0c:46:09:86:db:c1:de:e9:18:
        4f:92:41:ae:32:d9:af:7a:aa:6f:7c:3f:a8:4b:c7:9c:
        ef:96:60:26:60:d6:35:fd:88:5e:1f:a8:44:87:e1:cf:
        16:fc:5b:27:a3:4a:b5:5e:3f:39:c2:00:88:9f:cb:da:
        a8:87:e6:d0:ff:47:2e:fc:b0:84:b1:9b:51:4e:58:c5:
        b3:38:b9:57:8c:e6:1d:12:db:67:54:24:35:d2:e0:2a:
        f9:12:d4:9a:e2:50:5f:16:6b:dd:cb:4c:c4:2b:81:f3:
        72:5b:30:13:c3:07:70:bb:f3:6d:4b:d3:10:63:fd:51:
        45:b6:b4:ac:f8:24:f6:4c:00:bc:ec:60:90:91:aa:36:
        bb:f9:55:ce:8f:98:88:df:b7:cd:2e:17:af:24:b3:1d
    Fingerprint (SHA-256):
        28:DB:12:25:76:4B:7B:B4:01:D5:59:FC:B0:7B:26:5A:85:C3:20:6A:B1:BC:3D:4B:69:3E:18:1F:88:E4:2E:40
    Fingerprint (SHA1):
        A8:B5:16:B1:93:04:36:C8:7D:6E:07:A1:53:DA:8B:C1:39:78:56:3A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6896: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6897: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155088 (0x1dee4750)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:54 2017
            Not After : Mon May 02 15:51:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d0:50:d8:cd:fa:7c:9f:4c:f2:16:df:09:1f:3e:09:4e:
                    63:b4:bd:21:71:c8:02:df:8a:eb:44:10:a7:f4:20:b9:
                    30:ee:59:64:cd:30:ee:4b:99:d9:51:56:3f:d7:28:3c:
                    3f:a4:57:13:30:3f:eb:f0:f0:62:c1:f4:b2:14:e2:23:
                    4a:69:44:73:7b:dc:66:3b:f1:91:54:08:69:86:98:d5:
                    1c:6e:93:4a:3f:8a:ad:91:06:9c:5c:f3:3a:d1:a0:31:
                    38:f1:29:1b:72:7d:56:fd:bb:63:f6:c6:4f:e5:82:9a:
                    e4:58:23:34:ab:a3:31:41:98:ef:4a:55:94:67:f4:e9:
                    9b:f4:83:21:fe:bf:75:ea:0f:57:40:39:07:cf:83:2a:
                    fa:a0:33:76:07:74:9c:0d:fe:e6:a9:72:02:d4:de:cf:
                    d9:10:a7:a9:cb:00:53:7f:75:0f:83:b5:d9:ab:2a:28:
                    d7:88:27:aa:c6:ae:1c:11:0a:8e:6d:0f:2e:13:a6:1d:
                    a4:d0:13:9b:65:f6:1b:72:28:40:ce:6c:c7:dc:92:69:
                    a9:23:24:6c:0b:3a:15:4f:b8:9e:55:7f:38:8a:0b:92:
                    4f:b5:ed:47:13:c3:ed:9c:55:57:73:f0:58:a0:33:cc:
                    13:0f:f6:ce:a6:a0:1c:23:f1:1c:46:ff:a0:37:13:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:89:41:eb:e7:f0:ed:13:0c:b5:c9:bb:90:49:1f:8d:
        fd:8c:bc:3c:f2:71:e6:af:ba:f8:ef:64:54:d4:d2:9c:
        9d:38:54:26:98:40:25:89:36:5c:dd:ae:76:fd:86:03:
        ec:a2:60:1c:59:46:35:e2:88:ac:c6:c4:4c:9b:bc:5f:
        67:44:02:63:d6:2a:7e:2f:a2:d8:90:35:be:ce:95:1e:
        57:df:97:10:dc:b5:21:4d:06:7b:cd:9a:c4:3c:d7:53:
        af:e0:99:23:2a:90:dd:9e:c0:74:d9:05:ca:37:6e:02:
        0d:ee:fa:10:38:57:45:03:ab:24:30:15:60:99:88:bd:
        0e:8a:9c:d0:18:e6:8c:a0:d7:5f:25:fd:8a:00:dc:0f:
        d8:60:be:24:ef:44:f5:7a:a6:f1:e9:7c:2f:fc:f8:5f:
        4a:9b:cb:3f:fb:7a:3d:a6:ac:cb:4b:14:88:2a:0c:4c:
        6e:5f:b5:c5:71:ac:05:e0:3a:af:1f:c4:36:10:c5:8a:
        d3:dc:51:fa:80:c4:b5:03:07:86:4a:b5:a7:b8:99:5b:
        35:ec:a9:f9:5d:02:ae:69:85:6c:95:f4:e5:e8:70:0b:
        05:24:b6:da:92:0e:46:d9:f2:a7:b2:61:0c:73:c9:54:
        03:26:79:78:10:05:a3:f9:d3:75:d4:b0:9e:9d:0d:8e
    Fingerprint (SHA-256):
        95:64:9E:AB:78:F0:0B:D5:AD:F1:16:AF:C8:30:12:8F:9C:FE:6A:14:08:5E:83:DE:8A:79:94:DE:BA:DD:CA:1D
    Fingerprint (SHA1):
        11:40:D4:AD:A6:0A:61:56:DA:F5:01:81:78:D8:FE:5C:7B:9E:25:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #6898: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6899: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #6900: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155090 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6901: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #6902: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6903: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6904: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155091   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6905: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6906: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6907: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6908: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155092   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6909: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6910: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6911: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6912: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502155093   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6913: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6914: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6915: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6916: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502155094   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6917: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6918: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6919: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155090 (0x1dee4752)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:56 2017
            Not After : Mon May 02 15:51:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:cc:5f:0e:4e:32:3d:3b:1b:09:ff:a9:bb:dc:e7:9c:
                    a2:aa:ba:3f:5e:6b:99:b5:6c:76:06:d5:89:35:5d:30:
                    bf:75:ae:42:e8:99:b8:65:96:7b:16:cf:1f:c3:b8:97:
                    cd:d4:4f:a6:d3:45:05:38:b1:ad:39:03:48:be:0e:54:
                    63:90:e8:7d:78:8e:a4:33:c2:df:9e:78:54:b3:5f:4e:
                    5a:a0:88:bf:4e:60:35:13:a3:b8:6c:fe:e7:15:9b:d9:
                    08:4f:e5:80:55:50:32:35:b3:1e:63:cc:f7:56:4d:9e:
                    69:f4:e0:f4:bc:cd:37:f4:24:f0:d9:44:ea:11:94:df:
                    06:2e:b1:1b:78:36:8c:02:25:74:20:8e:ec:a6:3a:5f:
                    f5:80:60:32:86:45:ed:e2:cf:4d:11:65:9e:6f:b6:fe:
                    1c:6b:52:12:5e:38:c3:38:e9:9f:26:51:c4:bb:c2:8c:
                    89:fd:ab:a1:80:ae:72:1d:cc:6a:0a:41:f0:df:ab:95:
                    9f:c2:71:39:53:3c:bf:48:75:2f:b9:89:79:58:a8:1a:
                    1b:d9:f7:25:22:4a:2c:4f:96:37:cb:16:e8:f6:0a:bd:
                    03:53:ea:da:8f:2a:29:7d:b9:6b:1a:cb:7b:ef:37:94:
                    76:64:e0:5a:28:74:81:a0:bd:37:75:e7:31:6f:6b:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:33:a0:a2:09:f7:e3:b9:0b:27:88:4e:fc:63:ec:06:
        4b:44:41:79:b2:f6:3a:b8:f0:80:34:83:ce:d6:14:bb:
        54:de:74:41:c3:cf:f7:65:71:3d:86:63:e5:05:31:28:
        fe:68:b5:20:69:90:aa:cd:f5:4e:e0:ef:f2:74:15:c6:
        02:72:33:e9:91:a9:ac:81:d1:10:48:5d:1a:20:a3:62:
        40:fa:1c:b8:ab:d6:b0:04:e5:cb:52:f3:e6:3c:4e:10:
        41:fa:20:93:2b:32:52:dc:b8:82:d6:49:c6:98:9a:f9:
        b7:ec:2d:dc:e1:3a:d1:75:67:27:e7:70:87:a1:72:5f:
        0a:07:91:93:9e:85:8e:64:c6:c5:55:90:48:fd:83:2a:
        c7:19:c4:1b:f9:dc:2b:b2:52:c1:f5:26:18:37:ac:a6:
        64:38:de:01:c1:75:94:58:22:6a:27:0e:f1:1c:9e:dc:
        ec:1e:f5:27:49:2e:d5:3f:c7:c6:a2:12:8a:70:f4:ed:
        a1:ad:bf:60:b3:49:18:fd:26:23:da:f1:d5:36:8a:53:
        b0:3e:50:6f:db:7a:c4:f1:a7:9a:d6:99:40:d1:d9:e3:
        bb:ba:1c:9e:36:cc:f8:8d:e1:76:b0:19:94:3b:56:ad:
        12:0f:7d:00:c2:63:c8:99:c2:f9:66:10:7d:dc:b9:cc
    Fingerprint (SHA-256):
        87:A0:BD:C5:C9:BC:EE:A1:BA:98:15:51:24:6B:00:72:3B:50:69:4C:5D:B8:47:31:AE:03:43:AC:03:2E:AE:A1
    Fingerprint (SHA1):
        F3:1B:AF:CA:7B:94:AC:98:77:CB:6B:B4:E5:3E:58:B9:F4:97:F8:70
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6920: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6921: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155091 (0x1dee4753)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:57 2017
            Not After : Mon May 02 15:51:57 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:bd:a0:5f:fa:6d:5f:93:be:77:ac:64:be:4c:71:b3:
                    c3:69:0f:f9:f0:77:e1:c7:e7:03:9f:af:d5:93:b1:16:
                    a8:4f:47:99:8a:a7:bc:53:6e:4e:ba:28:a5:27:2a:b7:
                    af:f0:47:ca:bd:e5:9b:06:23:b1:98:ee:89:53:ea:d2:
                    83:3c:eb:fa:c4:b8:44:36:81:77:02:11:43:c1:f1:b5:
                    58:03:a2:64:e4:50:81:ea:e6:10:99:8f:98:1a:75:3a:
                    ea:63:eb:a0:34:b8:5f:62:89:aa:a6:7a:33:fa:01:a8:
                    4f:01:bc:82:5a:20:06:66:1c:cc:d6:80:f2:1b:8a:80:
                    21:01:9e:08:0e:2f:29:b7:cb:ba:69:73:0f:72:ae:0d:
                    fc:04:a8:bb:7a:0b:d5:38:56:cb:84:75:7b:c0:15:39:
                    75:28:f3:9f:1a:1c:6f:0a:7f:8c:dc:4b:5a:0b:e6:89:
                    d2:35:4e:bf:b8:cb:b4:be:b7:35:20:de:2d:5f:f8:d4:
                    1b:d2:93:7c:f9:60:8d:5e:6d:85:7f:73:2d:7f:0f:62:
                    ba:9c:2f:d8:88:fb:77:db:78:b5:fc:19:59:06:5e:ff:
                    43:35:2b:bb:c6:10:30:4d:51:24:83:46:62:c3:e7:d6:
                    76:d5:e2:f0:7c:32:88:b8:f2:3c:09:52:8d:2b:5d:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        00:6d:60:96:53:b7:1a:d4:5c:ce:31:ca:64:b5:89:c4:
        d4:f9:c5:a8:4c:c3:1a:21:12:68:b6:cb:ae:ac:94:61:
        8e:cd:b2:9c:63:b9:6c:56:11:58:d3:2b:7f:62:f4:51:
        f4:20:c5:01:24:3f:37:f6:fc:ef:bd:23:30:42:15:7a:
        f8:0e:01:7e:7b:ca:c0:a6:7f:c7:e4:c5:db:f2:d4:ef:
        67:32:57:06:ad:22:e4:ec:17:04:0b:bb:34:cf:01:5d:
        95:f1:c0:dc:14:0a:fc:c6:c8:ca:5a:04:52:ea:d3:a1:
        ec:37:c4:ca:b1:15:fd:80:b6:c1:3a:b6:0e:ef:f2:d7:
        d2:63:f4:df:23:ed:58:2e:81:c0:ac:bd:1b:0e:61:ad:
        c6:df:c7:4a:aa:fe:51:75:7d:7f:53:8a:58:16:54:05:
        43:da:8b:59:49:ed:12:8a:d0:c5:f8:7b:03:0e:f0:29:
        5d:0d:47:24:52:8e:4c:1f:11:9d:7b:0a:55:e2:d5:d8:
        a2:a6:9e:78:91:e8:aa:96:3d:a8:be:5c:65:11:ad:43:
        8f:f5:8d:cb:d4:02:74:67:44:6a:e1:70:15:e2:bf:7d:
        0e:2d:85:60:24:8e:7f:00:07:9c:c0:74:47:e1:9e:68:
        ad:53:a1:ae:b0:b1:8e:a7:3d:07:37:b6:00:12:c5:97
    Fingerprint (SHA-256):
        FF:15:2B:62:85:04:EB:62:97:D9:2B:73:8B:0F:69:C1:F2:96:D9:5D:AE:A6:BE:2B:ED:A4:B0:D1:E5:55:4F:47
    Fingerprint (SHA1):
        CF:00:64:6A:C2:3D:82:AD:14:78:E1:D4:38:1C:F9:CD:2E:0D:79:2A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6922: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6923: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155092 (0x1dee4754)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:58 2017
            Not After : Mon May 02 15:51:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:6c:bf:67:30:c9:3e:dc:1f:64:90:de:30:ae:b6:8f:
                    d8:07:75:fa:22:d3:c3:09:e6:c5:ab:57:dd:74:f3:c3:
                    a0:d8:58:49:c0:4a:ea:f3:8f:20:d8:4c:be:40:ad:8b:
                    1a:b6:ed:43:f7:bb:8e:5a:8e:69:fa:92:9e:c6:7f:d5:
                    73:9a:44:f8:7f:51:bb:cf:0d:78:1c:ff:b0:77:b6:34:
                    75:a3:18:69:fd:7d:89:84:8c:e9:97:ad:1e:ca:75:aa:
                    eb:43:18:51:35:da:9d:8f:8b:20:5f:fd:fe:93:14:fe:
                    ce:e5:4a:c8:b1:d2:b8:f2:68:c4:ad:c3:2a:c0:b4:83:
                    43:5c:9c:88:9f:55:c1:39:3e:db:fc:db:69:ae:59:ae:
                    d7:6e:a3:ee:24:84:bd:48:00:f0:33:81:36:3f:b4:55:
                    e9:2b:43:97:10:4a:1f:fa:fc:b2:9e:f3:6d:3a:74:87:
                    4c:5c:51:80:ca:c4:cc:f5:35:f0:b0:bb:46:82:cc:d8:
                    2c:8d:b4:55:62:dc:36:04:96:48:ea:aa:b3:3d:2f:fa:
                    0e:4f:fc:e1:ed:08:92:f3:08:48:fa:66:35:c8:5f:27:
                    68:4c:5a:72:a3:56:c5:9f:b2:a5:36:03:10:05:8d:e7:
                    95:63:45:a5:a9:ac:3e:33:8b:44:7b:e1:a4:4e:cd:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:b1:3b:9d:9b:f7:d9:01:f1:e4:bd:ba:50:76:d2:5f:
        21:3d:bc:74:6e:2b:6f:73:7b:a5:15:86:0b:c9:b8:b2:
        7e:21:2e:63:6b:4c:61:66:ca:c9:cb:14:26:f0:7b:4b:
        e7:07:7f:4f:d9:a7:98:17:03:d8:58:ae:9e:c5:0e:a6:
        c4:d3:22:8f:9b:2f:9d:7a:25:79:23:2c:02:59:9d:1a:
        78:1f:a7:87:fd:8b:d9:ba:16:41:39:16:e5:6b:c6:50:
        db:09:51:6d:3b:b0:c6:91:bf:60:33:8b:8b:39:21:ff:
        5e:53:ae:0b:18:95:33:0f:8f:f9:1f:83:6a:32:6d:c6:
        83:4c:21:c9:24:e7:96:51:0a:4c:4a:ff:96:18:f5:eb:
        cc:ea:28:05:86:30:cc:6d:3f:c7:99:c0:4c:ed:6b:ae:
        3b:89:5e:58:17:ef:1c:0e:d0:5e:50:18:66:cd:ba:66:
        4a:2b:bb:f6:1a:52:a1:55:95:80:d6:55:b9:ed:61:6b:
        e5:aa:b0:fa:1f:67:58:a3:b7:e0:aa:ee:75:6e:9d:01:
        c4:03:c2:4a:bb:a3:00:e0:20:9c:27:85:56:4a:9e:c3:
        52:99:1e:da:d0:04:76:12:45:96:74:99:75:90:f7:71:
        24:c4:21:87:21:8d:69:e8:a6:cc:5f:7b:c4:e7:ee:1b
    Fingerprint (SHA-256):
        D5:22:6A:E4:75:4A:CF:96:B5:49:06:C8:DB:D5:44:CB:1E:F2:0C:D5:AF:33:EC:9F:C0:41:6C:CF:F4:52:A7:F1
    Fingerprint (SHA1):
        14:EA:DB:45:A2:16:3B:7C:4D:E3:2D:FD:FC:CC:94:0C:6F:DC:85:DF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6924: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6925: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #6926: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #6927: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6928: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155090 (0x1dee4752)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:56 2017
            Not After : Mon May 02 15:51:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:cc:5f:0e:4e:32:3d:3b:1b:09:ff:a9:bb:dc:e7:9c:
                    a2:aa:ba:3f:5e:6b:99:b5:6c:76:06:d5:89:35:5d:30:
                    bf:75:ae:42:e8:99:b8:65:96:7b:16:cf:1f:c3:b8:97:
                    cd:d4:4f:a6:d3:45:05:38:b1:ad:39:03:48:be:0e:54:
                    63:90:e8:7d:78:8e:a4:33:c2:df:9e:78:54:b3:5f:4e:
                    5a:a0:88:bf:4e:60:35:13:a3:b8:6c:fe:e7:15:9b:d9:
                    08:4f:e5:80:55:50:32:35:b3:1e:63:cc:f7:56:4d:9e:
                    69:f4:e0:f4:bc:cd:37:f4:24:f0:d9:44:ea:11:94:df:
                    06:2e:b1:1b:78:36:8c:02:25:74:20:8e:ec:a6:3a:5f:
                    f5:80:60:32:86:45:ed:e2:cf:4d:11:65:9e:6f:b6:fe:
                    1c:6b:52:12:5e:38:c3:38:e9:9f:26:51:c4:bb:c2:8c:
                    89:fd:ab:a1:80:ae:72:1d:cc:6a:0a:41:f0:df:ab:95:
                    9f:c2:71:39:53:3c:bf:48:75:2f:b9:89:79:58:a8:1a:
                    1b:d9:f7:25:22:4a:2c:4f:96:37:cb:16:e8:f6:0a:bd:
                    03:53:ea:da:8f:2a:29:7d:b9:6b:1a:cb:7b:ef:37:94:
                    76:64:e0:5a:28:74:81:a0:bd:37:75:e7:31:6f:6b:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:33:a0:a2:09:f7:e3:b9:0b:27:88:4e:fc:63:ec:06:
        4b:44:41:79:b2:f6:3a:b8:f0:80:34:83:ce:d6:14:bb:
        54:de:74:41:c3:cf:f7:65:71:3d:86:63:e5:05:31:28:
        fe:68:b5:20:69:90:aa:cd:f5:4e:e0:ef:f2:74:15:c6:
        02:72:33:e9:91:a9:ac:81:d1:10:48:5d:1a:20:a3:62:
        40:fa:1c:b8:ab:d6:b0:04:e5:cb:52:f3:e6:3c:4e:10:
        41:fa:20:93:2b:32:52:dc:b8:82:d6:49:c6:98:9a:f9:
        b7:ec:2d:dc:e1:3a:d1:75:67:27:e7:70:87:a1:72:5f:
        0a:07:91:93:9e:85:8e:64:c6:c5:55:90:48:fd:83:2a:
        c7:19:c4:1b:f9:dc:2b:b2:52:c1:f5:26:18:37:ac:a6:
        64:38:de:01:c1:75:94:58:22:6a:27:0e:f1:1c:9e:dc:
        ec:1e:f5:27:49:2e:d5:3f:c7:c6:a2:12:8a:70:f4:ed:
        a1:ad:bf:60:b3:49:18:fd:26:23:da:f1:d5:36:8a:53:
        b0:3e:50:6f:db:7a:c4:f1:a7:9a:d6:99:40:d1:d9:e3:
        bb:ba:1c:9e:36:cc:f8:8d:e1:76:b0:19:94:3b:56:ad:
        12:0f:7d:00:c2:63:c8:99:c2:f9:66:10:7d:dc:b9:cc
    Fingerprint (SHA-256):
        87:A0:BD:C5:C9:BC:EE:A1:BA:98:15:51:24:6B:00:72:3B:50:69:4C:5D:B8:47:31:AE:03:43:AC:03:2E:AE:A1
    Fingerprint (SHA1):
        F3:1B:AF:CA:7B:94:AC:98:77:CB:6B:B4:E5:3E:58:B9:F4:97:F8:70
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6929: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6930: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155091 (0x1dee4753)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:57 2017
            Not After : Mon May 02 15:51:57 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:bd:a0:5f:fa:6d:5f:93:be:77:ac:64:be:4c:71:b3:
                    c3:69:0f:f9:f0:77:e1:c7:e7:03:9f:af:d5:93:b1:16:
                    a8:4f:47:99:8a:a7:bc:53:6e:4e:ba:28:a5:27:2a:b7:
                    af:f0:47:ca:bd:e5:9b:06:23:b1:98:ee:89:53:ea:d2:
                    83:3c:eb:fa:c4:b8:44:36:81:77:02:11:43:c1:f1:b5:
                    58:03:a2:64:e4:50:81:ea:e6:10:99:8f:98:1a:75:3a:
                    ea:63:eb:a0:34:b8:5f:62:89:aa:a6:7a:33:fa:01:a8:
                    4f:01:bc:82:5a:20:06:66:1c:cc:d6:80:f2:1b:8a:80:
                    21:01:9e:08:0e:2f:29:b7:cb:ba:69:73:0f:72:ae:0d:
                    fc:04:a8:bb:7a:0b:d5:38:56:cb:84:75:7b:c0:15:39:
                    75:28:f3:9f:1a:1c:6f:0a:7f:8c:dc:4b:5a:0b:e6:89:
                    d2:35:4e:bf:b8:cb:b4:be:b7:35:20:de:2d:5f:f8:d4:
                    1b:d2:93:7c:f9:60:8d:5e:6d:85:7f:73:2d:7f:0f:62:
                    ba:9c:2f:d8:88:fb:77:db:78:b5:fc:19:59:06:5e:ff:
                    43:35:2b:bb:c6:10:30:4d:51:24:83:46:62:c3:e7:d6:
                    76:d5:e2:f0:7c:32:88:b8:f2:3c:09:52:8d:2b:5d:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        00:6d:60:96:53:b7:1a:d4:5c:ce:31:ca:64:b5:89:c4:
        d4:f9:c5:a8:4c:c3:1a:21:12:68:b6:cb:ae:ac:94:61:
        8e:cd:b2:9c:63:b9:6c:56:11:58:d3:2b:7f:62:f4:51:
        f4:20:c5:01:24:3f:37:f6:fc:ef:bd:23:30:42:15:7a:
        f8:0e:01:7e:7b:ca:c0:a6:7f:c7:e4:c5:db:f2:d4:ef:
        67:32:57:06:ad:22:e4:ec:17:04:0b:bb:34:cf:01:5d:
        95:f1:c0:dc:14:0a:fc:c6:c8:ca:5a:04:52:ea:d3:a1:
        ec:37:c4:ca:b1:15:fd:80:b6:c1:3a:b6:0e:ef:f2:d7:
        d2:63:f4:df:23:ed:58:2e:81:c0:ac:bd:1b:0e:61:ad:
        c6:df:c7:4a:aa:fe:51:75:7d:7f:53:8a:58:16:54:05:
        43:da:8b:59:49:ed:12:8a:d0:c5:f8:7b:03:0e:f0:29:
        5d:0d:47:24:52:8e:4c:1f:11:9d:7b:0a:55:e2:d5:d8:
        a2:a6:9e:78:91:e8:aa:96:3d:a8:be:5c:65:11:ad:43:
        8f:f5:8d:cb:d4:02:74:67:44:6a:e1:70:15:e2:bf:7d:
        0e:2d:85:60:24:8e:7f:00:07:9c:c0:74:47:e1:9e:68:
        ad:53:a1:ae:b0:b1:8e:a7:3d:07:37:b6:00:12:c5:97
    Fingerprint (SHA-256):
        FF:15:2B:62:85:04:EB:62:97:D9:2B:73:8B:0F:69:C1:F2:96:D9:5D:AE:A6:BE:2B:ED:A4:B0:D1:E5:55:4F:47
    Fingerprint (SHA1):
        CF:00:64:6A:C2:3D:82:AD:14:78:E1:D4:38:1C:F9:CD:2E:0D:79:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6931: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6932: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155092 (0x1dee4754)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:58 2017
            Not After : Mon May 02 15:51:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:6c:bf:67:30:c9:3e:dc:1f:64:90:de:30:ae:b6:8f:
                    d8:07:75:fa:22:d3:c3:09:e6:c5:ab:57:dd:74:f3:c3:
                    a0:d8:58:49:c0:4a:ea:f3:8f:20:d8:4c:be:40:ad:8b:
                    1a:b6:ed:43:f7:bb:8e:5a:8e:69:fa:92:9e:c6:7f:d5:
                    73:9a:44:f8:7f:51:bb:cf:0d:78:1c:ff:b0:77:b6:34:
                    75:a3:18:69:fd:7d:89:84:8c:e9:97:ad:1e:ca:75:aa:
                    eb:43:18:51:35:da:9d:8f:8b:20:5f:fd:fe:93:14:fe:
                    ce:e5:4a:c8:b1:d2:b8:f2:68:c4:ad:c3:2a:c0:b4:83:
                    43:5c:9c:88:9f:55:c1:39:3e:db:fc:db:69:ae:59:ae:
                    d7:6e:a3:ee:24:84:bd:48:00:f0:33:81:36:3f:b4:55:
                    e9:2b:43:97:10:4a:1f:fa:fc:b2:9e:f3:6d:3a:74:87:
                    4c:5c:51:80:ca:c4:cc:f5:35:f0:b0:bb:46:82:cc:d8:
                    2c:8d:b4:55:62:dc:36:04:96:48:ea:aa:b3:3d:2f:fa:
                    0e:4f:fc:e1:ed:08:92:f3:08:48:fa:66:35:c8:5f:27:
                    68:4c:5a:72:a3:56:c5:9f:b2:a5:36:03:10:05:8d:e7:
                    95:63:45:a5:a9:ac:3e:33:8b:44:7b:e1:a4:4e:cd:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:b1:3b:9d:9b:f7:d9:01:f1:e4:bd:ba:50:76:d2:5f:
        21:3d:bc:74:6e:2b:6f:73:7b:a5:15:86:0b:c9:b8:b2:
        7e:21:2e:63:6b:4c:61:66:ca:c9:cb:14:26:f0:7b:4b:
        e7:07:7f:4f:d9:a7:98:17:03:d8:58:ae:9e:c5:0e:a6:
        c4:d3:22:8f:9b:2f:9d:7a:25:79:23:2c:02:59:9d:1a:
        78:1f:a7:87:fd:8b:d9:ba:16:41:39:16:e5:6b:c6:50:
        db:09:51:6d:3b:b0:c6:91:bf:60:33:8b:8b:39:21:ff:
        5e:53:ae:0b:18:95:33:0f:8f:f9:1f:83:6a:32:6d:c6:
        83:4c:21:c9:24:e7:96:51:0a:4c:4a:ff:96:18:f5:eb:
        cc:ea:28:05:86:30:cc:6d:3f:c7:99:c0:4c:ed:6b:ae:
        3b:89:5e:58:17:ef:1c:0e:d0:5e:50:18:66:cd:ba:66:
        4a:2b:bb:f6:1a:52:a1:55:95:80:d6:55:b9:ed:61:6b:
        e5:aa:b0:fa:1f:67:58:a3:b7:e0:aa:ee:75:6e:9d:01:
        c4:03:c2:4a:bb:a3:00:e0:20:9c:27:85:56:4a:9e:c3:
        52:99:1e:da:d0:04:76:12:45:96:74:99:75:90:f7:71:
        24:c4:21:87:21:8d:69:e8:a6:cc:5f:7b:c4:e7:ee:1b
    Fingerprint (SHA-256):
        D5:22:6A:E4:75:4A:CF:96:B5:49:06:C8:DB:D5:44:CB:1E:F2:0C:D5:AF:33:EC:9F:C0:41:6C:CF:F4:52:A7:F1
    Fingerprint (SHA1):
        14:EA:DB:45:A2:16:3B:7C:4D:E3:2D:FD:FC:CC:94:0C:6F:DC:85:DF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6933: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6934: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155090 (0x1dee4752)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:56 2017
            Not After : Mon May 02 15:51:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:cc:5f:0e:4e:32:3d:3b:1b:09:ff:a9:bb:dc:e7:9c:
                    a2:aa:ba:3f:5e:6b:99:b5:6c:76:06:d5:89:35:5d:30:
                    bf:75:ae:42:e8:99:b8:65:96:7b:16:cf:1f:c3:b8:97:
                    cd:d4:4f:a6:d3:45:05:38:b1:ad:39:03:48:be:0e:54:
                    63:90:e8:7d:78:8e:a4:33:c2:df:9e:78:54:b3:5f:4e:
                    5a:a0:88:bf:4e:60:35:13:a3:b8:6c:fe:e7:15:9b:d9:
                    08:4f:e5:80:55:50:32:35:b3:1e:63:cc:f7:56:4d:9e:
                    69:f4:e0:f4:bc:cd:37:f4:24:f0:d9:44:ea:11:94:df:
                    06:2e:b1:1b:78:36:8c:02:25:74:20:8e:ec:a6:3a:5f:
                    f5:80:60:32:86:45:ed:e2:cf:4d:11:65:9e:6f:b6:fe:
                    1c:6b:52:12:5e:38:c3:38:e9:9f:26:51:c4:bb:c2:8c:
                    89:fd:ab:a1:80:ae:72:1d:cc:6a:0a:41:f0:df:ab:95:
                    9f:c2:71:39:53:3c:bf:48:75:2f:b9:89:79:58:a8:1a:
                    1b:d9:f7:25:22:4a:2c:4f:96:37:cb:16:e8:f6:0a:bd:
                    03:53:ea:da:8f:2a:29:7d:b9:6b:1a:cb:7b:ef:37:94:
                    76:64:e0:5a:28:74:81:a0:bd:37:75:e7:31:6f:6b:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:33:a0:a2:09:f7:e3:b9:0b:27:88:4e:fc:63:ec:06:
        4b:44:41:79:b2:f6:3a:b8:f0:80:34:83:ce:d6:14:bb:
        54:de:74:41:c3:cf:f7:65:71:3d:86:63:e5:05:31:28:
        fe:68:b5:20:69:90:aa:cd:f5:4e:e0:ef:f2:74:15:c6:
        02:72:33:e9:91:a9:ac:81:d1:10:48:5d:1a:20:a3:62:
        40:fa:1c:b8:ab:d6:b0:04:e5:cb:52:f3:e6:3c:4e:10:
        41:fa:20:93:2b:32:52:dc:b8:82:d6:49:c6:98:9a:f9:
        b7:ec:2d:dc:e1:3a:d1:75:67:27:e7:70:87:a1:72:5f:
        0a:07:91:93:9e:85:8e:64:c6:c5:55:90:48:fd:83:2a:
        c7:19:c4:1b:f9:dc:2b:b2:52:c1:f5:26:18:37:ac:a6:
        64:38:de:01:c1:75:94:58:22:6a:27:0e:f1:1c:9e:dc:
        ec:1e:f5:27:49:2e:d5:3f:c7:c6:a2:12:8a:70:f4:ed:
        a1:ad:bf:60:b3:49:18:fd:26:23:da:f1:d5:36:8a:53:
        b0:3e:50:6f:db:7a:c4:f1:a7:9a:d6:99:40:d1:d9:e3:
        bb:ba:1c:9e:36:cc:f8:8d:e1:76:b0:19:94:3b:56:ad:
        12:0f:7d:00:c2:63:c8:99:c2:f9:66:10:7d:dc:b9:cc
    Fingerprint (SHA-256):
        87:A0:BD:C5:C9:BC:EE:A1:BA:98:15:51:24:6B:00:72:3B:50:69:4C:5D:B8:47:31:AE:03:43:AC:03:2E:AE:A1
    Fingerprint (SHA1):
        F3:1B:AF:CA:7B:94:AC:98:77:CB:6B:B4:E5:3E:58:B9:F4:97:F8:70
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6935: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155090 (0x1dee4752)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:56 2017
            Not After : Mon May 02 15:51:56 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:cc:5f:0e:4e:32:3d:3b:1b:09:ff:a9:bb:dc:e7:9c:
                    a2:aa:ba:3f:5e:6b:99:b5:6c:76:06:d5:89:35:5d:30:
                    bf:75:ae:42:e8:99:b8:65:96:7b:16:cf:1f:c3:b8:97:
                    cd:d4:4f:a6:d3:45:05:38:b1:ad:39:03:48:be:0e:54:
                    63:90:e8:7d:78:8e:a4:33:c2:df:9e:78:54:b3:5f:4e:
                    5a:a0:88:bf:4e:60:35:13:a3:b8:6c:fe:e7:15:9b:d9:
                    08:4f:e5:80:55:50:32:35:b3:1e:63:cc:f7:56:4d:9e:
                    69:f4:e0:f4:bc:cd:37:f4:24:f0:d9:44:ea:11:94:df:
                    06:2e:b1:1b:78:36:8c:02:25:74:20:8e:ec:a6:3a:5f:
                    f5:80:60:32:86:45:ed:e2:cf:4d:11:65:9e:6f:b6:fe:
                    1c:6b:52:12:5e:38:c3:38:e9:9f:26:51:c4:bb:c2:8c:
                    89:fd:ab:a1:80:ae:72:1d:cc:6a:0a:41:f0:df:ab:95:
                    9f:c2:71:39:53:3c:bf:48:75:2f:b9:89:79:58:a8:1a:
                    1b:d9:f7:25:22:4a:2c:4f:96:37:cb:16:e8:f6:0a:bd:
                    03:53:ea:da:8f:2a:29:7d:b9:6b:1a:cb:7b:ef:37:94:
                    76:64:e0:5a:28:74:81:a0:bd:37:75:e7:31:6f:6b:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:33:a0:a2:09:f7:e3:b9:0b:27:88:4e:fc:63:ec:06:
        4b:44:41:79:b2:f6:3a:b8:f0:80:34:83:ce:d6:14:bb:
        54:de:74:41:c3:cf:f7:65:71:3d:86:63:e5:05:31:28:
        fe:68:b5:20:69:90:aa:cd:f5:4e:e0:ef:f2:74:15:c6:
        02:72:33:e9:91:a9:ac:81:d1:10:48:5d:1a:20:a3:62:
        40:fa:1c:b8:ab:d6:b0:04:e5:cb:52:f3:e6:3c:4e:10:
        41:fa:20:93:2b:32:52:dc:b8:82:d6:49:c6:98:9a:f9:
        b7:ec:2d:dc:e1:3a:d1:75:67:27:e7:70:87:a1:72:5f:
        0a:07:91:93:9e:85:8e:64:c6:c5:55:90:48:fd:83:2a:
        c7:19:c4:1b:f9:dc:2b:b2:52:c1:f5:26:18:37:ac:a6:
        64:38:de:01:c1:75:94:58:22:6a:27:0e:f1:1c:9e:dc:
        ec:1e:f5:27:49:2e:d5:3f:c7:c6:a2:12:8a:70:f4:ed:
        a1:ad:bf:60:b3:49:18:fd:26:23:da:f1:d5:36:8a:53:
        b0:3e:50:6f:db:7a:c4:f1:a7:9a:d6:99:40:d1:d9:e3:
        bb:ba:1c:9e:36:cc:f8:8d:e1:76:b0:19:94:3b:56:ad:
        12:0f:7d:00:c2:63:c8:99:c2:f9:66:10:7d:dc:b9:cc
    Fingerprint (SHA-256):
        87:A0:BD:C5:C9:BC:EE:A1:BA:98:15:51:24:6B:00:72:3B:50:69:4C:5D:B8:47:31:AE:03:43:AC:03:2E:AE:A1
    Fingerprint (SHA1):
        F3:1B:AF:CA:7B:94:AC:98:77:CB:6B:B4:E5:3E:58:B9:F4:97:F8:70
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6936: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155091 (0x1dee4753)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:57 2017
            Not After : Mon May 02 15:51:57 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:bd:a0:5f:fa:6d:5f:93:be:77:ac:64:be:4c:71:b3:
                    c3:69:0f:f9:f0:77:e1:c7:e7:03:9f:af:d5:93:b1:16:
                    a8:4f:47:99:8a:a7:bc:53:6e:4e:ba:28:a5:27:2a:b7:
                    af:f0:47:ca:bd:e5:9b:06:23:b1:98:ee:89:53:ea:d2:
                    83:3c:eb:fa:c4:b8:44:36:81:77:02:11:43:c1:f1:b5:
                    58:03:a2:64:e4:50:81:ea:e6:10:99:8f:98:1a:75:3a:
                    ea:63:eb:a0:34:b8:5f:62:89:aa:a6:7a:33:fa:01:a8:
                    4f:01:bc:82:5a:20:06:66:1c:cc:d6:80:f2:1b:8a:80:
                    21:01:9e:08:0e:2f:29:b7:cb:ba:69:73:0f:72:ae:0d:
                    fc:04:a8:bb:7a:0b:d5:38:56:cb:84:75:7b:c0:15:39:
                    75:28:f3:9f:1a:1c:6f:0a:7f:8c:dc:4b:5a:0b:e6:89:
                    d2:35:4e:bf:b8:cb:b4:be:b7:35:20:de:2d:5f:f8:d4:
                    1b:d2:93:7c:f9:60:8d:5e:6d:85:7f:73:2d:7f:0f:62:
                    ba:9c:2f:d8:88:fb:77:db:78:b5:fc:19:59:06:5e:ff:
                    43:35:2b:bb:c6:10:30:4d:51:24:83:46:62:c3:e7:d6:
                    76:d5:e2:f0:7c:32:88:b8:f2:3c:09:52:8d:2b:5d:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        00:6d:60:96:53:b7:1a:d4:5c:ce:31:ca:64:b5:89:c4:
        d4:f9:c5:a8:4c:c3:1a:21:12:68:b6:cb:ae:ac:94:61:
        8e:cd:b2:9c:63:b9:6c:56:11:58:d3:2b:7f:62:f4:51:
        f4:20:c5:01:24:3f:37:f6:fc:ef:bd:23:30:42:15:7a:
        f8:0e:01:7e:7b:ca:c0:a6:7f:c7:e4:c5:db:f2:d4:ef:
        67:32:57:06:ad:22:e4:ec:17:04:0b:bb:34:cf:01:5d:
        95:f1:c0:dc:14:0a:fc:c6:c8:ca:5a:04:52:ea:d3:a1:
        ec:37:c4:ca:b1:15:fd:80:b6:c1:3a:b6:0e:ef:f2:d7:
        d2:63:f4:df:23:ed:58:2e:81:c0:ac:bd:1b:0e:61:ad:
        c6:df:c7:4a:aa:fe:51:75:7d:7f:53:8a:58:16:54:05:
        43:da:8b:59:49:ed:12:8a:d0:c5:f8:7b:03:0e:f0:29:
        5d:0d:47:24:52:8e:4c:1f:11:9d:7b:0a:55:e2:d5:d8:
        a2:a6:9e:78:91:e8:aa:96:3d:a8:be:5c:65:11:ad:43:
        8f:f5:8d:cb:d4:02:74:67:44:6a:e1:70:15:e2:bf:7d:
        0e:2d:85:60:24:8e:7f:00:07:9c:c0:74:47:e1:9e:68:
        ad:53:a1:ae:b0:b1:8e:a7:3d:07:37:b6:00:12:c5:97
    Fingerprint (SHA-256):
        FF:15:2B:62:85:04:EB:62:97:D9:2B:73:8B:0F:69:C1:F2:96:D9:5D:AE:A6:BE:2B:ED:A4:B0:D1:E5:55:4F:47
    Fingerprint (SHA1):
        CF:00:64:6A:C2:3D:82:AD:14:78:E1:D4:38:1C:F9:CD:2E:0D:79:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6937: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155091 (0x1dee4753)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:51:57 2017
            Not After : Mon May 02 15:51:57 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:bd:a0:5f:fa:6d:5f:93:be:77:ac:64:be:4c:71:b3:
                    c3:69:0f:f9:f0:77:e1:c7:e7:03:9f:af:d5:93:b1:16:
                    a8:4f:47:99:8a:a7:bc:53:6e:4e:ba:28:a5:27:2a:b7:
                    af:f0:47:ca:bd:e5:9b:06:23:b1:98:ee:89:53:ea:d2:
                    83:3c:eb:fa:c4:b8:44:36:81:77:02:11:43:c1:f1:b5:
                    58:03:a2:64:e4:50:81:ea:e6:10:99:8f:98:1a:75:3a:
                    ea:63:eb:a0:34:b8:5f:62:89:aa:a6:7a:33:fa:01:a8:
                    4f:01:bc:82:5a:20:06:66:1c:cc:d6:80:f2:1b:8a:80:
                    21:01:9e:08:0e:2f:29:b7:cb:ba:69:73:0f:72:ae:0d:
                    fc:04:a8:bb:7a:0b:d5:38:56:cb:84:75:7b:c0:15:39:
                    75:28:f3:9f:1a:1c:6f:0a:7f:8c:dc:4b:5a:0b:e6:89:
                    d2:35:4e:bf:b8:cb:b4:be:b7:35:20:de:2d:5f:f8:d4:
                    1b:d2:93:7c:f9:60:8d:5e:6d:85:7f:73:2d:7f:0f:62:
                    ba:9c:2f:d8:88:fb:77:db:78:b5:fc:19:59:06:5e:ff:
                    43:35:2b:bb:c6:10:30:4d:51:24:83:46:62:c3:e7:d6:
                    76:d5:e2:f0:7c:32:88:b8:f2:3c:09:52:8d:2b:5d:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        00:6d:60:96:53:b7:1a:d4:5c:ce:31:ca:64:b5:89:c4:
        d4:f9:c5:a8:4c:c3:1a:21:12:68:b6:cb:ae:ac:94:61:
        8e:cd:b2:9c:63:b9:6c:56:11:58:d3:2b:7f:62:f4:51:
        f4:20:c5:01:24:3f:37:f6:fc:ef:bd:23:30:42:15:7a:
        f8:0e:01:7e:7b:ca:c0:a6:7f:c7:e4:c5:db:f2:d4:ef:
        67:32:57:06:ad:22:e4:ec:17:04:0b:bb:34:cf:01:5d:
        95:f1:c0:dc:14:0a:fc:c6:c8:ca:5a:04:52:ea:d3:a1:
        ec:37:c4:ca:b1:15:fd:80:b6:c1:3a:b6:0e:ef:f2:d7:
        d2:63:f4:df:23:ed:58:2e:81:c0:ac:bd:1b:0e:61:ad:
        c6:df:c7:4a:aa:fe:51:75:7d:7f:53:8a:58:16:54:05:
        43:da:8b:59:49:ed:12:8a:d0:c5:f8:7b:03:0e:f0:29:
        5d:0d:47:24:52:8e:4c:1f:11:9d:7b:0a:55:e2:d5:d8:
        a2:a6:9e:78:91:e8:aa:96:3d:a8:be:5c:65:11:ad:43:
        8f:f5:8d:cb:d4:02:74:67:44:6a:e1:70:15:e2:bf:7d:
        0e:2d:85:60:24:8e:7f:00:07:9c:c0:74:47:e1:9e:68:
        ad:53:a1:ae:b0:b1:8e:a7:3d:07:37:b6:00:12:c5:97
    Fingerprint (SHA-256):
        FF:15:2B:62:85:04:EB:62:97:D9:2B:73:8B:0F:69:C1:F2:96:D9:5D:AE:A6:BE:2B:ED:A4:B0:D1:E5:55:4F:47
    Fingerprint (SHA1):
        CF:00:64:6A:C2:3D:82:AD:14:78:E1:D4:38:1C:F9:CD:2E:0D:79:2A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6938: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155092 (0x1dee4754)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:58 2017
            Not After : Mon May 02 15:51:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:6c:bf:67:30:c9:3e:dc:1f:64:90:de:30:ae:b6:8f:
                    d8:07:75:fa:22:d3:c3:09:e6:c5:ab:57:dd:74:f3:c3:
                    a0:d8:58:49:c0:4a:ea:f3:8f:20:d8:4c:be:40:ad:8b:
                    1a:b6:ed:43:f7:bb:8e:5a:8e:69:fa:92:9e:c6:7f:d5:
                    73:9a:44:f8:7f:51:bb:cf:0d:78:1c:ff:b0:77:b6:34:
                    75:a3:18:69:fd:7d:89:84:8c:e9:97:ad:1e:ca:75:aa:
                    eb:43:18:51:35:da:9d:8f:8b:20:5f:fd:fe:93:14:fe:
                    ce:e5:4a:c8:b1:d2:b8:f2:68:c4:ad:c3:2a:c0:b4:83:
                    43:5c:9c:88:9f:55:c1:39:3e:db:fc:db:69:ae:59:ae:
                    d7:6e:a3:ee:24:84:bd:48:00:f0:33:81:36:3f:b4:55:
                    e9:2b:43:97:10:4a:1f:fa:fc:b2:9e:f3:6d:3a:74:87:
                    4c:5c:51:80:ca:c4:cc:f5:35:f0:b0:bb:46:82:cc:d8:
                    2c:8d:b4:55:62:dc:36:04:96:48:ea:aa:b3:3d:2f:fa:
                    0e:4f:fc:e1:ed:08:92:f3:08:48:fa:66:35:c8:5f:27:
                    68:4c:5a:72:a3:56:c5:9f:b2:a5:36:03:10:05:8d:e7:
                    95:63:45:a5:a9:ac:3e:33:8b:44:7b:e1:a4:4e:cd:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:b1:3b:9d:9b:f7:d9:01:f1:e4:bd:ba:50:76:d2:5f:
        21:3d:bc:74:6e:2b:6f:73:7b:a5:15:86:0b:c9:b8:b2:
        7e:21:2e:63:6b:4c:61:66:ca:c9:cb:14:26:f0:7b:4b:
        e7:07:7f:4f:d9:a7:98:17:03:d8:58:ae:9e:c5:0e:a6:
        c4:d3:22:8f:9b:2f:9d:7a:25:79:23:2c:02:59:9d:1a:
        78:1f:a7:87:fd:8b:d9:ba:16:41:39:16:e5:6b:c6:50:
        db:09:51:6d:3b:b0:c6:91:bf:60:33:8b:8b:39:21:ff:
        5e:53:ae:0b:18:95:33:0f:8f:f9:1f:83:6a:32:6d:c6:
        83:4c:21:c9:24:e7:96:51:0a:4c:4a:ff:96:18:f5:eb:
        cc:ea:28:05:86:30:cc:6d:3f:c7:99:c0:4c:ed:6b:ae:
        3b:89:5e:58:17:ef:1c:0e:d0:5e:50:18:66:cd:ba:66:
        4a:2b:bb:f6:1a:52:a1:55:95:80:d6:55:b9:ed:61:6b:
        e5:aa:b0:fa:1f:67:58:a3:b7:e0:aa:ee:75:6e:9d:01:
        c4:03:c2:4a:bb:a3:00:e0:20:9c:27:85:56:4a:9e:c3:
        52:99:1e:da:d0:04:76:12:45:96:74:99:75:90:f7:71:
        24:c4:21:87:21:8d:69:e8:a6:cc:5f:7b:c4:e7:ee:1b
    Fingerprint (SHA-256):
        D5:22:6A:E4:75:4A:CF:96:B5:49:06:C8:DB:D5:44:CB:1E:F2:0C:D5:AF:33:EC:9F:C0:41:6C:CF:F4:52:A7:F1
    Fingerprint (SHA1):
        14:EA:DB:45:A2:16:3B:7C:4D:E3:2D:FD:FC:CC:94:0C:6F:DC:85:DF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6939: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155092 (0x1dee4754)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:51:58 2017
            Not After : Mon May 02 15:51:58 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:6c:bf:67:30:c9:3e:dc:1f:64:90:de:30:ae:b6:8f:
                    d8:07:75:fa:22:d3:c3:09:e6:c5:ab:57:dd:74:f3:c3:
                    a0:d8:58:49:c0:4a:ea:f3:8f:20:d8:4c:be:40:ad:8b:
                    1a:b6:ed:43:f7:bb:8e:5a:8e:69:fa:92:9e:c6:7f:d5:
                    73:9a:44:f8:7f:51:bb:cf:0d:78:1c:ff:b0:77:b6:34:
                    75:a3:18:69:fd:7d:89:84:8c:e9:97:ad:1e:ca:75:aa:
                    eb:43:18:51:35:da:9d:8f:8b:20:5f:fd:fe:93:14:fe:
                    ce:e5:4a:c8:b1:d2:b8:f2:68:c4:ad:c3:2a:c0:b4:83:
                    43:5c:9c:88:9f:55:c1:39:3e:db:fc:db:69:ae:59:ae:
                    d7:6e:a3:ee:24:84:bd:48:00:f0:33:81:36:3f:b4:55:
                    e9:2b:43:97:10:4a:1f:fa:fc:b2:9e:f3:6d:3a:74:87:
                    4c:5c:51:80:ca:c4:cc:f5:35:f0:b0:bb:46:82:cc:d8:
                    2c:8d:b4:55:62:dc:36:04:96:48:ea:aa:b3:3d:2f:fa:
                    0e:4f:fc:e1:ed:08:92:f3:08:48:fa:66:35:c8:5f:27:
                    68:4c:5a:72:a3:56:c5:9f:b2:a5:36:03:10:05:8d:e7:
                    95:63:45:a5:a9:ac:3e:33:8b:44:7b:e1:a4:4e:cd:31
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        47:b1:3b:9d:9b:f7:d9:01:f1:e4:bd:ba:50:76:d2:5f:
        21:3d:bc:74:6e:2b:6f:73:7b:a5:15:86:0b:c9:b8:b2:
        7e:21:2e:63:6b:4c:61:66:ca:c9:cb:14:26:f0:7b:4b:
        e7:07:7f:4f:d9:a7:98:17:03:d8:58:ae:9e:c5:0e:a6:
        c4:d3:22:8f:9b:2f:9d:7a:25:79:23:2c:02:59:9d:1a:
        78:1f:a7:87:fd:8b:d9:ba:16:41:39:16:e5:6b:c6:50:
        db:09:51:6d:3b:b0:c6:91:bf:60:33:8b:8b:39:21:ff:
        5e:53:ae:0b:18:95:33:0f:8f:f9:1f:83:6a:32:6d:c6:
        83:4c:21:c9:24:e7:96:51:0a:4c:4a:ff:96:18:f5:eb:
        cc:ea:28:05:86:30:cc:6d:3f:c7:99:c0:4c:ed:6b:ae:
        3b:89:5e:58:17:ef:1c:0e:d0:5e:50:18:66:cd:ba:66:
        4a:2b:bb:f6:1a:52:a1:55:95:80:d6:55:b9:ed:61:6b:
        e5:aa:b0:fa:1f:67:58:a3:b7:e0:aa:ee:75:6e:9d:01:
        c4:03:c2:4a:bb:a3:00:e0:20:9c:27:85:56:4a:9e:c3:
        52:99:1e:da:d0:04:76:12:45:96:74:99:75:90:f7:71:
        24:c4:21:87:21:8d:69:e8:a6:cc:5f:7b:c4:e7:ee:1b
    Fingerprint (SHA-256):
        D5:22:6A:E4:75:4A:CF:96:B5:49:06:C8:DB:D5:44:CB:1E:F2:0C:D5:AF:33:EC:9F:C0:41:6C:CF:F4:52:A7:F1
    Fingerprint (SHA1):
        14:EA:DB:45:A2:16:3B:7C:4D:E3:2D:FD:FC:CC:94:0C:6F:DC:85:DF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #6940: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6941: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155095 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6942: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6943: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6944: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6945: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502155096   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6946: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6947: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #6948: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6949: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155097   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6950: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6951: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #6952: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6953: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502155098   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6954: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6955: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #6956: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6957: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502155099   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6958: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6959: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #6960: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6961: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502155100   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6962: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6963: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #6964: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6965: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502155101   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6966: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6967: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #6968: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #6969: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #6970: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #6971: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #6972: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155095 (0x1dee4757)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:00 2017
            Not After : Mon May 02 15:52:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:24:1d:e5:be:93:d5:ff:76:0a:f7:fb:84:69:9d:db:
                    a0:c9:6a:cb:2f:e1:e0:b6:92:d2:94:9d:f8:0b:29:5c:
                    0a:1b:80:60:df:5b:59:18:9f:d4:bd:89:c0:c2:44:12:
                    39:7b:9f:d0:39:06:d2:2a:4c:1b:76:cb:00:e8:ea:74:
                    4c:15:e1:d8:62:cc:c9:e7:70:2d:e5:1e:5b:54:92:93:
                    f4:6b:94:4c:76:77:09:d6:07:e8:1e:dc:ce:bd:89:ab:
                    02:b7:3a:b6:3f:ca:60:86:56:8f:ba:94:2e:fa:a0:32:
                    89:6e:80:9d:2b:5a:a0:8e:6c:d2:c1:18:2a:95:4d:6e:
                    a1:be:71:18:31:12:fe:27:a2:88:ea:0d:9c:19:9b:88:
                    14:6b:9c:64:0f:59:6b:28:d4:11:33:d3:5e:02:b9:82:
                    26:8a:05:72:6d:69:a4:a7:16:cd:4c:df:86:60:21:cf:
                    46:79:b4:18:41:b5:3c:1d:78:35:8f:c7:1f:23:ec:b2:
                    9e:79:7b:ad:40:67:9d:cc:da:a0:07:ae:22:35:5b:3b:
                    96:e2:33:71:22:65:b1:7b:df:01:40:eb:03:57:b4:09:
                    a0:91:65:11:06:ed:eb:aa:06:2c:09:5b:36:ef:60:d5:
                    43:f8:88:51:e6:ef:66:c1:7f:60:a3:f0:10:bc:70:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:8f:6b:74:03:03:dd:a1:26:20:f6:34:4b:fd:09:bc:
        76:59:c9:5b:8b:b1:3e:10:1c:c3:33:02:f4:67:a3:f7:
        33:5a:fb:c1:2d:bb:3a:b1:ec:12:02:98:55:00:05:a3:
        c3:ba:c0:b6:39:54:b1:e3:bf:84:9b:f2:78:47:17:3d:
        63:f6:7e:3a:43:8a:e5:2d:4b:5c:f0:2c:cb:7d:ba:5b:
        e1:3d:17:59:d0:c2:32:9f:9f:a0:c4:73:8b:7e:d8:3a:
        4e:0d:b9:7b:ac:e9:b8:f8:31:fd:b3:c8:1a:8d:d7:1c:
        a1:0e:4d:b8:8d:34:01:73:48:00:19:71:94:15:50:e9:
        6d:f5:a7:15:19:bd:06:54:2c:a8:3e:5a:69:40:df:42:
        08:01:e2:08:33:04:47:b6:b4:d6:d7:b3:aa:b8:97:f9:
        33:e9:d0:16:c8:a3:77:70:e6:c8:4e:3a:9e:54:f6:00:
        71:dd:c4:45:c6:42:6a:aa:a4:4a:2e:7e:0c:be:2a:a6:
        48:45:99:1e:51:76:84:3f:cb:71:1c:86:5b:b4:9f:ae:
        19:79:d6:a4:37:cb:9f:89:cd:6f:c2:1b:e4:9d:2a:f7:
        0d:7b:a8:f5:5a:67:08:bb:fc:15:ea:50:8c:f9:81:d5:
        84:3f:4a:20:07:d4:e8:6b:25:e6:22:98:21:93:86:58
    Fingerprint (SHA-256):
        66:F3:4B:2D:85:8A:5C:E9:DF:F6:8D:09:6B:C7:33:4B:51:5C:A7:05:7E:B8:37:07:54:70:3D:35:BF:75:99:D5
    Fingerprint (SHA1):
        79:1D:F6:03:12:3E:EC:2A:8B:0E:B4:0D:54:23:C4:35:0A:92:DA:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6973: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6974: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6975: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6976: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155095 (0x1dee4757)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:00 2017
            Not After : Mon May 02 15:52:00 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:24:1d:e5:be:93:d5:ff:76:0a:f7:fb:84:69:9d:db:
                    a0:c9:6a:cb:2f:e1:e0:b6:92:d2:94:9d:f8:0b:29:5c:
                    0a:1b:80:60:df:5b:59:18:9f:d4:bd:89:c0:c2:44:12:
                    39:7b:9f:d0:39:06:d2:2a:4c:1b:76:cb:00:e8:ea:74:
                    4c:15:e1:d8:62:cc:c9:e7:70:2d:e5:1e:5b:54:92:93:
                    f4:6b:94:4c:76:77:09:d6:07:e8:1e:dc:ce:bd:89:ab:
                    02:b7:3a:b6:3f:ca:60:86:56:8f:ba:94:2e:fa:a0:32:
                    89:6e:80:9d:2b:5a:a0:8e:6c:d2:c1:18:2a:95:4d:6e:
                    a1:be:71:18:31:12:fe:27:a2:88:ea:0d:9c:19:9b:88:
                    14:6b:9c:64:0f:59:6b:28:d4:11:33:d3:5e:02:b9:82:
                    26:8a:05:72:6d:69:a4:a7:16:cd:4c:df:86:60:21:cf:
                    46:79:b4:18:41:b5:3c:1d:78:35:8f:c7:1f:23:ec:b2:
                    9e:79:7b:ad:40:67:9d:cc:da:a0:07:ae:22:35:5b:3b:
                    96:e2:33:71:22:65:b1:7b:df:01:40:eb:03:57:b4:09:
                    a0:91:65:11:06:ed:eb:aa:06:2c:09:5b:36:ef:60:d5:
                    43:f8:88:51:e6:ef:66:c1:7f:60:a3:f0:10:bc:70:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        15:8f:6b:74:03:03:dd:a1:26:20:f6:34:4b:fd:09:bc:
        76:59:c9:5b:8b:b1:3e:10:1c:c3:33:02:f4:67:a3:f7:
        33:5a:fb:c1:2d:bb:3a:b1:ec:12:02:98:55:00:05:a3:
        c3:ba:c0:b6:39:54:b1:e3:bf:84:9b:f2:78:47:17:3d:
        63:f6:7e:3a:43:8a:e5:2d:4b:5c:f0:2c:cb:7d:ba:5b:
        e1:3d:17:59:d0:c2:32:9f:9f:a0:c4:73:8b:7e:d8:3a:
        4e:0d:b9:7b:ac:e9:b8:f8:31:fd:b3:c8:1a:8d:d7:1c:
        a1:0e:4d:b8:8d:34:01:73:48:00:19:71:94:15:50:e9:
        6d:f5:a7:15:19:bd:06:54:2c:a8:3e:5a:69:40:df:42:
        08:01:e2:08:33:04:47:b6:b4:d6:d7:b3:aa:b8:97:f9:
        33:e9:d0:16:c8:a3:77:70:e6:c8:4e:3a:9e:54:f6:00:
        71:dd:c4:45:c6:42:6a:aa:a4:4a:2e:7e:0c:be:2a:a6:
        48:45:99:1e:51:76:84:3f:cb:71:1c:86:5b:b4:9f:ae:
        19:79:d6:a4:37:cb:9f:89:cd:6f:c2:1b:e4:9d:2a:f7:
        0d:7b:a8:f5:5a:67:08:bb:fc:15:ea:50:8c:f9:81:d5:
        84:3f:4a:20:07:d4:e8:6b:25:e6:22:98:21:93:86:58
    Fingerprint (SHA-256):
        66:F3:4B:2D:85:8A:5C:E9:DF:F6:8D:09:6B:C7:33:4B:51:5C:A7:05:7E:B8:37:07:54:70:3D:35:BF:75:99:D5
    Fingerprint (SHA1):
        79:1D:F6:03:12:3E:EC:2A:8B:0E:B4:0D:54:23:C4:35:0A:92:DA:6C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #6977: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #6978: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #6979: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155102 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #6980: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #6981: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #6982: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6983: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502155103   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #6984: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6985: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #6986: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6987: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502155104   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6988: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6989: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #6990: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6991: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502155105   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6992: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6993: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #6994: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #6995: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502155106   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #6996: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #6997: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #6998: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #6999: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502155107   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7000: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7001: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #7002: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7003: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502155108   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7004: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7005: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7006: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7007: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502155109   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7008: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7009: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #7010: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7011: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502155110   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7012: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7013: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #7014: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7015: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502155111   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7016: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7017: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7018: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7019: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502155112   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7020: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7021: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #7022: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7023: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502155113   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7024: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7025: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #7026: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7027: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502155114   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7028: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7029: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7030: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7031: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502155115   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7032: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7033: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #7034: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7035: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502155116   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7036: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7037: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #7038: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7039: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502155117   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7040: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7041: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #7042: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7043: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502155118   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7044: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7045: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #7046: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7047: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502155119   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #7048: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7049: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #7050: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7051: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502155120   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7052: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7053: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #7054: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7055: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502155121   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7056: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7057: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #7058: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7059: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502155122   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7060: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7061: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #7062: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7063: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502155123   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7064: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7065: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #7066: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7067: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502155124   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7068: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7069: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #7070: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7071: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502155125   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7072: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7073: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #7074: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7075: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502155126   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7076: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7077: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #7078: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7079: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502155127   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7080: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7081: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #7082: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7083: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502155128   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7084: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7085: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #7086: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7087: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502155129   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7088: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7089: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #7090: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7091: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502155130   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7092: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7093: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #7094: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7095: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502155131   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7096: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7097: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7098: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7099: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7100: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7101: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7102: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7103: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7104: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7105: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7106: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7107: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7108: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7109: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7110: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7111: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7112: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7113: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7114: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7115: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7116: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7117: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7118: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7119: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7120: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155102 (0x1dee475e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:52:05 2017
            Not After : Mon May 02 15:52:05 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:56:f8:a9:85:cb:c5:e7:db:d3:c3:f7:45:28:b6:b7:
                    59:48:fc:f5:ed:b8:97:db:38:a2:37:20:3d:5c:4d:9a:
                    8c:4a:b0:2e:95:2d:cd:2d:ed:25:45:6a:dc:73:c6:86:
                    da:78:13:27:86:2f:e1:a2:38:e9:f5:60:03:14:0d:a0:
                    aa:68:32:01:ae:2d:87:6b:78:94:2c:c3:ff:fc:ed:bc:
                    f9:5d:3d:b4:7f:c6:86:90:c3:bc:80:3d:a7:e8:d9:55:
                    11:be:8d:01:aa:c4:55:a3:71:60:03:dc:fb:c7:5d:1a:
                    f1:ff:34:35:2d:18:0a:9d:70:1b:94:f2:11:8c:e2:dc:
                    e3:15:2f:94:e9:dc:84:7f:21:3b:97:78:e0:bc:ef:33:
                    8f:db:87:69:f5:ea:3c:d9:06:5e:4e:a8:50:88:9c:da:
                    5b:31:10:c2:95:2d:0d:4a:1f:73:b5:bd:2c:92:78:f4:
                    1c:ad:47:36:fe:93:75:32:c6:0d:3b:7c:e1:50:cc:ea:
                    98:6b:ea:30:5b:89:8a:aa:e9:1d:67:02:63:8a:7d:50:
                    00:c6:80:f2:a9:09:76:92:13:0b:2d:cd:f7:c5:cd:be:
                    0e:c0:e5:52:8f:5a:47:4b:c3:57:77:c0:71:65:bb:7a:
                    98:f5:f1:28:ae:86:8b:af:0e:28:18:94:a0:c4:c6:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        c8:cb:27:3f:58:b3:60:f7:05:73:a3:57:6e:81:a0:e2:
        85:59:18:b6:ec:bd:b8:46:5a:fd:e2:0a:83:23:d4:2e:
        94:80:2b:2f:8d:4b:c4:d7:8c:62:25:10:dd:47:18:ed:
        c7:00:2d:79:34:46:5e:ea:d8:3f:ad:b2:14:38:54:c4:
        05:ab:73:2e:89:b8:2a:9b:3c:cc:3a:9d:e9:78:0a:98:
        94:d1:7a:e1:2e:4b:9a:b7:9e:54:2a:27:b0:cf:fe:77:
        81:c8:63:2d:3e:c1:4e:0f:7e:a3:28:fc:b3:e1:f4:e8:
        2b:0b:1d:00:e4:17:f1:1e:2c:ee:01:54:58:b2:77:c2:
        53:b5:6e:a9:c9:33:3b:dd:45:17:0b:d3:29:75:dc:a1:
        bf:b0:78:07:07:70:51:e4:bf:69:0f:da:8c:79:e6:11:
        7a:cf:ee:33:5a:51:41:ce:c6:a2:7a:11:92:e5:03:07:
        f4:92:fb:a9:5b:69:bf:79:65:31:3b:80:db:7c:ee:9b:
        3c:51:15:55:b4:e2:22:81:6a:e2:83:ee:fa:be:f4:f5:
        80:73:67:82:b2:c2:df:2e:af:5b:9f:ba:4a:b8:bc:79:
        90:79:87:da:41:d1:b7:7c:98:63:bb:e2:c8:8c:3e:3c:
        34:80:ba:6f:59:d2:da:43:55:04:33:f1:da:f1:a1:8c
    Fingerprint (SHA-256):
        64:42:4A:5C:01:A3:C3:5C:B0:52:46:0D:C4:F8:76:E5:8F:62:F4:CA:A3:3B:B9:00:7B:23:6C:F5:4A:4A:65:2B
    Fingerprint (SHA1):
        4B:F9:76:FC:E1:D0:6A:28:FA:C7:C2:97:D4:BC:8D:2D:2C:85:32:BC
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #7121: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7122: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7123: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155132 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7124: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7125: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #7126: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7127: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502155133   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7128: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7129: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #7130: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7131: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502155134   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7132: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7133: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #7134: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7135: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502155135   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7136: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7137: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #7138: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7139: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502155136   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7140: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7141: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #7142: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7143: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502155137   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7144: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7145: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #7146: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7147: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502155138   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7148: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7149: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7150: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155132 (0x1dee477c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:27 2017
            Not After : Mon May 02 15:52:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:d9:92:a2:c5:7c:44:f5:e8:a7:b5:5f:96:09:81:9c:
                    92:13:34:0f:b2:8e:78:7c:66:cf:8c:6c:36:e0:60:32:
                    56:32:54:6c:75:d9:1f:b4:a2:31:77:9c:8a:1f:06:27:
                    ae:74:3c:29:ff:67:f8:70:cf:f8:24:38:66:a3:d4:62:
                    41:e2:3f:2c:df:2e:7b:33:98:42:5c:6a:64:6c:28:6f:
                    80:f3:b4:63:21:5a:56:58:4b:20:bd:4c:74:59:df:35:
                    5c:5a:58:a9:21:96:11:87:d8:8d:4e:f0:7d:10:1a:06:
                    36:43:3a:db:39:d9:8a:e4:f8:d0:a3:54:86:fa:8d:12:
                    02:6a:3e:e4:9d:20:65:d0:68:32:78:fd:ea:d7:24:90:
                    c0:95:f7:11:ee:7f:64:53:b3:9b:98:6d:05:22:dd:7d:
                    80:de:e4:95:ff:95:b0:0d:5d:c3:fa:f2:c1:e8:7e:61:
                    27:b0:18:a3:6a:93:1e:05:6d:04:92:7a:6c:4d:bf:09:
                    80:32:12:93:df:98:46:b9:d8:e5:3f:4a:c0:83:a4:9e:
                    6d:cb:b6:27:61:e7:16:15:17:8b:e0:31:8d:8c:fa:75:
                    9b:76:65:f1:f8:d2:18:31:2e:54:00:b7:e9:1c:be:d9:
                    13:43:d4:65:14:25:26:58:98:87:a1:9f:60:91:ef:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:3e:53:2a:db:2e:4f:c2:64:70:a4:37:70:98:8e:db:
        ec:a1:b7:54:35:ef:8a:53:26:22:a8:71:1f:84:a6:78:
        cf:de:07:04:79:83:ff:91:3b:a5:d8:44:de:07:ed:84:
        0a:3f:c4:c2:5a:5c:52:da:c5:87:bc:74:bf:a9:ca:01:
        61:9b:2d:e3:0e:e6:09:5e:46:8a:2e:15:7e:29:83:84:
        26:be:31:24:07:54:b4:ef:95:aa:c4:75:1e:d1:a4:56:
        e3:b4:18:b4:92:d8:09:18:ff:40:ca:43:11:9e:fc:c9:
        e0:48:86:81:11:4d:b8:3b:25:12:c9:d8:ac:bb:44:bb:
        bf:07:dd:2a:5e:1a:8d:f2:0f:c1:6c:f6:17:81:b6:73:
        3e:fc:95:b7:16:19:e5:c4:e8:4e:7f:bd:5b:97:6a:d4:
        04:75:39:e2:81:34:4b:90:87:9c:4f:48:b9:96:0d:98:
        8e:ec:0b:31:5d:94:a4:15:f6:8c:8e:d5:af:9f:8d:92:
        77:0a:64:09:9d:cb:ab:db:c8:d9:ee:40:32:7b:03:ef:
        43:47:45:cb:98:01:09:32:d2:64:16:b9:00:4c:4a:79:
        f9:d1:9e:f9:58:c7:61:28:54:af:e3:2d:88:c6:60:ee:
        70:66:31:fd:7d:66:29:3b:79:f2:16:1f:bf:f8:92:c8
    Fingerprint (SHA-256):
        8D:AB:A3:7E:DC:63:BA:B1:46:C1:4D:0A:11:AB:91:05:68:7F:43:B1:09:16:4A:D3:14:3E:58:0D:6B:9A:07:E7
    Fingerprint (SHA1):
        C8:B7:75:16:16:B0:CE:E7:37:3F:B4:29:8C:6E:E8:F8:9E:13:B8:95
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7151: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7152: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7153: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7154: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155132 (0x1dee477c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:27 2017
            Not After : Mon May 02 15:52:27 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:d9:92:a2:c5:7c:44:f5:e8:a7:b5:5f:96:09:81:9c:
                    92:13:34:0f:b2:8e:78:7c:66:cf:8c:6c:36:e0:60:32:
                    56:32:54:6c:75:d9:1f:b4:a2:31:77:9c:8a:1f:06:27:
                    ae:74:3c:29:ff:67:f8:70:cf:f8:24:38:66:a3:d4:62:
                    41:e2:3f:2c:df:2e:7b:33:98:42:5c:6a:64:6c:28:6f:
                    80:f3:b4:63:21:5a:56:58:4b:20:bd:4c:74:59:df:35:
                    5c:5a:58:a9:21:96:11:87:d8:8d:4e:f0:7d:10:1a:06:
                    36:43:3a:db:39:d9:8a:e4:f8:d0:a3:54:86:fa:8d:12:
                    02:6a:3e:e4:9d:20:65:d0:68:32:78:fd:ea:d7:24:90:
                    c0:95:f7:11:ee:7f:64:53:b3:9b:98:6d:05:22:dd:7d:
                    80:de:e4:95:ff:95:b0:0d:5d:c3:fa:f2:c1:e8:7e:61:
                    27:b0:18:a3:6a:93:1e:05:6d:04:92:7a:6c:4d:bf:09:
                    80:32:12:93:df:98:46:b9:d8:e5:3f:4a:c0:83:a4:9e:
                    6d:cb:b6:27:61:e7:16:15:17:8b:e0:31:8d:8c:fa:75:
                    9b:76:65:f1:f8:d2:18:31:2e:54:00:b7:e9:1c:be:d9:
                    13:43:d4:65:14:25:26:58:98:87:a1:9f:60:91:ef:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:3e:53:2a:db:2e:4f:c2:64:70:a4:37:70:98:8e:db:
        ec:a1:b7:54:35:ef:8a:53:26:22:a8:71:1f:84:a6:78:
        cf:de:07:04:79:83:ff:91:3b:a5:d8:44:de:07:ed:84:
        0a:3f:c4:c2:5a:5c:52:da:c5:87:bc:74:bf:a9:ca:01:
        61:9b:2d:e3:0e:e6:09:5e:46:8a:2e:15:7e:29:83:84:
        26:be:31:24:07:54:b4:ef:95:aa:c4:75:1e:d1:a4:56:
        e3:b4:18:b4:92:d8:09:18:ff:40:ca:43:11:9e:fc:c9:
        e0:48:86:81:11:4d:b8:3b:25:12:c9:d8:ac:bb:44:bb:
        bf:07:dd:2a:5e:1a:8d:f2:0f:c1:6c:f6:17:81:b6:73:
        3e:fc:95:b7:16:19:e5:c4:e8:4e:7f:bd:5b:97:6a:d4:
        04:75:39:e2:81:34:4b:90:87:9c:4f:48:b9:96:0d:98:
        8e:ec:0b:31:5d:94:a4:15:f6:8c:8e:d5:af:9f:8d:92:
        77:0a:64:09:9d:cb:ab:db:c8:d9:ee:40:32:7b:03:ef:
        43:47:45:cb:98:01:09:32:d2:64:16:b9:00:4c:4a:79:
        f9:d1:9e:f9:58:c7:61:28:54:af:e3:2d:88:c6:60:ee:
        70:66:31:fd:7d:66:29:3b:79:f2:16:1f:bf:f8:92:c8
    Fingerprint (SHA-256):
        8D:AB:A3:7E:DC:63:BA:B1:46:C1:4D:0A:11:AB:91:05:68:7F:43:B1:09:16:4A:D3:14:3E:58:0D:6B:9A:07:E7
    Fingerprint (SHA1):
        C8:B7:75:16:16:B0:CE:E7:37:3F:B4:29:8C:6E:E8:F8:9E:13:B8:95
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7155: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7156: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7157: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7158: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155139 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7159: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7160: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7161: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7162: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155140   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7163: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7164: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7165: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7166: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155141   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7167: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7168: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7169: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7170: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155142   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7171: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7172: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7173: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7174: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7175: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7176: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155139 (0x1dee4783)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:33 2017
            Not After : Mon May 02 15:52:33 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dd:a5:28:3f:86:07:a6:7a:81:bb:0b:2b:23:42:1b:21:
                    86:d8:ee:3a:e2:82:34:e0:a1:15:76:92:5f:31:1b:c9:
                    ca:d8:73:8d:55:31:27:69:d0:09:0b:2a:45:d4:ca:10:
                    f2:be:c2:91:a6:dd:0a:19:6f:ad:14:55:65:88:80:3d:
                    b2:58:74:cc:a1:1d:79:87:66:77:b0:51:ff:5a:7a:52:
                    1d:98:05:ed:b0:3a:0d:c1:83:d7:63:f7:31:85:47:bf:
                    ef:5f:27:13:3f:f5:4c:8e:fa:4a:83:b2:2a:c2:1c:5f:
                    ff:59:85:49:b3:b1:29:58:ce:30:3b:45:2c:33:39:ee:
                    2f:91:06:d0:3d:91:cc:0b:c9:1f:30:a9:a9:66:2a:a2:
                    a7:f4:17:98:ae:09:94:fd:bd:be:70:5a:0b:4a:41:a3:
                    f4:d2:27:75:24:d0:15:c9:a3:ef:41:49:e3:64:f8:39:
                    73:47:c4:54:92:5f:78:4c:32:f4:a4:64:0f:73:b6:19:
                    91:9e:1a:d2:35:97:26:89:44:03:43:90:98:9f:20:49:
                    3d:29:24:17:de:a5:90:08:b5:d5:f3:a2:8d:88:33:8e:
                    0a:1a:09:f0:15:e5:c1:86:56:0e:c7:17:84:0f:a9:3f:
                    85:82:63:9f:5e:57:0d:ed:e2:dc:98:bb:eb:e7:f4:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:87:65:e9:38:f8:04:c9:1c:95:55:f6:7e:3a:38:0d:
        cc:b1:f1:2e:57:34:f3:55:c7:c4:9b:5a:11:83:ec:2b:
        53:26:b6:ca:2c:83:8e:05:b3:59:a1:f0:a4:da:ca:2b:
        6f:67:ff:2c:88:3c:7b:51:99:0e:05:f6:11:d2:5e:a4:
        c0:3f:dc:ef:de:e9:89:fc:d0:68:57:b7:22:9f:bb:a0:
        96:c2:16:21:21:79:41:f0:da:5a:fe:f3:3e:06:c2:eb:
        09:af:7c:95:be:98:93:49:6a:18:38:12:87:f8:db:fb:
        d4:3c:94:4a:00:a2:a7:44:f3:b8:77:a6:4c:ca:a9:ea:
        cf:2c:a6:d3:94:30:6d:d5:28:f7:4a:80:2c:0c:b1:81:
        4d:f3:ba:f0:31:e5:b8:e5:da:5a:5c:f7:2c:4f:6e:8e:
        91:e3:5f:c0:ae:66:70:ac:6c:0f:e3:1c:a6:f4:7e:49:
        2a:14:f4:7c:f2:2d:89:6b:9d:0c:be:b5:7b:f9:8a:83:
        42:4d:9c:b6:e1:ea:50:e8:be:dd:eb:a0:b0:c4:c5:24:
        cc:32:7a:ff:ae:b3:ae:ce:2d:12:61:32:f5:b0:ed:6f:
        68:76:1e:aa:ee:ee:df:55:f2:c9:61:8c:14:e0:ba:c0:
        28:16:a1:00:73:05:80:51:e4:a1:49:ec:97:28:c1:cd
    Fingerprint (SHA-256):
        28:E1:40:0B:29:5B:A8:CA:EA:BD:42:2A:7C:41:97:CD:A3:54:D2:C9:EC:C4:5F:FE:56:79:D1:61:31:85:E2:AC
    Fingerprint (SHA1):
        AD:12:D0:97:A0:99:17:93:05:48:23:F9:1D:66:88:97:7B:E1:34:82
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7177: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7178: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7179: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155140 (0x1dee4784)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:34 2017
            Not After : Mon May 02 15:52:34 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f6:e6:a9:4d:bf:cd:b1:5f:48:94:a0:cf:66:94:80:c0:
                    5b:61:4b:91:12:71:e6:6b:cb:56:96:7b:57:22:19:8c:
                    bb:fb:49:f2:f1:63:d4:53:51:7e:4d:3e:1f:4d:89:fd:
                    19:3d:59:2b:e2:04:c1:43:b2:e6:99:c9:11:45:ab:32:
                    fa:f8:27:7f:76:0f:f6:6f:72:37:f2:60:d3:24:83:af:
                    bf:5e:83:ca:e0:f4:91:04:14:f0:5b:57:16:40:5b:b1:
                    6c:88:fb:a1:7d:22:9c:00:02:71:f0:77:35:64:6b:37:
                    98:f1:ad:cd:c4:8f:a3:d3:1b:77:c4:af:b7:9c:69:11:
                    47:70:fa:23:2e:57:65:a7:34:5e:27:5c:8e:b9:10:67:
                    aa:8d:a1:9f:20:a8:bd:cd:ea:e6:26:f2:e8:c0:0b:a5:
                    56:e2:ab:b7:30:2c:a9:9b:3e:8c:a7:77:56:0f:a7:e8:
                    fb:9d:8a:e4:15:0d:a7:c5:fd:31:96:24:0f:34:44:0f:
                    da:17:c6:a5:10:d2:97:22:84:f2:db:0f:6c:53:13:0d:
                    af:ad:68:e6:08:6f:18:9a:06:0c:ed:16:d4:ad:fd:ce:
                    f8:5e:b4:47:c3:77:9e:98:2a:1c:44:8f:a3:7b:99:bb:
                    4c:65:09:6e:42:f9:56:e3:ba:83:17:44:24:8d:37:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ab:c5:a8:e3:20:6a:c0:d1:07:51:34:3d:57:29:ce:1e:
        40:74:44:1a:33:63:bc:5f:b1:c3:8a:ff:a9:d3:fd:88:
        55:57:86:da:d1:b3:11:e3:a7:70:7c:c9:2a:a2:e0:bb:
        f7:a8:a1:40:3e:a8:00:3d:92:94:02:e7:bf:69:2e:f4:
        43:d0:64:c2:c4:17:b6:9b:76:fe:6d:5b:40:fa:e9:9d:
        08:a1:db:62:f6:5a:49:49:28:d1:c9:36:2a:89:d7:49:
        15:11:e7:f5:4f:c8:71:3d:58:82:ba:a6:4f:a1:47:f0:
        65:b8:27:a5:3f:a4:2f:84:39:44:de:7c:c9:e4:fd:5f:
        f1:0b:31:1f:63:d7:fa:90:00:0f:95:e2:98:04:84:7a:
        3c:9d:da:13:07:37:82:8a:28:ae:69:e0:4d:78:ed:c1:
        5f:67:96:d5:ae:47:90:50:96:0d:3e:e3:d1:7f:6a:d1:
        45:7e:f0:5a:33:47:9d:55:2c:74:6f:06:5b:64:70:e2:
        96:5a:c9:11:22:e0:2a:57:eb:96:21:52:9d:f5:7e:7c:
        84:61:c7:a2:6e:c7:56:7b:5e:0a:27:58:4a:77:9f:c8:
        0e:c4:81:df:eb:86:d8:36:08:72:62:f0:87:a9:dc:33:
        57:67:01:ea:dd:7b:58:0e:f5:5a:04:98:00:27:41:b2
    Fingerprint (SHA-256):
        17:6A:D0:36:C3:EB:FC:0F:B5:BD:20:34:9D:43:49:47:18:CD:0C:EF:9E:24:2D:F7:82:A7:73:19:6D:96:D4:37
    Fingerprint (SHA1):
        59:8F:05:E8:3B:90:AC:AF:2C:85:02:79:6D:52:15:94:B7:24:9D:AA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7180: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7181: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155141 (0x1dee4785)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:52:35 2017
            Not After : Mon May 02 15:52:35 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a2:49:0e:70:4d:f8:21:50:72:e9:0f:9e:3d:39:e5:81:
                    b3:d7:cf:97:16:9c:a4:54:18:72:f3:db:b5:02:8c:b7:
                    74:e2:ea:f6:b8:12:a2:2d:d9:a1:e9:5e:3e:ac:d5:fd:
                    38:f9:28:21:f6:91:1e:40:9c:67:ba:c1:c3:18:9a:07:
                    41:14:28:7e:a6:7c:b3:61:d3:84:c2:0d:43:77:2d:58:
                    1f:2a:54:36:54:5f:a3:01:f6:2e:82:f3:43:a7:b7:64:
                    81:02:5c:f7:6e:26:c5:96:a4:dd:aa:a8:ce:aa:72:10:
                    c3:58:f4:f1:43:a2:d5:6e:90:1e:21:bc:bb:e0:39:83:
                    08:84:77:e3:e7:c6:f6:6b:35:97:8a:95:6f:f9:05:df:
                    8e:1a:77:99:20:79:93:d9:d0:3b:a1:50:9a:7b:eb:11:
                    91:a0:7a:a6:b7:83:ea:15:aa:12:65:e6:a3:cd:4f:6d:
                    93:20:02:2c:b1:dc:c2:0d:61:23:62:97:d6:f0:51:53:
                    9f:86:f1:24:a7:64:80:1a:00:2e:1c:d2:41:a3:1a:a3:
                    17:09:55:b6:e1:56:7e:38:ca:dc:f2:47:69:fb:cd:8d:
                    e4:b3:98:df:77:cb:46:15:6a:2b:fb:b7:25:6b:f4:d5:
                    61:c7:18:b6:b2:68:97:9f:f3:21:ae:46:06:04:48:b3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        97:7b:39:60:38:c7:06:05:0f:1a:9c:0b:40:f3:66:75:
        b7:20:e9:2d:3a:3f:0d:8d:fb:f5:95:32:57:02:23:58:
        db:61:cb:5e:35:12:b1:d1:3e:a5:be:42:ff:db:bb:88:
        a5:06:0c:e5:57:3f:4c:a2:9e:09:64:4d:12:1b:ce:d5:
        b3:b1:d6:6c:98:8a:91:31:b5:f4:27:7c:f3:24:b4:34:
        27:74:86:b3:4d:53:c7:13:e7:49:af:4c:89:73:ea:5c:
        d3:b0:7b:2c:8b:92:06:d3:74:eb:38:36:c2:6f:87:65:
        c0:01:16:80:4c:f2:d7:98:36:e9:94:d8:f6:08:a3:a7:
        61:45:73:62:2a:82:ed:67:70:7f:f3:31:af:74:ef:f7:
        d2:a2:ff:54:42:6b:ea:80:21:d3:b0:0c:c3:62:ab:9d:
        64:0a:3a:62:9f:f2:5f:98:77:00:5d:b8:60:22:43:40:
        03:64:9e:5e:0d:d9:c2:cf:59:e8:5f:28:31:7c:97:1c:
        cf:6a:9f:d2:49:14:e8:09:57:2d:7f:f0:7d:a9:77:cc:
        76:0b:6c:5a:bf:53:3b:d3:c3:88:0f:91:a1:3a:db:3c:
        80:9e:0e:18:0e:27:3c:bb:3c:96:13:c3:37:2c:2f:0b:
        e3:9d:95:ef:28:d2:f4:0e:11:3e:bd:89:cc:b3:d6:e7
    Fingerprint (SHA-256):
        7F:F2:0B:24:95:23:5D:6B:89:AC:9D:F6:CB:0F:51:F5:9D:AA:23:35:73:06:D3:22:60:68:A1:13:D1:7E:BE:D3
    Fingerprint (SHA1):
        9B:C7:C6:73:87:3E:2D:0A:13:00:3A:AB:57:0E:4A:2C:BF:50:17:E2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #7182: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7183: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155143 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7184: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7185: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7186: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7187: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155144   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7188: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7189: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7190: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7191: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155145   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7192: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7193: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7194: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7195: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502155146   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7196: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7197: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7198: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7199: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502155147   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7200: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7201: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7202: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #7203: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #7204: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #7205: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #7206: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155143 (0x1dee4787)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:36 2017
            Not After : Mon May 02 15:52:36 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:ad:eb:6c:e5:92:dd:03:be:21:67:55:9e:69:70:82:
                    b3:7a:55:55:d8:7d:65:9a:34:ec:c6:bb:55:f0:25:e6:
                    6e:73:78:e7:6d:b4:01:56:07:f2:cf:53:29:6c:f6:75:
                    9a:4f:64:9b:f8:7a:c6:db:c8:a4:31:ef:5d:5e:d1:d5:
                    0c:1a:bc:0c:98:96:55:d8:07:ab:ad:0e:e3:aa:16:81:
                    b3:e7:fe:93:8b:3c:2a:b0:fc:1d:53:14:34:63:6b:29:
                    39:60:6e:8c:7c:cd:64:53:09:a8:5e:5f:9a:d4:65:e9:
                    7a:77:f4:83:da:15:7f:86:b5:77:76:65:b0:57:7f:9b:
                    0f:d2:15:03:33:26:2d:05:52:cd:78:9b:88:a3:bf:92:
                    4f:85:0b:85:af:19:e7:40:5c:00:58:ee:79:79:ee:69:
                    f8:db:4e:7e:f0:1a:b9:90:93:7d:ac:b5:69:84:cd:60:
                    54:ca:b6:e1:44:5f:69:86:12:3a:d1:7f:ae:5c:dc:7d:
                    c9:06:ff:90:d9:75:dc:42:6c:9f:20:51:95:9a:af:4b:
                    e0:f6:32:02:fb:56:ab:cb:01:1f:4b:99:1b:68:72:fd:
                    68:0e:45:f1:51:ec:ce:50:f1:59:1c:b8:8c:97:9f:09:
                    64:c1:36:8c:c6:54:39:5b:60:1e:d9:b1:7d:04:27:bf
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7b:9c:61:96:4a:5f:bc:3e:14:3e:14:e3:7b:d2:64:63:
        44:f3:05:2e:07:2c:c7:d5:60:4c:e0:78:d5:16:c1:74:
        bf:79:bc:aa:aa:aa:a2:98:aa:72:25:62:3e:3c:d5:8f:
        59:2b:b5:d5:14:3e:5b:cb:19:8e:f3:8f:4e:29:c1:02:
        d2:70:e1:36:be:3f:a9:11:ca:7d:ca:6a:ff:70:b0:37:
        55:f3:d3:cb:7d:dd:74:b3:34:bf:9a:3e:fb:c2:bc:81:
        0b:63:27:55:32:90:57:6a:05:6e:b5:7e:c1:3e:93:08:
        cc:63:27:ab:82:80:91:19:0d:8b:fe:a9:6d:20:ea:2a:
        dd:dc:fd:02:c3:40:55:08:d1:f2:30:73:56:c0:38:94:
        ed:05:e0:49:bc:26:40:c9:59:df:fb:82:d1:5a:32:55:
        75:90:55:fa:62:28:ae:75:a1:34:7c:80:f8:39:13:d0:
        63:e0:20:24:c4:70:11:c4:dc:90:3f:b2:8b:28:a6:20:
        1d:18:73:0f:8d:4c:ea:3f:6e:f3:06:d1:fa:f7:8b:f5:
        9b:0e:76:68:54:1e:05:0e:f2:ee:ad:cf:34:11:6f:56:
        0e:c2:7f:16:4d:ef:37:fc:b7:b7:b8:2f:0f:e2:12:1e:
        09:38:f6:7e:8f:b6:a5:81:18:56:bd:40:0a:37:f6:2c
    Fingerprint (SHA-256):
        3C:61:DB:73:EF:AA:81:1C:63:42:90:3C:6A:A7:FC:40:F6:E4:3C:F4:80:7B:2B:95:07:0D:7C:CB:7C:96:BE:22
    Fingerprint (SHA1):
        DB:FA:99:D0:10:13:96:F4:F0:56:8C:20:C7:D3:59:55:32:93:CE:E4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7207: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7208: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155144 (0x1dee4788)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:37 2017
            Not After : Mon May 02 15:52:37 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:57:2f:3d:46:87:27:23:94:5a:08:2b:ea:5e:a2:1c:
                    d1:20:6b:f3:9c:1d:3a:24:1b:eb:3a:df:48:57:a9:db:
                    2a:49:c2:82:26:2f:68:5c:c9:0e:af:d1:6e:cc:13:0d:
                    ec:fb:5b:98:4c:d0:c0:ca:dd:a0:e3:7a:b9:55:eb:0a:
                    3b:a9:32:84:da:28:38:64:0c:9e:60:43:41:12:3c:a1:
                    a8:b4:35:37:df:50:e2:f4:58:01:27:16:9d:b3:fc:08:
                    86:31:c9:43:38:fb:b6:66:fe:85:7b:c4:eb:c3:1a:ba:
                    ec:e8:c9:ac:9e:3f:fd:e5:b2:83:1a:d8:48:5a:3e:43:
                    61:10:0e:8e:07:5d:ea:d3:34:55:73:96:f7:52:74:d7:
                    72:36:1e:af:4c:a2:74:64:da:86:03:21:cc:ec:58:a4:
                    bd:d5:e5:b7:12:52:e4:12:05:73:ee:57:a3:d8:10:e9:
                    35:77:c2:a7:0a:22:2a:e8:91:d5:fb:6c:1d:d8:c7:3a:
                    c6:1e:70:9d:d8:36:46:45:fc:87:9d:37:9f:5f:c0:21:
                    af:b2:06:c2:7f:21:7b:74:e7:0e:d4:ea:b7:86:48:64:
                    e2:c9:a0:3b:60:d2:be:1e:07:a0:d6:02:4f:88:62:66:
                    5b:11:c5:71:1b:c9:69:6e:de:dd:65:4a:22:a1:02:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:32:05:4d:ad:15:6b:17:29:72:3b:46:85:fb:29:de:
        6a:00:23:bc:03:ae:70:fb:44:3a:60:ed:56:22:08:aa:
        ea:d0:22:5c:a5:83:eb:01:be:e9:ad:e6:05:6b:26:e8:
        b2:66:1e:7c:5c:63:b4:bb:a0:07:3e:a4:13:41:87:7c:
        b7:c7:48:b1:3b:a3:06:b4:ff:20:f9:35:50:fb:01:ee:
        94:c9:e1:a7:cc:c6:b1:3a:66:c8:93:d8:3a:f5:64:64:
        d7:3a:84:ed:54:11:5e:fe:6c:ae:84:43:03:ca:b0:4a:
        c1:91:08:8f:ec:ef:a7:1f:c4:72:95:6b:ee:1f:0b:e5:
        ba:98:22:32:39:af:15:dc:73:e1:0b:94:16:b3:71:d9:
        e0:35:0f:f7:84:c8:4f:dd:00:8e:11:74:9b:54:6d:2d:
        a1:57:83:34:00:50:c1:71:b5:b6:a5:5e:b0:4c:c1:75:
        dc:59:d7:2d:0a:74:ed:bc:dd:dd:70:49:b5:b3:a5:6d:
        b5:dc:db:f8:7d:07:f2:3a:3d:52:d3:f7:03:91:6f:9e:
        28:76:c7:8f:18:11:01:22:8c:cd:a1:11:0c:9d:f0:f2:
        80:3b:37:b8:d4:f4:87:9f:50:d0:69:8d:74:8b:b8:63:
        9b:89:76:ff:9c:71:65:ff:bb:3d:29:10:4f:be:44:10
    Fingerprint (SHA-256):
        FB:5F:D9:19:F1:B7:30:28:05:81:BC:15:45:BC:11:BB:78:C4:CC:13:39:5C:C3:08:12:BD:A7:A2:2D:2E:11:4B
    Fingerprint (SHA1):
        72:DA:2B:3D:28:14:B4:A9:62:78:23:CB:0A:40:42:49:1B:B8:38:F4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7209: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7210: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7211: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155145 (0x1dee4789)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:52:38 2017
            Not After : Mon May 02 15:52:38 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:b7:1c:ab:0e:9c:3f:1c:56:e7:df:8a:be:01:b1:49:
                    b9:c9:b4:b7:23:d7:c8:5b:15:8a:e0:b6:17:f1:9c:c1:
                    dd:19:6e:e6:07:cc:28:e7:4d:ee:e5:50:28:5b:e4:2e:
                    3c:4f:89:da:61:fc:2a:25:8e:a4:dd:bb:69:6f:a9:a6:
                    2d:44:90:f6:37:0e:07:cd:41:46:10:6c:7e:ca:40:98:
                    84:ae:6e:c6:bb:97:db:97:b9:ca:60:68:4f:b3:bc:35:
                    f2:ae:a3:d7:c6:be:ef:9a:a6:38:de:f1:10:c2:7a:6c:
                    32:68:b5:ab:98:c6:dc:07:69:6f:3d:18:d6:74:29:73:
                    5f:72:f1:bb:ec:35:e2:51:fe:f1:e4:2d:3f:d1:d6:7a:
                    eb:86:0c:ba:2a:49:c2:aa:55:92:c7:a7:08:fd:c9:ef:
                    e4:3d:93:91:93:6c:af:56:a2:58:ae:d3:ea:42:91:77:
                    d8:87:36:00:0c:11:d3:30:48:e4:f2:b7:c6:5b:1b:be:
                    23:ca:7d:18:bd:35:65:30:f6:ff:41:51:41:66:35:9f:
                    8f:ad:e3:42:2a:b6:a5:56:0e:5a:c8:b4:db:49:4c:66:
                    26:71:06:52:66:99:bc:df:f3:32:ac:32:ec:0f:99:19:
                    68:68:68:5c:52:aa:9a:ac:b2:e4:22:a7:fb:a4:59:29
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:0c:76:27:27:22:d3:56:5e:1a:e2:79:8a:61:b7:7c:
        39:72:02:71:54:a6:4a:f4:37:98:af:38:a7:63:51:3e:
        dd:1e:4f:94:bb:54:a9:37:02:6a:24:15:cb:40:39:4f:
        64:02:7c:1a:21:b9:c4:f0:4e:6b:56:59:ff:20:9f:19:
        32:18:db:38:d4:69:f8:58:be:ea:5d:57:c1:50:65:75:
        ab:bd:4e:43:ec:ea:a0:91:d8:38:ef:b4:e1:b3:c5:e5:
        b2:4f:01:35:d5:81:54:c7:9b:a9:75:f6:60:72:3f:4f:
        f5:11:d4:e0:a9:e0:af:05:b5:df:57:cc:5b:82:a2:89:
        b8:39:eb:84:1f:9b:a8:bf:b2:74:82:12:0a:34:0f:31:
        81:4e:a7:12:a8:17:e6:bb:c4:de:66:0b:62:25:98:87:
        76:74:86:29:ef:d8:3c:81:06:f0:f2:7b:6e:7a:01:5e:
        54:17:a4:87:ec:bd:14:50:e0:3a:9c:ca:91:e9:ff:bb:
        22:7c:29:77:43:cb:05:32:63:22:55:b9:c5:49:93:e3:
        7a:5c:45:3f:cf:5f:83:e2:99:cb:08:73:62:ba:ab:8b:
        2d:aa:84:c5:00:4e:6e:e4:fd:82:1c:cf:1b:29:83:65:
        b9:9c:d9:c2:e2:74:59:f8:f4:e3:19:da:e8:d4:80:c9
    Fingerprint (SHA-256):
        12:E4:85:13:3E:64:2B:37:09:1C:2E:38:80:56:6E:B0:6F:A1:A8:8B:AD:40:83:0C:FA:08:A4:87:04:CE:8B:D6
    Fingerprint (SHA1):
        34:17:1A:E5:95:F1:1E:7E:97:38:36:99:D5:73:F3:A5:5E:64:C4:9C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7212: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7213: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155148 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7214: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7215: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7216: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7217: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155149   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7218: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7219: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7220: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7221: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155150   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA1Root-502154927.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7222: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7223: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #7224: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7225: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502155151   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7226: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7227: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #7228: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155148 (0x1dee478c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:52:40 2017
            Not After : Mon May 02 15:52:40 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:ac:df:71:af:b8:a0:dd:10:d9:ef:d8:8d:6e:20:67:
                    19:fb:72:40:03:2f:96:ce:ce:1d:f5:56:8e:46:b9:d1:
                    72:c2:51:07:5f:e0:7f:5c:27:f0:10:2c:13:89:0c:52:
                    13:c8:d6:bf:3e:ae:cb:a2:62:13:c3:23:ae:60:63:84:
                    51:7b:3a:5f:e7:8f:4f:22:16:51:ed:8a:2c:ee:df:57:
                    19:76:77:f0:20:e6:25:37:a7:64:24:7e:f1:6f:d8:3f:
                    f0:e3:58:48:1d:06:0f:ae:bc:7d:e9:f4:0b:15:9e:c8:
                    44:05:d5:02:39:03:c9:47:cc:16:29:6f:b7:89:d9:40:
                    a1:57:e9:3f:f8:0e:35:87:98:d3:bc:a6:b3:b7:c0:06:
                    ee:61:1b:5a:b9:91:96:95:4d:79:f9:df:75:86:41:12:
                    6e:53:76:d2:61:95:52:ef:f2:be:fa:fd:12:09:3a:97:
                    77:b6:d9:84:71:cf:07:34:d3:7a:d3:d9:a0:69:66:ef:
                    9c:b5:be:67:cc:fe:29:2e:b1:6c:9a:e9:af:a5:e1:77:
                    6f:04:40:92:2e:e9:f3:1e:56:59:d6:d2:5a:4a:74:8b:
                    47:eb:eb:e0:fb:8f:77:74:51:5b:d3:db:59:cc:99:7b:
                    a3:88:19:43:cf:36:b2:6e:3b:08:64:9b:fb:97:2c:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:12:40:23:7e:22:f1:aa:4f:05:c3:89:7f:6e:e6:55:
        42:31:0b:d3:a7:ec:e7:94:09:b4:11:be:e4:67:41:e7:
        14:f2:ad:d5:1e:8d:14:80:5f:b3:ef:f4:15:88:6f:ab:
        f0:87:7e:c4:7b:4e:1a:0b:25:b7:89:30:1b:bf:26:b3:
        ec:1e:28:92:c1:f8:87:60:2b:57:19:25:98:b8:28:a6:
        59:d2:19:a9:7d:3e:9c:2b:c2:69:2f:6f:cd:12:b4:f7:
        44:7e:46:3f:32:e9:cd:53:54:b0:87:4c:61:a6:dd:93:
        9c:41:84:79:2d:5c:f2:a7:67:b3:54:28:2f:b3:43:2c:
        03:12:f7:a8:28:f3:d7:25:49:93:db:9f:80:05:02:14:
        ec:88:30:98:45:f5:b4:1d:e8:5a:08:b1:03:00:c2:ec:
        93:1a:8e:34:dd:7b:cd:c1:fd:7d:9f:88:f4:48:41:6a:
        27:6d:19:fc:b4:d3:d6:65:05:4b:de:79:81:4d:a3:f0:
        7f:fd:f0:13:06:18:c9:17:ab:d9:1b:71:06:c0:ba:79:
        13:89:0d:e3:86:8e:f2:d7:f7:08:38:f0:4c:bc:9b:ef:
        41:04:9b:4e:ab:fd:2b:e9:ee:d4:87:bd:84:f2:9b:0f:
        92:30:a7:77:89:66:e1:13:94:00:a6:10:40:5d:a0:33
    Fingerprint (SHA-256):
        51:36:DA:8C:01:D0:1B:A9:BF:61:8C:51:9E:E7:FB:AB:02:6C:D3:A4:FC:5B:48:69:83:D1:C5:A6:64:63:14:5A
    Fingerprint (SHA1):
        76:50:E5:94:A5:08:4F:7E:ED:05:14:F1:AE:E3:F6:26:BB:A7:33:5B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7229: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7230: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155152 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7231: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7232: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7233: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155153 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7234: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7235: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7236: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7237: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155154 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7238: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7239: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155155 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7240: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7241: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7242: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7243: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7244: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155156   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502154928.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7245: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7246: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7247: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7248: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155157   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7249: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7250: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7251: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7252: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155153 (0x1dee4791)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:44 2017
            Not After : Mon May 02 15:52:44 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:6a:cf:4b:55:78:0a:55:97:5b:70:c4:9c:fa:24:5e:
                    83:29:57:4d:5e:e1:62:fe:e4:bb:ca:a5:23:de:53:2e:
                    f7:cb:d9:f1:3e:3e:f3:02:5f:72:17:58:ae:99:43:65:
                    8e:75:00:97:0f:02:3a:86:d7:ae:32:e0:dd:c1:c6:6d:
                    c6:cb:0d:65:c2:b4:15:6a:a7:8d:8a:52:49:7b:13:9b:
                    d8:c7:43:42:22:d6:14:e4:93:b4:6d:82:ff:11:79:26:
                    21:18:2b:ef:5f:f2:2c:8d:6e:97:83:dd:10:9f:c7:1a:
                    9c:13:d2:78:d8:64:6f:a1:ed:74:38:5d:05:66:41:cf:
                    22:31:5c:c8:c8:17:ac:65:ae:b2:9c:f6:d1:0c:bb:b0:
                    9c:5a:7e:fc:d5:d4:db:8d:d9:7e:22:9d:d1:8c:95:e5:
                    bb:75:ad:55:12:04:c1:66:50:ad:06:81:61:ab:ba:2c:
                    d3:59:8d:1a:a4:3c:59:a9:d3:0e:f4:60:ce:2a:a8:e7:
                    b9:fa:84:2f:9d:dd:e6:c5:58:75:56:af:ec:4f:0d:b5:
                    91:ab:39:49:02:34:c3:cc:8b:3b:26:ea:58:cf:3f:34:
                    ab:11:fe:bd:e2:b8:4f:f5:6f:a7:aa:57:3b:1a:35:b4:
                    82:fd:bc:48:bc:ec:31:49:12:2b:c2:e8:17:65:3c:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:06:50:68:f2:f8:53:67:b8:a4:86:ac:b4:42:9e:f7:
        a5:42:64:30:a7:be:af:e0:7b:c1:44:c6:49:99:d9:94:
        ae:25:ad:ea:38:ef:13:aa:c5:9c:04:51:f8:60:fa:34:
        95:66:71:24:9b:39:43:d4:b8:d0:53:f5:38:02:8d:fc:
        23:9e:b2:d1:a8:56:f2:cc:36:80:ab:05:c3:5c:f0:41:
        aa:48:bd:04:ca:c1:24:4a:20:ef:b9:23:9e:d0:7d:4e:
        19:cf:d8:7e:3e:a2:46:74:ec:d9:d5:ba:83:1a:82:0f:
        7a:85:8e:ec:8f:65:0e:68:e7:8e:d6:54:a6:40:f5:37:
        18:bb:8f:ef:10:82:b8:25:6e:3a:c4:7a:81:32:1a:e1:
        5f:0c:27:5c:e4:0e:cd:27:cf:3f:42:d5:86:cb:8b:e1:
        b9:57:f4:a3:51:37:07:2b:4f:1a:7a:a0:4b:dd:74:43:
        31:15:2f:f2:9d:d5:83:14:14:29:4f:06:8c:92:27:f5:
        d0:51:d3:17:27:81:98:a5:02:8e:ce:d4:45:59:40:10:
        f9:ee:ab:60:2e:22:b2:53:46:7b:d3:37:86:cc:23:aa:
        14:2d:9d:f4:87:68:9f:79:f4:85:53:48:a2:e4:4b:25:
        5e:00:e3:7f:4e:0b:25:84:a9:78:fa:23:1e:8e:a3:10
    Fingerprint (SHA-256):
        1A:60:9C:B4:90:32:51:23:FB:03:6C:77:36:57:8C:69:23:A9:E7:76:D7:27:74:15:FE:89:54:B1:F3:61:22:86
    Fingerprint (SHA1):
        CD:02:8C:85:9B:FF:12:1B:5B:95:07:46:62:59:E0:B9:5F:16:DE:97
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7253: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155153 (0x1dee4791)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:44 2017
            Not After : Mon May 02 15:52:44 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:6a:cf:4b:55:78:0a:55:97:5b:70:c4:9c:fa:24:5e:
                    83:29:57:4d:5e:e1:62:fe:e4:bb:ca:a5:23:de:53:2e:
                    f7:cb:d9:f1:3e:3e:f3:02:5f:72:17:58:ae:99:43:65:
                    8e:75:00:97:0f:02:3a:86:d7:ae:32:e0:dd:c1:c6:6d:
                    c6:cb:0d:65:c2:b4:15:6a:a7:8d:8a:52:49:7b:13:9b:
                    d8:c7:43:42:22:d6:14:e4:93:b4:6d:82:ff:11:79:26:
                    21:18:2b:ef:5f:f2:2c:8d:6e:97:83:dd:10:9f:c7:1a:
                    9c:13:d2:78:d8:64:6f:a1:ed:74:38:5d:05:66:41:cf:
                    22:31:5c:c8:c8:17:ac:65:ae:b2:9c:f6:d1:0c:bb:b0:
                    9c:5a:7e:fc:d5:d4:db:8d:d9:7e:22:9d:d1:8c:95:e5:
                    bb:75:ad:55:12:04:c1:66:50:ad:06:81:61:ab:ba:2c:
                    d3:59:8d:1a:a4:3c:59:a9:d3:0e:f4:60:ce:2a:a8:e7:
                    b9:fa:84:2f:9d:dd:e6:c5:58:75:56:af:ec:4f:0d:b5:
                    91:ab:39:49:02:34:c3:cc:8b:3b:26:ea:58:cf:3f:34:
                    ab:11:fe:bd:e2:b8:4f:f5:6f:a7:aa:57:3b:1a:35:b4:
                    82:fd:bc:48:bc:ec:31:49:12:2b:c2:e8:17:65:3c:9b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        54:06:50:68:f2:f8:53:67:b8:a4:86:ac:b4:42:9e:f7:
        a5:42:64:30:a7:be:af:e0:7b:c1:44:c6:49:99:d9:94:
        ae:25:ad:ea:38:ef:13:aa:c5:9c:04:51:f8:60:fa:34:
        95:66:71:24:9b:39:43:d4:b8:d0:53:f5:38:02:8d:fc:
        23:9e:b2:d1:a8:56:f2:cc:36:80:ab:05:c3:5c:f0:41:
        aa:48:bd:04:ca:c1:24:4a:20:ef:b9:23:9e:d0:7d:4e:
        19:cf:d8:7e:3e:a2:46:74:ec:d9:d5:ba:83:1a:82:0f:
        7a:85:8e:ec:8f:65:0e:68:e7:8e:d6:54:a6:40:f5:37:
        18:bb:8f:ef:10:82:b8:25:6e:3a:c4:7a:81:32:1a:e1:
        5f:0c:27:5c:e4:0e:cd:27:cf:3f:42:d5:86:cb:8b:e1:
        b9:57:f4:a3:51:37:07:2b:4f:1a:7a:a0:4b:dd:74:43:
        31:15:2f:f2:9d:d5:83:14:14:29:4f:06:8c:92:27:f5:
        d0:51:d3:17:27:81:98:a5:02:8e:ce:d4:45:59:40:10:
        f9:ee:ab:60:2e:22:b2:53:46:7b:d3:37:86:cc:23:aa:
        14:2d:9d:f4:87:68:9f:79:f4:85:53:48:a2:e4:4b:25:
        5e:00:e3:7f:4e:0b:25:84:a9:78:fa:23:1e:8e:a3:10
    Fingerprint (SHA-256):
        1A:60:9C:B4:90:32:51:23:FB:03:6C:77:36:57:8C:69:23:A9:E7:76:D7:27:74:15:FE:89:54:B1:F3:61:22:86
    Fingerprint (SHA1):
        CD:02:8C:85:9B:FF:12:1B:5B:95:07:46:62:59:E0:B9:5F:16:DE:97
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7254: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7255: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155158 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7256: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7257: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7258: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155159 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7259: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7260: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7261: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7262: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502155160 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7263: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7264: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502155161 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7265: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7266: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #7267: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7268: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7269: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155162   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502154929.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7270: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7271: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7272: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7273: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155163   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7274: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7275: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7276: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7277: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502155164   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-BridgeNavy-502154930.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7278: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7279: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7280: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7281: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155165   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7282: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7283: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #7284: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #7285: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155159 (0x1dee4797)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:49 2017
            Not After : Mon May 02 15:52:49 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:99:53:dd:df:5e:a3:d8:84:cb:ca:a8:a0:25:39:2a:
                    70:82:b0:c2:6e:58:33:c7:45:9d:c3:16:34:07:2f:2f:
                    17:09:8d:d2:56:8f:7e:e6:49:5a:a0:80:ca:2c:1a:5b:
                    20:f2:b5:08:18:4c:70:a9:e4:06:e3:af:78:b5:f9:45:
                    82:4e:33:32:da:4f:84:35:92:b7:cb:0b:ef:e9:55:1a:
                    1b:de:0d:ab:4b:e9:4c:ad:4b:2a:ee:22:02:26:76:a3:
                    2e:3d:0f:e0:4b:53:ff:74:8c:f8:bb:0f:99:b9:e5:37:
                    2a:a9:c2:ab:5f:a6:2f:15:0c:03:97:98:4b:c2:b9:90:
                    54:e3:fd:89:b8:bf:55:ad:65:2a:d8:22:a6:68:22:ad:
                    97:e0:54:d8:57:29:94:92:65:0c:80:dd:fe:2a:1e:c0:
                    8c:8c:de:cc:35:bf:5c:a1:f3:57:42:13:bb:54:23:c5:
                    90:84:3d:4d:71:04:59:e0:d9:e9:59:43:86:b9:2a:fe:
                    0c:38:0a:3a:aa:8d:f6:b0:44:e2:32:1a:64:cd:32:57:
                    5e:ae:f1:d7:2e:40:8f:ea:51:93:3a:10:d0:bc:ce:11:
                    66:a2:30:f3:07:e7:92:66:84:35:b9:3a:49:3e:d2:73:
                    22:3d:16:ac:5b:7e:38:f9:a2:11:dd:35:90:ad:74:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d1:73:c9:17:4b:1e:7a:c9:c3:ee:ab:00:20:5b:78:13:
        ae:58:ca:73:b0:e4:00:b5:97:e3:d1:b7:06:ef:73:75:
        9e:88:2a:f4:55:c4:f1:e8:30:87:44:23:ea:2d:0a:47:
        66:16:63:f0:72:52:3f:88:05:c0:56:c1:c5:ed:e4:1f:
        e9:7a:ba:e6:d0:be:e9:1d:d4:40:bb:e9:4b:27:09:00:
        e6:28:6e:9a:3f:06:75:b1:4e:1f:ac:72:ec:c3:a7:f7:
        ff:09:d3:58:a5:fd:69:b5:5b:3c:e9:47:90:a0:c9:53:
        78:40:69:97:94:20:d5:34:e0:e7:91:46:b7:29:1b:86:
        e4:e4:d7:26:45:b3:40:1f:1d:f4:f9:b5:6a:55:7c:16:
        5e:53:c5:c8:41:d8:d9:bb:a8:be:8b:83:38:94:a1:16:
        0e:6d:40:a7:74:9e:20:41:bb:49:17:eb:7d:68:6c:00:
        f2:be:c0:6f:99:67:a4:89:a1:57:f2:7d:93:11:5e:31:
        34:69:12:fe:8e:dc:5a:4f:07:64:55:f4:8e:cd:af:6c:
        1e:69:e4:b1:ed:38:da:4c:c0:e9:08:08:9d:ae:06:f1:
        e8:1d:23:2d:95:69:41:88:93:cd:a0:0f:3d:86:ce:97:
        cd:e9:36:fe:6c:e8:2b:37:56:9c:84:e6:12:95:b5:66
    Fingerprint (SHA-256):
        DD:BA:4F:22:58:00:EF:38:CF:6A:9F:3C:7A:E8:96:22:C6:51:FF:A2:7A:8A:98:86:A6:6E:53:B9:DB:81:1C:2B
    Fingerprint (SHA1):
        B0:1B:D9:FD:74:55:51:32:89:6B:C8:8B:E2:36:70:AD:19:3C:58:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7286: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155159 (0x1dee4797)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:49 2017
            Not After : Mon May 02 15:52:49 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:99:53:dd:df:5e:a3:d8:84:cb:ca:a8:a0:25:39:2a:
                    70:82:b0:c2:6e:58:33:c7:45:9d:c3:16:34:07:2f:2f:
                    17:09:8d:d2:56:8f:7e:e6:49:5a:a0:80:ca:2c:1a:5b:
                    20:f2:b5:08:18:4c:70:a9:e4:06:e3:af:78:b5:f9:45:
                    82:4e:33:32:da:4f:84:35:92:b7:cb:0b:ef:e9:55:1a:
                    1b:de:0d:ab:4b:e9:4c:ad:4b:2a:ee:22:02:26:76:a3:
                    2e:3d:0f:e0:4b:53:ff:74:8c:f8:bb:0f:99:b9:e5:37:
                    2a:a9:c2:ab:5f:a6:2f:15:0c:03:97:98:4b:c2:b9:90:
                    54:e3:fd:89:b8:bf:55:ad:65:2a:d8:22:a6:68:22:ad:
                    97:e0:54:d8:57:29:94:92:65:0c:80:dd:fe:2a:1e:c0:
                    8c:8c:de:cc:35:bf:5c:a1:f3:57:42:13:bb:54:23:c5:
                    90:84:3d:4d:71:04:59:e0:d9:e9:59:43:86:b9:2a:fe:
                    0c:38:0a:3a:aa:8d:f6:b0:44:e2:32:1a:64:cd:32:57:
                    5e:ae:f1:d7:2e:40:8f:ea:51:93:3a:10:d0:bc:ce:11:
                    66:a2:30:f3:07:e7:92:66:84:35:b9:3a:49:3e:d2:73:
                    22:3d:16:ac:5b:7e:38:f9:a2:11:dd:35:90:ad:74:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d1:73:c9:17:4b:1e:7a:c9:c3:ee:ab:00:20:5b:78:13:
        ae:58:ca:73:b0:e4:00:b5:97:e3:d1:b7:06:ef:73:75:
        9e:88:2a:f4:55:c4:f1:e8:30:87:44:23:ea:2d:0a:47:
        66:16:63:f0:72:52:3f:88:05:c0:56:c1:c5:ed:e4:1f:
        e9:7a:ba:e6:d0:be:e9:1d:d4:40:bb:e9:4b:27:09:00:
        e6:28:6e:9a:3f:06:75:b1:4e:1f:ac:72:ec:c3:a7:f7:
        ff:09:d3:58:a5:fd:69:b5:5b:3c:e9:47:90:a0:c9:53:
        78:40:69:97:94:20:d5:34:e0:e7:91:46:b7:29:1b:86:
        e4:e4:d7:26:45:b3:40:1f:1d:f4:f9:b5:6a:55:7c:16:
        5e:53:c5:c8:41:d8:d9:bb:a8:be:8b:83:38:94:a1:16:
        0e:6d:40:a7:74:9e:20:41:bb:49:17:eb:7d:68:6c:00:
        f2:be:c0:6f:99:67:a4:89:a1:57:f2:7d:93:11:5e:31:
        34:69:12:fe:8e:dc:5a:4f:07:64:55:f4:8e:cd:af:6c:
        1e:69:e4:b1:ed:38:da:4c:c0:e9:08:08:9d:ae:06:f1:
        e8:1d:23:2d:95:69:41:88:93:cd:a0:0f:3d:86:ce:97:
        cd:e9:36:fe:6c:e8:2b:37:56:9c:84:e6:12:95:b5:66
    Fingerprint (SHA-256):
        DD:BA:4F:22:58:00:EF:38:CF:6A:9F:3C:7A:E8:96:22:C6:51:FF:A2:7A:8A:98:86:A6:6E:53:B9:DB:81:1C:2B
    Fingerprint (SHA1):
        B0:1B:D9:FD:74:55:51:32:89:6B:C8:8B:E2:36:70:AD:19:3C:58:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7287: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #7288: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155158 (0x1dee4796)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:52:48 2017
            Not After : Mon May 02 15:52:48 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:73:05:11:11:a2:cb:02:a7:7a:05:af:a5:79:7e:d9:
                    08:b3:4b:9e:e1:2e:25:2b:30:da:67:14:33:82:2b:76:
                    5c:c2:79:25:0d:aa:a5:c7:04:51:67:76:6a:b6:da:c2:
                    c7:59:28:0d:86:ba:24:cf:b0:46:20:0a:45:b6:2b:f3:
                    f0:4d:f0:9c:20:13:98:64:58:fe:66:e5:e8:71:25:b2:
                    5b:13:74:d7:c4:01:f7:3e:3d:b7:ae:84:90:4d:76:82:
                    58:6d:a4:51:23:63:13:8c:ad:cc:a5:be:fc:5f:76:ba:
                    e4:50:99:33:3f:3e:58:bf:3b:1e:1d:39:22:93:e0:64:
                    fe:85:bd:b0:6a:1e:18:da:2a:8c:c1:af:9e:c6:0f:4b:
                    a6:cf:3b:75:c1:80:09:7a:11:e9:71:46:ed:32:10:3b:
                    e3:96:c3:5d:f7:4c:2c:5d:52:63:63:9a:4e:c9:b2:fb:
                    df:a7:c9:77:40:32:5f:6c:9b:b4:8a:f1:84:ec:f9:18:
                    94:d7:06:c5:54:36:a6:38:d6:a4:95:50:71:86:8a:70:
                    72:90:e8:ba:8d:b6:4d:da:0d:a8:86:a8:23:96:96:1f:
                    0c:f7:bf:15:88:36:d2:63:15:0b:e1:68:e4:e7:f7:43:
                    40:7f:7c:b9:71:72:ac:f8:ba:06:43:69:32:83:f3:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        22:da:91:0e:01:2e:60:05:2f:91:9a:25:5e:cb:35:74:
        e8:81:29:79:b2:a3:38:9e:8a:90:0d:af:c4:e9:2f:a3:
        eb:a2:4a:2a:9b:2c:bf:18:00:ca:35:71:41:5f:e4:fc:
        df:5a:4a:a9:8e:b8:34:dc:3c:9d:5c:65:6b:18:0e:7f:
        77:de:a3:e9:6c:a2:d4:0f:b2:7a:40:9f:e9:7a:3d:1e:
        30:f0:1b:a4:3a:d5:e5:65:2a:85:68:19:95:55:9a:d7:
        96:9a:0e:e9:87:00:97:96:2f:b4:19:84:2f:3a:8e:bb:
        e2:cd:84:f8:70:cd:15:85:8d:38:58:39:25:b5:fe:19:
        9f:52:d2:4d:af:08:98:1a:2a:ce:73:63:d2:91:42:09:
        56:32:85:12:14:67:c9:03:c4:83:3d:8a:90:5e:8a:26:
        b2:a2:e1:13:a6:de:2d:78:72:b0:45:a0:53:ef:be:01:
        91:84:2d:f4:99:cf:1b:1e:fd:20:dc:30:88:d3:82:ae:
        69:45:da:a8:49:81:97:5f:77:c4:95:64:9d:cd:e7:fb:
        16:ee:0c:e7:b2:77:62:95:39:f3:62:1f:10:ae:bc:d5:
        d8:d8:2c:84:2f:a3:bd:fc:a7:16:ad:6f:43:98:13:c2:
        69:78:c6:4c:f9:96:5a:88:44:d6:8c:87:a0:4b:95:13
    Fingerprint (SHA-256):
        50:60:00:C1:68:D0:3E:FE:41:86:D3:00:74:3C:ED:AD:25:6D:69:3A:D5:7F:C4:7A:18:FF:AC:E2:55:B3:4D:38
    Fingerprint (SHA1):
        50:74:2C:65:1E:E8:AC:8A:AD:4F:3E:D6:4F:83:42:98:C2:29:72:9E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7289: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155159 (0x1dee4797)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:49 2017
            Not After : Mon May 02 15:52:49 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:99:53:dd:df:5e:a3:d8:84:cb:ca:a8:a0:25:39:2a:
                    70:82:b0:c2:6e:58:33:c7:45:9d:c3:16:34:07:2f:2f:
                    17:09:8d:d2:56:8f:7e:e6:49:5a:a0:80:ca:2c:1a:5b:
                    20:f2:b5:08:18:4c:70:a9:e4:06:e3:af:78:b5:f9:45:
                    82:4e:33:32:da:4f:84:35:92:b7:cb:0b:ef:e9:55:1a:
                    1b:de:0d:ab:4b:e9:4c:ad:4b:2a:ee:22:02:26:76:a3:
                    2e:3d:0f:e0:4b:53:ff:74:8c:f8:bb:0f:99:b9:e5:37:
                    2a:a9:c2:ab:5f:a6:2f:15:0c:03:97:98:4b:c2:b9:90:
                    54:e3:fd:89:b8:bf:55:ad:65:2a:d8:22:a6:68:22:ad:
                    97:e0:54:d8:57:29:94:92:65:0c:80:dd:fe:2a:1e:c0:
                    8c:8c:de:cc:35:bf:5c:a1:f3:57:42:13:bb:54:23:c5:
                    90:84:3d:4d:71:04:59:e0:d9:e9:59:43:86:b9:2a:fe:
                    0c:38:0a:3a:aa:8d:f6:b0:44:e2:32:1a:64:cd:32:57:
                    5e:ae:f1:d7:2e:40:8f:ea:51:93:3a:10:d0:bc:ce:11:
                    66:a2:30:f3:07:e7:92:66:84:35:b9:3a:49:3e:d2:73:
                    22:3d:16:ac:5b:7e:38:f9:a2:11:dd:35:90:ad:74:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d1:73:c9:17:4b:1e:7a:c9:c3:ee:ab:00:20:5b:78:13:
        ae:58:ca:73:b0:e4:00:b5:97:e3:d1:b7:06:ef:73:75:
        9e:88:2a:f4:55:c4:f1:e8:30:87:44:23:ea:2d:0a:47:
        66:16:63:f0:72:52:3f:88:05:c0:56:c1:c5:ed:e4:1f:
        e9:7a:ba:e6:d0:be:e9:1d:d4:40:bb:e9:4b:27:09:00:
        e6:28:6e:9a:3f:06:75:b1:4e:1f:ac:72:ec:c3:a7:f7:
        ff:09:d3:58:a5:fd:69:b5:5b:3c:e9:47:90:a0:c9:53:
        78:40:69:97:94:20:d5:34:e0:e7:91:46:b7:29:1b:86:
        e4:e4:d7:26:45:b3:40:1f:1d:f4:f9:b5:6a:55:7c:16:
        5e:53:c5:c8:41:d8:d9:bb:a8:be:8b:83:38:94:a1:16:
        0e:6d:40:a7:74:9e:20:41:bb:49:17:eb:7d:68:6c:00:
        f2:be:c0:6f:99:67:a4:89:a1:57:f2:7d:93:11:5e:31:
        34:69:12:fe:8e:dc:5a:4f:07:64:55:f4:8e:cd:af:6c:
        1e:69:e4:b1:ed:38:da:4c:c0:e9:08:08:9d:ae:06:f1:
        e8:1d:23:2d:95:69:41:88:93:cd:a0:0f:3d:86:ce:97:
        cd:e9:36:fe:6c:e8:2b:37:56:9c:84:e6:12:95:b5:66
    Fingerprint (SHA-256):
        DD:BA:4F:22:58:00:EF:38:CF:6A:9F:3C:7A:E8:96:22:C6:51:FF:A2:7A:8A:98:86:A6:6E:53:B9:DB:81:1C:2B
    Fingerprint (SHA1):
        B0:1B:D9:FD:74:55:51:32:89:6B:C8:8B:E2:36:70:AD:19:3C:58:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7290: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155159 (0x1dee4797)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:49 2017
            Not After : Mon May 02 15:52:49 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:99:53:dd:df:5e:a3:d8:84:cb:ca:a8:a0:25:39:2a:
                    70:82:b0:c2:6e:58:33:c7:45:9d:c3:16:34:07:2f:2f:
                    17:09:8d:d2:56:8f:7e:e6:49:5a:a0:80:ca:2c:1a:5b:
                    20:f2:b5:08:18:4c:70:a9:e4:06:e3:af:78:b5:f9:45:
                    82:4e:33:32:da:4f:84:35:92:b7:cb:0b:ef:e9:55:1a:
                    1b:de:0d:ab:4b:e9:4c:ad:4b:2a:ee:22:02:26:76:a3:
                    2e:3d:0f:e0:4b:53:ff:74:8c:f8:bb:0f:99:b9:e5:37:
                    2a:a9:c2:ab:5f:a6:2f:15:0c:03:97:98:4b:c2:b9:90:
                    54:e3:fd:89:b8:bf:55:ad:65:2a:d8:22:a6:68:22:ad:
                    97:e0:54:d8:57:29:94:92:65:0c:80:dd:fe:2a:1e:c0:
                    8c:8c:de:cc:35:bf:5c:a1:f3:57:42:13:bb:54:23:c5:
                    90:84:3d:4d:71:04:59:e0:d9:e9:59:43:86:b9:2a:fe:
                    0c:38:0a:3a:aa:8d:f6:b0:44:e2:32:1a:64:cd:32:57:
                    5e:ae:f1:d7:2e:40:8f:ea:51:93:3a:10:d0:bc:ce:11:
                    66:a2:30:f3:07:e7:92:66:84:35:b9:3a:49:3e:d2:73:
                    22:3d:16:ac:5b:7e:38:f9:a2:11:dd:35:90:ad:74:bb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d1:73:c9:17:4b:1e:7a:c9:c3:ee:ab:00:20:5b:78:13:
        ae:58:ca:73:b0:e4:00:b5:97:e3:d1:b7:06:ef:73:75:
        9e:88:2a:f4:55:c4:f1:e8:30:87:44:23:ea:2d:0a:47:
        66:16:63:f0:72:52:3f:88:05:c0:56:c1:c5:ed:e4:1f:
        e9:7a:ba:e6:d0:be:e9:1d:d4:40:bb:e9:4b:27:09:00:
        e6:28:6e:9a:3f:06:75:b1:4e:1f:ac:72:ec:c3:a7:f7:
        ff:09:d3:58:a5:fd:69:b5:5b:3c:e9:47:90:a0:c9:53:
        78:40:69:97:94:20:d5:34:e0:e7:91:46:b7:29:1b:86:
        e4:e4:d7:26:45:b3:40:1f:1d:f4:f9:b5:6a:55:7c:16:
        5e:53:c5:c8:41:d8:d9:bb:a8:be:8b:83:38:94:a1:16:
        0e:6d:40:a7:74:9e:20:41:bb:49:17:eb:7d:68:6c:00:
        f2:be:c0:6f:99:67:a4:89:a1:57:f2:7d:93:11:5e:31:
        34:69:12:fe:8e:dc:5a:4f:07:64:55:f4:8e:cd:af:6c:
        1e:69:e4:b1:ed:38:da:4c:c0:e9:08:08:9d:ae:06:f1:
        e8:1d:23:2d:95:69:41:88:93:cd:a0:0f:3d:86:ce:97:
        cd:e9:36:fe:6c:e8:2b:37:56:9c:84:e6:12:95:b5:66
    Fingerprint (SHA-256):
        DD:BA:4F:22:58:00:EF:38:CF:6A:9F:3C:7A:E8:96:22:C6:51:FF:A2:7A:8A:98:86:A6:6E:53:B9:DB:81:1C:2B
    Fingerprint (SHA1):
        B0:1B:D9:FD:74:55:51:32:89:6B:C8:8B:E2:36:70:AD:19:3C:58:74
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #7291: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #7292: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155166 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7293: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #7294: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #7295: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155167 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7296: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #7297: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #7298: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7299: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502155168   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7300: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7301: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #7302: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7303: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502155169   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7304: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7305: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #7306: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7307: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502155170 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7308: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7309: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502155171 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #7310: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7311: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #7312: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7313: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7314: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502155172   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7315: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7316: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7317: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7318: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502155173   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7319: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7320: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7321: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7322: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155174   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7323: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7324: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7325: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7326: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155175   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7327: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7328: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7329: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155166 (0x1dee479e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 15:52:53 2017
            Not After : Mon May 02 15:52:53 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:ee:2e:1a:af:46:e8:90:9e:e6:21:fb:79:7e:be:cd:
                    32:84:cf:a9:20:06:4d:59:f0:56:76:25:a7:ba:e2:3a:
                    a3:ca:44:66:88:65:15:1b:c0:63:a8:4c:ee:3d:eb:8e:
                    ab:38:62:68:7a:cc:3d:14:8f:93:db:89:09:38:ba:be:
                    3e:de:19:1b:38:b5:01:a1:a7:b0:a4:98:02:03:bb:fa:
                    af:9a:68:b1:29:43:e3:2f:f4:b2:b4:66:e9:1c:33:42:
                    ec:03:a5:75:3e:31:01:91:3c:65:76:e7:4a:80:22:9c:
                    d5:8f:e1:e6:31:03:1f:78:eb:ed:1a:f8:6e:88:06:82:
                    d5:3b:b9:6e:1c:66:70:3a:f7:33:67:b4:f8:d6:c1:ad:
                    f6:12:48:a5:fe:1a:50:ab:2d:8b:b9:b9:a9:a6:2e:88:
                    8e:6a:b2:6c:88:3d:00:65:77:1a:74:f3:e9:c2:40:97:
                    89:e2:c0:5c:e8:9a:eb:da:b8:5b:46:16:49:98:68:06:
                    92:c4:15:a4:27:55:62:29:ff:8a:f7:f7:2e:40:cc:5e:
                    da:77:74:a9:51:47:40:b3:c0:c9:59:e7:a9:7e:43:f6:
                    35:e5:1a:f5:61:e8:b0:3c:57:9d:1c:c3:17:5d:01:2a:
                    ed:0d:5f:ab:b6:56:12:93:43:f4:e9:1c:09:ca:59:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:01:fa:c3:e5:b5:ef:04:a8:f3:b3:d8:db:d8:be:97:
        21:63:19:96:bd:88:b4:f5:1f:05:75:7b:42:96:08:6a:
        e7:0b:79:3d:9b:9e:2c:cd:6e:f4:1e:47:f9:9c:24:1a:
        5f:1d:ab:af:9d:5c:08:7f:c5:75:fd:65:3f:05:d5:4c:
        c8:65:72:59:d7:f9:74:c6:cd:ae:1f:c1:1d:80:28:eb:
        92:70:60:f3:98:4c:cd:98:a6:91:e2:b5:6a:60:c2:a3:
        59:2f:b9:b6:8b:7a:1f:f3:73:22:ee:65:d1:b6:21:f8:
        51:f1:83:ac:38:9b:6e:cf:7c:cf:9e:ab:0d:27:3e:7b:
        79:ea:02:f9:c6:ac:75:07:27:a0:a2:0e:ee:76:b2:2d:
        5e:e8:21:95:fd:4d:e2:c2:ac:ec:08:09:99:84:44:6d:
        33:55:eb:6e:70:b9:05:ce:5e:82:e5:2b:d3:cc:cb:90:
        54:06:64:e6:29:8e:a9:a5:95:b6:5e:aa:8d:8f:6d:1d:
        e2:15:89:9b:87:08:19:d9:41:68:d3:cf:81:31:44:7a:
        93:bc:88:a3:52:90:7f:51:f8:28:df:48:18:dd:ba:e4:
        59:45:a9:eb:5c:20:82:59:3d:d2:89:eb:9d:d7:55:56:
        da:a2:8a:80:9d:85:07:16:6b:99:d2:3a:8c:ce:c4:cb
    Fingerprint (SHA-256):
        87:AF:83:6C:5A:6D:A9:DD:3F:83:29:A9:13:90:44:23:55:77:09:09:25:A5:BF:64:86:78:7E:5A:9E:AC:C7:F7
    Fingerprint (SHA1):
        7D:98:B5:04:FC:EA:DC:7C:2E:26:82:1B:5A:89:26:E3:14:9E:A2:81
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7330: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7331: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7332: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7333: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7334: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7335: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7336: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7337: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7338: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155167 (0x1dee479f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 15:52:54 2017
            Not After : Mon May 02 15:52:54 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:bf:3a:96:d5:c7:cb:ce:bb:02:9a:e2:a8:8b:e6:27:
                    3f:70:44:a4:49:df:12:c7:44:e4:6b:9c:e9:d2:71:14:
                    1c:5e:6f:86:2b:1c:49:f0:f6:66:6d:e6:5b:2f:d0:53:
                    b7:4b:d6:af:d2:db:be:ae:b1:35:4a:48:b9:8f:47:cd:
                    c8:09:9d:a8:20:49:e1:e4:16:6c:70:d8:fd:1a:b2:f0:
                    cb:bf:34:e8:c3:f4:b8:f0:b3:20:82:9c:b5:e2:a7:0d:
                    89:28:45:b3:ac:52:bf:08:98:43:2f:99:07:05:d4:04:
                    e8:87:d0:73:c9:ea:2b:85:68:89:49:f4:c4:d8:f4:d4:
                    dc:4c:7b:b4:7d:00:4e:4b:45:9f:2f:29:c7:ad:e5:e9:
                    e2:55:2b:d4:89:f4:d4:4b:de:b8:32:9e:53:43:76:60:
                    21:0a:29:c9:63:87:7c:d8:81:d6:17:f8:d4:95:87:90:
                    03:5d:0b:86:15:d3:50:32:5d:7d:94:b4:17:7a:42:28:
                    c1:d8:28:3c:38:32:db:32:95:1e:1e:44:49:11:71:1d:
                    5e:d4:52:a6:c1:22:61:a1:39:3a:b9:9c:41:cd:1a:7f:
                    97:63:17:ab:2a:17:72:61:9f:26:a0:0c:71:eb:39:82:
                    04:ca:fc:7f:ad:73:f5:81:ff:d9:f9:f8:ed:45:98:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:6f:f9:e9:c7:c4:31:d5:d6:1a:f4:d6:41:31:01:0a:
        9d:0e:b5:ab:8d:02:46:d9:43:52:f9:c1:98:64:eb:6a:
        42:38:a4:0e:c8:ab:22:8e:57:d3:aa:be:41:b6:e2:0f:
        8d:22:20:e2:09:7e:8c:46:f6:eb:1e:13:61:e7:88:34:
        51:92:ac:b5:1b:89:e0:c7:18:a7:8f:4c:cb:fe:28:70:
        8c:57:1e:95:ff:7b:44:a0:d6:90:c2:2d:68:20:71:65:
        b7:d3:73:6a:fe:25:8d:bd:3d:a5:45:9b:e1:60:1f:79:
        93:28:3e:37:0d:47:06:fe:cb:ee:14:7f:3f:ba:b9:fc:
        e5:01:43:58:3b:0e:4b:08:1b:86:75:65:8e:53:94:79:
        4d:17:a4:49:4a:5c:c6:e0:65:b4:80:ee:98:08:27:c5:
        a0:dd:cd:de:52:32:2e:ce:17:2a:4b:d5:d7:1d:ed:80:
        2e:29:d8:07:be:07:44:7b:37:19:92:b8:4f:53:e8:46:
        72:3b:b6:13:6d:0a:7c:82:b3:da:14:58:28:d7:d6:ce:
        e7:a2:21:18:c8:d8:9b:d8:1c:d0:98:8e:9e:4f:61:47:
        15:31:b8:9a:95:00:46:80:a8:55:0a:28:35:bf:cf:90:
        36:a4:23:f0:51:3d:93:13:a3:12:fa:b7:59:45:7e:ca
    Fingerprint (SHA-256):
        D1:76:7E:25:E1:E3:1E:39:B2:7D:3A:08:48:19:02:9C:CC:AD:A2:98:49:5E:E1:6E:B8:E6:61:28:34:C1:EC:7F
    Fingerprint (SHA1):
        CF:E4:96:9F:99:01:60:0E:24:5B:77:ED:F9:B5:3A:BB:2F:52:65:D4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #7339: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7340: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7341: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7342: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7343: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #7344: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7345: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #7346: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #7347: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #7348: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #7349: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #7350: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #7351: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #7352: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7353: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7354: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #7355: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #7356: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7357: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155176 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7358: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7359: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7360: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7361: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502155177   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7362: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7363: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7364: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7365: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502155178   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7366: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7367: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7368: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7369: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502155179   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7370: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7371: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7372: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7373: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502155180   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7374: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7375: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #7376: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7377: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502155181   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7378: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7379: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #7380: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7381: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502155182   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7382: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7383: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #7384: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7385: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502155183   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7386: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7387: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #7388: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7389: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502155184   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7390: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7391: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7392: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155176 (0x1dee47a8)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:01 2017
            Not After : Mon May 02 15:53:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    5b:95:0d:b2:59:17:44:07:20:ed:c3:8b:52:ee:81:00:
                    a2:87:9b:36:61:3d:af:88:52:18:22:e2:e1:e1:5a:b8:
                    78:3f:06:4f:d8:93:61:87:5a:40:3a:17:6a:b4:f7:a6:
                    b5:08:1a:28:af:4d:3f:80:09:ee:0b:6c:a0:03:51:5b:
                    20:37:f1:19:e4:38:09:9b:65:54:41:ae:25:bf:bb:d0:
                    66:cc:06:06:7f:b1:55:b1:95:32:a0:f4:96:9d:46:8b:
                    37:79:ef:88:44:bb:5f:de:d4:91:57:d0:3b:2c:7d:f4:
                    88:2e:c9:94:1e:05:13:37:ea:89:cc:cf:c5:b0:4f:37:
                    ea:a9:b4:a4:53:d1:f0:d7:fd:b7:65:e0:9a:bb:f6:df:
                    79:dd:29:c6:4b:51:fa:89:ec:87:4d:45:c6:04:06:7d:
                    ee:0e:80:88:0c:7a:4c:23:1b:6e:78:57:de:16:cd:57:
                    2e:23:0e:22:2a:bf:58:5f:e2:89:43:72:e6:99:a4:94:
                    0e:72:3a:5a:35:16:65:f9:e7:54:df:b4:b1:0c:0a:84:
                    f7:b2:e2:74:87:02:d2:a3:14:57:76:c5:19:b3:c4:d5:
                    7d:4b:29:e8:6e:9c:9d:6e:ff:e3:55:ac:22:d9:99:82:
                    a9:7b:cd:23:c9:3e:f9:38:e2:42:48:06:76:e8:95:ab
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:13:83:1a:17:b8:e9:a2:0a:6a:14:49:ae:
        41:ff:9e:f8:ce:fa:6a:09:52:a2:7c:8a:5b:dc:cf:f4:
        02:1d:00:87:b5:46:27:74:6d:4a:51:0e:87:a1:f7:4a:
        28:63:17:1f:06:ea:89:63:6e:98:3b:3b:4c:24:4e
    Fingerprint (SHA-256):
        3B:B3:C7:8E:77:A2:B5:49:88:50:2E:BC:3A:2F:49:F0:4F:B2:1C:3E:2E:3B:20:AB:7B:5C:DA:23:50:3D:2B:F5
    Fingerprint (SHA1):
        6C:18:A6:ED:D7:DA:B7:8A:32:82:9B:D1:92:4E:0C:92:BD:E0:1E:0A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7393: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155176 (0x1dee47a8)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:01 2017
            Not After : Mon May 02 15:53:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    5b:95:0d:b2:59:17:44:07:20:ed:c3:8b:52:ee:81:00:
                    a2:87:9b:36:61:3d:af:88:52:18:22:e2:e1:e1:5a:b8:
                    78:3f:06:4f:d8:93:61:87:5a:40:3a:17:6a:b4:f7:a6:
                    b5:08:1a:28:af:4d:3f:80:09:ee:0b:6c:a0:03:51:5b:
                    20:37:f1:19:e4:38:09:9b:65:54:41:ae:25:bf:bb:d0:
                    66:cc:06:06:7f:b1:55:b1:95:32:a0:f4:96:9d:46:8b:
                    37:79:ef:88:44:bb:5f:de:d4:91:57:d0:3b:2c:7d:f4:
                    88:2e:c9:94:1e:05:13:37:ea:89:cc:cf:c5:b0:4f:37:
                    ea:a9:b4:a4:53:d1:f0:d7:fd:b7:65:e0:9a:bb:f6:df:
                    79:dd:29:c6:4b:51:fa:89:ec:87:4d:45:c6:04:06:7d:
                    ee:0e:80:88:0c:7a:4c:23:1b:6e:78:57:de:16:cd:57:
                    2e:23:0e:22:2a:bf:58:5f:e2:89:43:72:e6:99:a4:94:
                    0e:72:3a:5a:35:16:65:f9:e7:54:df:b4:b1:0c:0a:84:
                    f7:b2:e2:74:87:02:d2:a3:14:57:76:c5:19:b3:c4:d5:
                    7d:4b:29:e8:6e:9c:9d:6e:ff:e3:55:ac:22:d9:99:82:
                    a9:7b:cd:23:c9:3e:f9:38:e2:42:48:06:76:e8:95:ab
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:13:83:1a:17:b8:e9:a2:0a:6a:14:49:ae:
        41:ff:9e:f8:ce:fa:6a:09:52:a2:7c:8a:5b:dc:cf:f4:
        02:1d:00:87:b5:46:27:74:6d:4a:51:0e:87:a1:f7:4a:
        28:63:17:1f:06:ea:89:63:6e:98:3b:3b:4c:24:4e
    Fingerprint (SHA-256):
        3B:B3:C7:8E:77:A2:B5:49:88:50:2E:BC:3A:2F:49:F0:4F:B2:1C:3E:2E:3B:20:AB:7B:5C:DA:23:50:3D:2B:F5
    Fingerprint (SHA1):
        6C:18:A6:ED:D7:DA:B7:8A:32:82:9B:D1:92:4E:0C:92:BD:E0:1E:0A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7394: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155176 (0x1dee47a8)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:01 2017
            Not After : Mon May 02 15:53:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    5b:95:0d:b2:59:17:44:07:20:ed:c3:8b:52:ee:81:00:
                    a2:87:9b:36:61:3d:af:88:52:18:22:e2:e1:e1:5a:b8:
                    78:3f:06:4f:d8:93:61:87:5a:40:3a:17:6a:b4:f7:a6:
                    b5:08:1a:28:af:4d:3f:80:09:ee:0b:6c:a0:03:51:5b:
                    20:37:f1:19:e4:38:09:9b:65:54:41:ae:25:bf:bb:d0:
                    66:cc:06:06:7f:b1:55:b1:95:32:a0:f4:96:9d:46:8b:
                    37:79:ef:88:44:bb:5f:de:d4:91:57:d0:3b:2c:7d:f4:
                    88:2e:c9:94:1e:05:13:37:ea:89:cc:cf:c5:b0:4f:37:
                    ea:a9:b4:a4:53:d1:f0:d7:fd:b7:65:e0:9a:bb:f6:df:
                    79:dd:29:c6:4b:51:fa:89:ec:87:4d:45:c6:04:06:7d:
                    ee:0e:80:88:0c:7a:4c:23:1b:6e:78:57:de:16:cd:57:
                    2e:23:0e:22:2a:bf:58:5f:e2:89:43:72:e6:99:a4:94:
                    0e:72:3a:5a:35:16:65:f9:e7:54:df:b4:b1:0c:0a:84:
                    f7:b2:e2:74:87:02:d2:a3:14:57:76:c5:19:b3:c4:d5:
                    7d:4b:29:e8:6e:9c:9d:6e:ff:e3:55:ac:22:d9:99:82:
                    a9:7b:cd:23:c9:3e:f9:38:e2:42:48:06:76:e8:95:ab
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:13:83:1a:17:b8:e9:a2:0a:6a:14:49:ae:
        41:ff:9e:f8:ce:fa:6a:09:52:a2:7c:8a:5b:dc:cf:f4:
        02:1d:00:87:b5:46:27:74:6d:4a:51:0e:87:a1:f7:4a:
        28:63:17:1f:06:ea:89:63:6e:98:3b:3b:4c:24:4e
    Fingerprint (SHA-256):
        3B:B3:C7:8E:77:A2:B5:49:88:50:2E:BC:3A:2F:49:F0:4F:B2:1C:3E:2E:3B:20:AB:7B:5C:DA:23:50:3D:2B:F5
    Fingerprint (SHA1):
        6C:18:A6:ED:D7:DA:B7:8A:32:82:9B:D1:92:4E:0C:92:BD:E0:1E:0A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #7395: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155176 (0x1dee47a8)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:01 2017
            Not After : Mon May 02 15:53:01 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    5b:95:0d:b2:59:17:44:07:20:ed:c3:8b:52:ee:81:00:
                    a2:87:9b:36:61:3d:af:88:52:18:22:e2:e1:e1:5a:b8:
                    78:3f:06:4f:d8:93:61:87:5a:40:3a:17:6a:b4:f7:a6:
                    b5:08:1a:28:af:4d:3f:80:09:ee:0b:6c:a0:03:51:5b:
                    20:37:f1:19:e4:38:09:9b:65:54:41:ae:25:bf:bb:d0:
                    66:cc:06:06:7f:b1:55:b1:95:32:a0:f4:96:9d:46:8b:
                    37:79:ef:88:44:bb:5f:de:d4:91:57:d0:3b:2c:7d:f4:
                    88:2e:c9:94:1e:05:13:37:ea:89:cc:cf:c5:b0:4f:37:
                    ea:a9:b4:a4:53:d1:f0:d7:fd:b7:65:e0:9a:bb:f6:df:
                    79:dd:29:c6:4b:51:fa:89:ec:87:4d:45:c6:04:06:7d:
                    ee:0e:80:88:0c:7a:4c:23:1b:6e:78:57:de:16:cd:57:
                    2e:23:0e:22:2a:bf:58:5f:e2:89:43:72:e6:99:a4:94:
                    0e:72:3a:5a:35:16:65:f9:e7:54:df:b4:b1:0c:0a:84:
                    f7:b2:e2:74:87:02:d2:a3:14:57:76:c5:19:b3:c4:d5:
                    7d:4b:29:e8:6e:9c:9d:6e:ff:e3:55:ac:22:d9:99:82:
                    a9:7b:cd:23:c9:3e:f9:38:e2:42:48:06:76:e8:95:ab
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1c:13:83:1a:17:b8:e9:a2:0a:6a:14:49:ae:
        41:ff:9e:f8:ce:fa:6a:09:52:a2:7c:8a:5b:dc:cf:f4:
        02:1d:00:87:b5:46:27:74:6d:4a:51:0e:87:a1:f7:4a:
        28:63:17:1f:06:ea:89:63:6e:98:3b:3b:4c:24:4e
    Fingerprint (SHA-256):
        3B:B3:C7:8E:77:A2:B5:49:88:50:2E:BC:3A:2F:49:F0:4F:B2:1C:3E:2E:3B:20:AB:7B:5C:DA:23:50:3D:2B:F5
    Fingerprint (SHA1):
        6C:18:A6:ED:D7:DA:B7:8A:32:82:9B:D1:92:4E:0C:92:BD:E0:1E:0A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #7396: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7397: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7398: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7399: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7400: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7401: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7402: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7403: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7404: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7405: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7406: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7407: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7408: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7409: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7410: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7411: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #7412: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7413: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7414: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7415: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7416: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7417: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7418: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7419: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7420: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7421: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7422: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7423: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502155311Z
nextupdate=20180502155311Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:53:11 2017
    Next Update: Wed May 02 15:53:11 2018
    CRL Extensions:
chains.sh: #7424: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155311Z
nextupdate=20180502155311Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:53:11 2017
    Next Update: Wed May 02 15:53:11 2018
    CRL Extensions:
chains.sh: #7425: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155311Z
nextupdate=20180502155311Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:53:11 2017
    Next Update: Wed May 02 15:53:11 2018
    CRL Extensions:
chains.sh: #7426: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502155311Z
nextupdate=20180502155311Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:53:11 2017
    Next Update: Wed May 02 15:53:11 2018
    CRL Extensions:
chains.sh: #7427: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155312Z
addcert 14 20170502155312Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:53:12 2017
    Next Update: Wed May 02 15:53:11 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 15:53:12 2017
    CRL Extensions:
chains.sh: #7428: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155313Z
addcert 15 20170502155313Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:53:13 2017
    Next Update: Wed May 02 15:53:11 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 15:53:13 2017
    CRL Extensions:
chains.sh: #7429: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7430: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7431: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7432: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #7433: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #7434: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #7435: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #7436: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #7437: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #7438: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:05 2017
            Not After : Mon May 02 15:53:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:b0:05:be:1c:3b:92:37:99:7d:19:65:46:b8:60:ee:
                    8c:c1:82:c3:6f:59:be:5b:7e:89:9c:45:43:1a:87:8f:
                    60:32:4b:25:81:d6:57:e3:37:47:6c:03:6c:13:95:1f:
                    47:1d:ac:9a:ae:15:c2:ba:2a:78:79:1e:d2:ae:68:2e:
                    50:78:f7:dc:72:8c:e8:8b:4a:34:c7:31:b2:70:52:36:
                    e9:87:cd:2c:0a:3a:86:35:a9:fc:85:b5:f7:e8:78:af:
                    76:f2:03:65:a6:13:d8:ee:cb:0e:df:72:6a:8e:d6:e8:
                    ea:2a:a9:7c:00:17:c5:58:a6:21:67:42:75:0e:11:f1:
                    6b:1c:0c:fd:34:fd:cf:61:e7:f6:f9:53:61:9d:f3:36:
                    2a:03:aa:9f:f9:a6:56:f8:1a:19:df:2a:89:01:58:4b:
                    b1:07:8d:67:34:45:4f:f3:ea:e5:85:50:dd:20:69:ca:
                    27:59:f0:d6:e7:60:88:b9:4d:9b:39:c3:a9:2b:09:d5:
                    5c:26:46:18:a8:0b:e1:34:83:21:8c:17:f6:6f:a6:2c:
                    1d:1e:b8:12:6e:cc:50:49:b1:44:26:d4:3c:28:96:ba:
                    c6:43:b1:57:be:4a:34:e0:d6:2b:9d:e6:74:d4:c0:0f:
                    5e:29:43:fe:2d:70:b4:04:80:80:95:46:ff:06:cc:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:bc:20:75:6c:fa:61:c9:f9:62:0d:d9:78:5e:38:26:
        3e:44:17:c9:9c:6c:fb:39:31:59:54:62:b9:09:2e:dd:
        b7:3f:46:8f:90:d5:e7:6b:95:ac:df:c1:d2:98:d3:cf:
        48:e1:b6:f8:e1:ff:d4:b7:92:98:a8:13:d3:00:7d:a6:
        e0:1c:21:d0:13:0d:b6:bf:2e:c1:83:b2:56:3e:e6:64:
        b0:ae:17:1a:c7:2f:73:2b:92:cc:fa:a0:5b:8f:79:fb:
        7f:06:80:c2:9e:da:15:82:48:85:1e:b9:2d:7c:89:02:
        32:29:26:cb:a9:b7:25:ea:13:c4:6c:5d:a7:8b:ac:bd:
        5d:98:bb:74:dc:36:6a:78:24:4e:95:11:57:c0:96:5d:
        2c:ce:8a:ab:4d:a7:39:52:bc:55:b6:53:8f:0d:bf:07:
        c2:05:cd:a6:68:46:73:0c:57:af:bf:5a:77:68:a9:4d:
        e7:d1:c6:0b:e4:19:8a:c1:29:27:90:93:03:b3:59:7d:
        81:77:93:52:a0:34:87:99:29:ca:08:3b:c9:1a:ad:a2:
        ec:ea:65:e8:05:63:92:6c:56:32:a0:72:6c:79:73:36:
        bb:66:cc:80:bf:a1:e2:27:4a:b7:81:00:ed:b9:c1:74:
        da:df:1d:b8:0e:52:13:e4:29:a4:1b:a2:a3:93:4b:24
    Fingerprint (SHA-256):
        43:F2:5F:66:CF:72:0C:1D:0E:E0:82:E2:DE:F4:4B:BA:80:15:E3:E6:97:80:2E:CF:DB:CE:00:4E:96:19:F9:1F
    Fingerprint (SHA1):
        72:72:FF:A2:FA:87:B8:3E:AC:D0:4E:1E:5B:3D:9E:67:B7:8D:F4:4E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7439: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7440: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:05 2017
            Not After : Mon May 02 15:53:05 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:b0:05:be:1c:3b:92:37:99:7d:19:65:46:b8:60:ee:
                    8c:c1:82:c3:6f:59:be:5b:7e:89:9c:45:43:1a:87:8f:
                    60:32:4b:25:81:d6:57:e3:37:47:6c:03:6c:13:95:1f:
                    47:1d:ac:9a:ae:15:c2:ba:2a:78:79:1e:d2:ae:68:2e:
                    50:78:f7:dc:72:8c:e8:8b:4a:34:c7:31:b2:70:52:36:
                    e9:87:cd:2c:0a:3a:86:35:a9:fc:85:b5:f7:e8:78:af:
                    76:f2:03:65:a6:13:d8:ee:cb:0e:df:72:6a:8e:d6:e8:
                    ea:2a:a9:7c:00:17:c5:58:a6:21:67:42:75:0e:11:f1:
                    6b:1c:0c:fd:34:fd:cf:61:e7:f6:f9:53:61:9d:f3:36:
                    2a:03:aa:9f:f9:a6:56:f8:1a:19:df:2a:89:01:58:4b:
                    b1:07:8d:67:34:45:4f:f3:ea:e5:85:50:dd:20:69:ca:
                    27:59:f0:d6:e7:60:88:b9:4d:9b:39:c3:a9:2b:09:d5:
                    5c:26:46:18:a8:0b:e1:34:83:21:8c:17:f6:6f:a6:2c:
                    1d:1e:b8:12:6e:cc:50:49:b1:44:26:d4:3c:28:96:ba:
                    c6:43:b1:57:be:4a:34:e0:d6:2b:9d:e6:74:d4:c0:0f:
                    5e:29:43:fe:2d:70:b4:04:80:80:95:46:ff:06:cc:79
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0c:bc:20:75:6c:fa:61:c9:f9:62:0d:d9:78:5e:38:26:
        3e:44:17:c9:9c:6c:fb:39:31:59:54:62:b9:09:2e:dd:
        b7:3f:46:8f:90:d5:e7:6b:95:ac:df:c1:d2:98:d3:cf:
        48:e1:b6:f8:e1:ff:d4:b7:92:98:a8:13:d3:00:7d:a6:
        e0:1c:21:d0:13:0d:b6:bf:2e:c1:83:b2:56:3e:e6:64:
        b0:ae:17:1a:c7:2f:73:2b:92:cc:fa:a0:5b:8f:79:fb:
        7f:06:80:c2:9e:da:15:82:48:85:1e:b9:2d:7c:89:02:
        32:29:26:cb:a9:b7:25:ea:13:c4:6c:5d:a7:8b:ac:bd:
        5d:98:bb:74:dc:36:6a:78:24:4e:95:11:57:c0:96:5d:
        2c:ce:8a:ab:4d:a7:39:52:bc:55:b6:53:8f:0d:bf:07:
        c2:05:cd:a6:68:46:73:0c:57:af:bf:5a:77:68:a9:4d:
        e7:d1:c6:0b:e4:19:8a:c1:29:27:90:93:03:b3:59:7d:
        81:77:93:52:a0:34:87:99:29:ca:08:3b:c9:1a:ad:a2:
        ec:ea:65:e8:05:63:92:6c:56:32:a0:72:6c:79:73:36:
        bb:66:cc:80:bf:a1:e2:27:4a:b7:81:00:ed:b9:c1:74:
        da:df:1d:b8:0e:52:13:e4:29:a4:1b:a2:a3:93:4b:24
    Fingerprint (SHA-256):
        43:F2:5F:66:CF:72:0C:1D:0E:E0:82:E2:DE:F4:4B:BA:80:15:E3:E6:97:80:2E:CF:DB:CE:00:4E:96:19:F9:1F
    Fingerprint (SHA1):
        72:72:FF:A2:FA:87:B8:3E:AC:D0:4E:1E:5B:3D:9E:67:B7:8D:F4:4E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7441: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7442: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #7443: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155185 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7444: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #7445: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #7446: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7447: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502155186   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7448: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7449: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7450: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154957.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7451: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154931.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7452: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7453: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #7454: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154957.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7455: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502155187   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7456: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7457: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7458: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154957.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7459: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154932.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7460: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7461: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #7462: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7463: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502155188   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7464: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7465: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7466: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154957.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7467: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154933.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7468: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7469: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7470: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502154957.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #7471: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502154934.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #7472: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7473: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502155320Z
nextupdate=20180502155320Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 15:53:20 2017
    Next Update: Wed May 02 15:53:20 2018
    CRL Extensions:
chains.sh: #7474: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155321Z
nextupdate=20180502155321Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:53:21 2017
    Next Update: Wed May 02 15:53:21 2018
    CRL Extensions:
chains.sh: #7475: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502155321Z
nextupdate=20180502155321Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 15:53:21 2017
    Next Update: Wed May 02 15:53:21 2018
    CRL Extensions:
chains.sh: #7476: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502155321Z
nextupdate=20180502155321Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 15:53:21 2017
    Next Update: Wed May 02 15:53:21 2018
    CRL Extensions:
chains.sh: #7477: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155322Z
addcert 20 20170502155322Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:53:22 2017
    Next Update: Wed May 02 15:53:21 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:53:22 2017
    CRL Extensions:
chains.sh: #7478: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502155323Z
addcert 40 20170502155323Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 15:53:23 2017
    Next Update: Wed May 02 15:53:21 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 15:53:22 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:53:23 2017
    CRL Extensions:
chains.sh: #7479: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #7480: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7481: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #7482: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155185 (0x1dee47b1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:14 2017
            Not After : Mon May 02 15:53:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:e3:80:4f:54:8e:4b:07:ee:06:c0:fd:8e:55:02:6c:
                    cc:9f:0a:70:29:05:30:47:1c:96:1e:12:a1:ad:24:90:
                    29:4e:b9:d8:2a:36:3a:2d:50:06:68:66:87:97:4f:9a:
                    83:cb:5a:d9:a3:af:41:43:1f:9f:78:8e:2a:b2:c8:15:
                    15:4b:9f:28:d2:75:98:6b:85:dd:77:d6:6d:0a:dc:06:
                    ef:c9:33:90:a5:75:af:81:fc:01:67:9f:77:61:93:6d:
                    3c:a8:2d:d7:05:4e:93:88:8d:4f:a5:04:f9:78:f4:3b:
                    32:7d:7c:a4:df:33:fe:63:92:5c:26:ac:22:c4:21:4c:
                    ae:a6:fd:07:49:96:1b:06:0a:13:a2:7f:49:29:61:3c:
                    a9:4e:98:4e:b0:6a:3e:02:ee:44:6d:a4:17:4a:c2:47:
                    03:be:02:75:f3:bc:36:78:7c:b5:b6:e0:f6:19:d5:d3:
                    bc:b9:79:7f:68:ba:23:eb:8d:95:29:00:c2:49:52:18:
                    fd:46:cf:d3:f0:7a:e9:b0:4d:8b:43:36:a8:b6:4e:3b:
                    b2:56:74:1a:a5:d8:01:77:6c:5e:6b:18:7e:92:2d:8b:
                    86:fb:82:fc:2b:77:6b:1a:90:d5:ae:4d:9a:a3:c4:f8:
                    91:90:59:08:6d:8e:92:9f:40:22:43:c4:76:20:f2:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:b0:f4:10:be:48:cb:e3:d5:31:cb:21:37:93:8e:16:
        90:b9:13:9f:92:6e:15:f7:a5:2c:8b:21:4b:f9:fb:7c:
        84:43:a0:e3:a4:05:1e:02:60:a5:42:06:ad:e9:4e:f0:
        fa:86:d9:44:da:b1:1a:25:70:e3:3a:67:f9:ee:26:2c:
        7e:b9:20:13:78:35:71:2d:d6:6a:21:b8:c6:c6:9b:45:
        e4:7b:7b:77:8e:ef:92:62:19:94:71:86:69:94:68:7a:
        91:6f:ff:9a:5d:57:fd:37:02:50:2c:17:43:de:5d:0e:
        4a:bb:a1:53:00:47:54:5d:db:a3:98:ee:35:b1:6d:5e:
        98:b8:60:9c:45:68:f2:b2:2e:e4:f6:97:dc:95:01:48:
        f9:eb:c9:4a:50:1b:c0:a0:8c:b4:95:02:c4:5c:4e:49:
        2f:0a:1a:0c:e9:0f:1c:1b:cc:8b:ea:d7:fd:06:58:e9:
        a9:5d:3f:fc:b3:53:57:b0:95:9c:23:30:ff:23:77:ae:
        a2:8f:c5:9d:97:d1:dd:03:d6:13:6d:48:8b:31:24:4f:
        58:5e:a3:8b:54:8f:b0:0a:5e:30:bb:65:45:30:f4:44:
        24:55:a9:25:6e:1a:cd:33:fd:b8:3e:f4:bc:44:c5:ba:
        2d:10:80:e3:26:25:f8:38:29:78:19:50:c1:2b:4d:73
    Fingerprint (SHA-256):
        3F:33:7E:DB:66:B2:59:75:D4:C8:31:56:F4:8D:6C:6E:23:9A:E1:61:8C:FF:6A:76:FF:06:08:71:44:AA:00:E0
    Fingerprint (SHA1):
        5C:C8:C1:26:58:C0:E1:8D:EF:0C:1B:FF:64:56:5F:FA:25:3E:81:C9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7483: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7484: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155185 (0x1dee47b1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 15:53:14 2017
            Not After : Mon May 02 15:53:14 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:e3:80:4f:54:8e:4b:07:ee:06:c0:fd:8e:55:02:6c:
                    cc:9f:0a:70:29:05:30:47:1c:96:1e:12:a1:ad:24:90:
                    29:4e:b9:d8:2a:36:3a:2d:50:06:68:66:87:97:4f:9a:
                    83:cb:5a:d9:a3:af:41:43:1f:9f:78:8e:2a:b2:c8:15:
                    15:4b:9f:28:d2:75:98:6b:85:dd:77:d6:6d:0a:dc:06:
                    ef:c9:33:90:a5:75:af:81:fc:01:67:9f:77:61:93:6d:
                    3c:a8:2d:d7:05:4e:93:88:8d:4f:a5:04:f9:78:f4:3b:
                    32:7d:7c:a4:df:33:fe:63:92:5c:26:ac:22:c4:21:4c:
                    ae:a6:fd:07:49:96:1b:06:0a:13:a2:7f:49:29:61:3c:
                    a9:4e:98:4e:b0:6a:3e:02:ee:44:6d:a4:17:4a:c2:47:
                    03:be:02:75:f3:bc:36:78:7c:b5:b6:e0:f6:19:d5:d3:
                    bc:b9:79:7f:68:ba:23:eb:8d:95:29:00:c2:49:52:18:
                    fd:46:cf:d3:f0:7a:e9:b0:4d:8b:43:36:a8:b6:4e:3b:
                    b2:56:74:1a:a5:d8:01:77:6c:5e:6b:18:7e:92:2d:8b:
                    86:fb:82:fc:2b:77:6b:1a:90:d5:ae:4d:9a:a3:c4:f8:
                    91:90:59:08:6d:8e:92:9f:40:22:43:c4:76:20:f2:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:b0:f4:10:be:48:cb:e3:d5:31:cb:21:37:93:8e:16:
        90:b9:13:9f:92:6e:15:f7:a5:2c:8b:21:4b:f9:fb:7c:
        84:43:a0:e3:a4:05:1e:02:60:a5:42:06:ad:e9:4e:f0:
        fa:86:d9:44:da:b1:1a:25:70:e3:3a:67:f9:ee:26:2c:
        7e:b9:20:13:78:35:71:2d:d6:6a:21:b8:c6:c6:9b:45:
        e4:7b:7b:77:8e:ef:92:62:19:94:71:86:69:94:68:7a:
        91:6f:ff:9a:5d:57:fd:37:02:50:2c:17:43:de:5d:0e:
        4a:bb:a1:53:00:47:54:5d:db:a3:98:ee:35:b1:6d:5e:
        98:b8:60:9c:45:68:f2:b2:2e:e4:f6:97:dc:95:01:48:
        f9:eb:c9:4a:50:1b:c0:a0:8c:b4:95:02:c4:5c:4e:49:
        2f:0a:1a:0c:e9:0f:1c:1b:cc:8b:ea:d7:fd:06:58:e9:
        a9:5d:3f:fc:b3:53:57:b0:95:9c:23:30:ff:23:77:ae:
        a2:8f:c5:9d:97:d1:dd:03:d6:13:6d:48:8b:31:24:4f:
        58:5e:a3:8b:54:8f:b0:0a:5e:30:bb:65:45:30:f4:44:
        24:55:a9:25:6e:1a:cd:33:fd:b8:3e:f4:bc:44:c5:ba:
        2d:10:80:e3:26:25:f8:38:29:78:19:50:c1:2b:4d:73
    Fingerprint (SHA-256):
        3F:33:7E:DB:66:B2:59:75:D4:C8:31:56:F4:8D:6C:6E:23:9A:E1:61:8C:FF:6A:76:FF:06:08:71:44:AA:00:E0
    Fingerprint (SHA1):
        5C:C8:C1:26:58:C0:E1:8D:EF:0C:1B:FF:64:56:5F:FA:25:3E:81:C9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #7485: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #7486: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #7487: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155189 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7488: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #7489: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #7490: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7491: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502155190   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7492: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7493: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #7494: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7495: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502155191   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7496: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7497: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #7498: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7499: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502155192   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7500: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7501: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #7502: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -m 502155193 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #7503: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #7504: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #7505: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #7506: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502155194   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7507: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7508: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #7509: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #7510: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502155195   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/cu_data
=== Certutil input data ===
===
chains.sh: #7511: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #7512: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #7513: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #7514: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #7515: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155189 (0x1dee47b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:24 2017
            Not After : Mon May 02 15:53:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:6d:42:50:aa:9e:48:c6:52:0c:25:c6:8d:2c:6c:77:
                    2c:6f:07:da:dc:d9:ee:19:57:90:fa:27:ce:2c:d8:d4:
                    47:7e:62:de:8e:e5:6d:c5:c4:e2:0e:a7:54:2f:a2:9f:
                    13:1d:70:a1:f3:c3:29:d7:79:0f:92:9e:55:8a:dc:2b:
                    01:5a:2f:47:52:ca:92:16:ce:11:de:81:4a:fe:34:99:
                    0f:7f:eb:ca:f6:58:7f:81:c5:0e:f6:d0:b0:06:32:c7:
                    b1:8d:8f:b5:53:80:f6:66:29:2a:a1:3c:b1:c7:c4:f7:
                    78:b1:00:fc:63:23:69:9c:1e:1c:93:d3:87:dd:ff:d7:
                    42:3e:23:ea:38:64:8e:9f:f2:e3:f6:4f:f6:43:6b:70:
                    ef:a9:b2:a7:6a:f9:d7:dd:fd:61:c8:c0:56:34:bb:7c:
                    76:8a:3c:83:af:0e:a4:28:5f:76:d6:ab:c4:8f:55:1b:
                    07:8a:0b:e2:13:40:68:80:eb:ca:9c:ae:91:29:97:05:
                    28:b0:79:ce:88:ce:9c:70:94:10:c8:23:2c:52:a6:ba:
                    da:c0:48:2a:30:4e:d2:a3:a4:2e:7c:29:7e:8b:d4:86:
                    38:05:c7:28:c3:25:2b:1e:f5:c1:3c:d0:68:7e:b3:db:
                    85:42:0b:26:b8:ac:08:54:59:48:8f:e6:e3:e2:ac:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:62:e9:07:e3:d2:83:c2:1e:29:0d:57:75:81:e0:e8:
        d7:26:bc:2b:12:79:12:17:60:09:16:09:8d:21:6d:f2:
        d8:d7:59:38:29:87:ea:71:3a:cf:45:89:60:b6:2e:84:
        10:85:22:0f:6c:27:a6:e6:7c:58:b4:4b:26:35:83:b5:
        65:5f:c1:45:a3:9f:93:e4:9f:88:a7:66:d5:79:2a:b1:
        c0:98:a2:37:c3:27:5e:39:b8:b7:b7:36:22:36:31:64:
        52:54:29:1a:1d:9a:6d:72:2c:fd:6c:b8:d0:b8:23:f3:
        34:db:f1:dd:88:47:ba:e4:6a:a6:1f:aa:2b:0e:cc:01:
        a9:62:f5:83:e5:d0:ac:3a:c0:b7:9b:75:6c:0c:1a:26:
        c1:6e:33:ad:b5:55:f5:82:ff:8c:ef:2c:89:ad:7a:46:
        46:10:25:8f:0e:b2:08:62:42:a6:4d:50:e0:81:7f:6b:
        4c:69:c1:5d:1e:5a:36:60:61:64:93:c7:1f:12:da:f9:
        b5:1a:83:e3:77:e2:02:2b:44:bf:c5:ce:28:d4:47:c8:
        85:5e:4b:bd:8b:44:b4:8e:94:0a:23:e2:20:ed:a1:30:
        d7:4d:2c:b4:25:bd:31:fe:63:25:4e:d6:e3:50:0d:b2:
        44:d5:d2:a5:c9:9a:9d:6a:3d:7f:2e:62:94:ef:57:6c
    Fingerprint (SHA-256):
        E8:D8:D3:07:FC:3B:2A:38:C7:FE:F7:34:B6:55:09:76:17:27:B9:07:52:0A:B5:45:12:60:77:EA:FA:3E:F5:CC
    Fingerprint (SHA1):
        40:51:F3:AD:C9:E7:52:94:CD:DB:0A:07:C3:3D:7F:0C:92:E1:F8:7E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7516: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155191 (0x1dee47b7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:26 2017
            Not After : Mon May 02 15:53:26 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:ea:1a:54:91:49:a0:6b:07:16:a1:01:62:3a:e6:0c:
                    6b:c5:59:39:b1:7e:ba:0f:13:e8:73:d6:5d:7e:20:8c:
                    93:b3:a2:45:70:3e:86:0d:8e:9b:93:e3:e6:c9:87:3d:
                    94:19:f7:77:b9:c9:1e:fd:78:55:0e:32:c0:c3:29:ce:
                    db:aa:b6:a5:e1:ff:46:60:d5:eb:50:9c:bf:55:ea:46:
                    ba:6b:32:41:93:52:a8:27:e8:21:16:2c:21:3c:c2:40:
                    74:a5:1a:8b:db:0a:1b:b9:0d:7c:b1:28:5c:d9:58:ec:
                    1c:57:1d:e6:6f:00:ed:74:6e:cc:c3:4d:f7:74:46:95:
                    82:ee:bb:cf:dd:82:82:75:fe:e2:58:b0:30:b9:07:1a:
                    cf:ff:8e:e4:fd:15:cc:30:bf:77:30:fb:1a:3e:a5:58:
                    6c:c7:1e:d5:40:d6:73:e1:88:8a:7b:16:25:be:76:83:
                    db:d6:23:bc:66:3d:3a:14:93:44:75:ce:d0:6a:89:35:
                    f4:e4:59:e2:e2:f7:05:e0:f9:a2:d4:ce:61:ed:05:3f:
                    55:0d:89:c6:21:f8:1c:4a:fa:b1:68:4c:df:71:19:80:
                    bd:63:8d:e7:95:be:ae:99:cd:2c:aa:ef:a7:3d:89:8d:
                    8b:12:20:c5:6f:e8:70:b4:63:6e:86:4e:19:7b:03:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:10:6e:07:3d:d3:51:99:c5:f1:53:f0:4a:49:92:32:
        ce:e4:8b:2d:cf:23:df:a6:50:87:f4:9f:4c:65:47:05:
        a1:73:14:5a:7b:ad:df:d0:f4:6c:4d:be:2c:08:db:89:
        81:17:10:aa:7d:82:fa:4b:35:9e:4d:b1:94:56:17:1b:
        63:50:83:84:c3:6e:b9:de:58:fd:a9:9a:c2:d4:59:52:
        68:89:5b:35:23:84:66:a8:c5:d2:8e:52:4a:6d:eb:1c:
        d3:06:90:93:e0:98:71:0a:2f:8c:5c:98:11:59:41:1b:
        43:79:dc:ed:f7:fb:d5:7e:28:e5:a1:01:a7:7a:0f:91:
        fe:39:0d:74:ae:bc:fe:9c:7a:64:d7:16:93:d3:9d:d7:
        18:da:99:e5:5c:e2:cd:a8:c3:2c:c7:c3:ed:b0:d3:10:
        b5:83:51:01:27:0e:76:e3:d7:1c:5f:1e:91:22:90:09:
        d8:0a:2e:ea:0b:dc:8d:b7:a9:dd:b4:7c:c6:a4:6c:c8:
        47:44:3e:7f:5a:6b:01:2a:f1:e6:11:c8:85:2a:6b:87:
        01:f6:89:22:9c:ab:76:f6:94:42:74:d5:40:79:12:14:
        4a:6c:90:89:de:d7:1b:ab:a9:9c:b7:df:5f:ce:99:fc:
        76:b8:52:7d:79:54:72:d4:8a:d0:82:69:d9:13:68:f6
    Fingerprint (SHA-256):
        45:45:8B:77:7B:72:73:37:46:54:C2:F3:78:BF:5F:31:49:C2:B2:B9:04:69:56:69:D2:AC:A3:20:45:8F:D1:F7
    Fingerprint (SHA1):
        83:08:88:48:12:73:BA:ED:22:F1:1E:78:61:81:F1:B2:DF:36:76:31
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7517: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155189 (0x1dee47b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:24 2017
            Not After : Mon May 02 15:53:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:6d:42:50:aa:9e:48:c6:52:0c:25:c6:8d:2c:6c:77:
                    2c:6f:07:da:dc:d9:ee:19:57:90:fa:27:ce:2c:d8:d4:
                    47:7e:62:de:8e:e5:6d:c5:c4:e2:0e:a7:54:2f:a2:9f:
                    13:1d:70:a1:f3:c3:29:d7:79:0f:92:9e:55:8a:dc:2b:
                    01:5a:2f:47:52:ca:92:16:ce:11:de:81:4a:fe:34:99:
                    0f:7f:eb:ca:f6:58:7f:81:c5:0e:f6:d0:b0:06:32:c7:
                    b1:8d:8f:b5:53:80:f6:66:29:2a:a1:3c:b1:c7:c4:f7:
                    78:b1:00:fc:63:23:69:9c:1e:1c:93:d3:87:dd:ff:d7:
                    42:3e:23:ea:38:64:8e:9f:f2:e3:f6:4f:f6:43:6b:70:
                    ef:a9:b2:a7:6a:f9:d7:dd:fd:61:c8:c0:56:34:bb:7c:
                    76:8a:3c:83:af:0e:a4:28:5f:76:d6:ab:c4:8f:55:1b:
                    07:8a:0b:e2:13:40:68:80:eb:ca:9c:ae:91:29:97:05:
                    28:b0:79:ce:88:ce:9c:70:94:10:c8:23:2c:52:a6:ba:
                    da:c0:48:2a:30:4e:d2:a3:a4:2e:7c:29:7e:8b:d4:86:
                    38:05:c7:28:c3:25:2b:1e:f5:c1:3c:d0:68:7e:b3:db:
                    85:42:0b:26:b8:ac:08:54:59:48:8f:e6:e3:e2:ac:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:62:e9:07:e3:d2:83:c2:1e:29:0d:57:75:81:e0:e8:
        d7:26:bc:2b:12:79:12:17:60:09:16:09:8d:21:6d:f2:
        d8:d7:59:38:29:87:ea:71:3a:cf:45:89:60:b6:2e:84:
        10:85:22:0f:6c:27:a6:e6:7c:58:b4:4b:26:35:83:b5:
        65:5f:c1:45:a3:9f:93:e4:9f:88:a7:66:d5:79:2a:b1:
        c0:98:a2:37:c3:27:5e:39:b8:b7:b7:36:22:36:31:64:
        52:54:29:1a:1d:9a:6d:72:2c:fd:6c:b8:d0:b8:23:f3:
        34:db:f1:dd:88:47:ba:e4:6a:a6:1f:aa:2b:0e:cc:01:
        a9:62:f5:83:e5:d0:ac:3a:c0:b7:9b:75:6c:0c:1a:26:
        c1:6e:33:ad:b5:55:f5:82:ff:8c:ef:2c:89:ad:7a:46:
        46:10:25:8f:0e:b2:08:62:42:a6:4d:50:e0:81:7f:6b:
        4c:69:c1:5d:1e:5a:36:60:61:64:93:c7:1f:12:da:f9:
        b5:1a:83:e3:77:e2:02:2b:44:bf:c5:ce:28:d4:47:c8:
        85:5e:4b:bd:8b:44:b4:8e:94:0a:23:e2:20:ed:a1:30:
        d7:4d:2c:b4:25:bd:31:fe:63:25:4e:d6:e3:50:0d:b2:
        44:d5:d2:a5:c9:9a:9d:6a:3d:7f:2e:62:94:ef:57:6c
    Fingerprint (SHA-256):
        E8:D8:D3:07:FC:3B:2A:38:C7:FE:F7:34:B6:55:09:76:17:27:B9:07:52:0A:B5:45:12:60:77:EA:FA:3E:F5:CC
    Fingerprint (SHA1):
        40:51:F3:AD:C9:E7:52:94:CD:DB:0A:07:C3:3D:7F:0C:92:E1:F8:7E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7518: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #7519: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155189 (0x1dee47b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:24 2017
            Not After : Mon May 02 15:53:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:6d:42:50:aa:9e:48:c6:52:0c:25:c6:8d:2c:6c:77:
                    2c:6f:07:da:dc:d9:ee:19:57:90:fa:27:ce:2c:d8:d4:
                    47:7e:62:de:8e:e5:6d:c5:c4:e2:0e:a7:54:2f:a2:9f:
                    13:1d:70:a1:f3:c3:29:d7:79:0f:92:9e:55:8a:dc:2b:
                    01:5a:2f:47:52:ca:92:16:ce:11:de:81:4a:fe:34:99:
                    0f:7f:eb:ca:f6:58:7f:81:c5:0e:f6:d0:b0:06:32:c7:
                    b1:8d:8f:b5:53:80:f6:66:29:2a:a1:3c:b1:c7:c4:f7:
                    78:b1:00:fc:63:23:69:9c:1e:1c:93:d3:87:dd:ff:d7:
                    42:3e:23:ea:38:64:8e:9f:f2:e3:f6:4f:f6:43:6b:70:
                    ef:a9:b2:a7:6a:f9:d7:dd:fd:61:c8:c0:56:34:bb:7c:
                    76:8a:3c:83:af:0e:a4:28:5f:76:d6:ab:c4:8f:55:1b:
                    07:8a:0b:e2:13:40:68:80:eb:ca:9c:ae:91:29:97:05:
                    28:b0:79:ce:88:ce:9c:70:94:10:c8:23:2c:52:a6:ba:
                    da:c0:48:2a:30:4e:d2:a3:a4:2e:7c:29:7e:8b:d4:86:
                    38:05:c7:28:c3:25:2b:1e:f5:c1:3c:d0:68:7e:b3:db:
                    85:42:0b:26:b8:ac:08:54:59:48:8f:e6:e3:e2:ac:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:62:e9:07:e3:d2:83:c2:1e:29:0d:57:75:81:e0:e8:
        d7:26:bc:2b:12:79:12:17:60:09:16:09:8d:21:6d:f2:
        d8:d7:59:38:29:87:ea:71:3a:cf:45:89:60:b6:2e:84:
        10:85:22:0f:6c:27:a6:e6:7c:58:b4:4b:26:35:83:b5:
        65:5f:c1:45:a3:9f:93:e4:9f:88:a7:66:d5:79:2a:b1:
        c0:98:a2:37:c3:27:5e:39:b8:b7:b7:36:22:36:31:64:
        52:54:29:1a:1d:9a:6d:72:2c:fd:6c:b8:d0:b8:23:f3:
        34:db:f1:dd:88:47:ba:e4:6a:a6:1f:aa:2b:0e:cc:01:
        a9:62:f5:83:e5:d0:ac:3a:c0:b7:9b:75:6c:0c:1a:26:
        c1:6e:33:ad:b5:55:f5:82:ff:8c:ef:2c:89:ad:7a:46:
        46:10:25:8f:0e:b2:08:62:42:a6:4d:50:e0:81:7f:6b:
        4c:69:c1:5d:1e:5a:36:60:61:64:93:c7:1f:12:da:f9:
        b5:1a:83:e3:77:e2:02:2b:44:bf:c5:ce:28:d4:47:c8:
        85:5e:4b:bd:8b:44:b4:8e:94:0a:23:e2:20:ed:a1:30:
        d7:4d:2c:b4:25:bd:31:fe:63:25:4e:d6:e3:50:0d:b2:
        44:d5:d2:a5:c9:9a:9d:6a:3d:7f:2e:62:94:ef:57:6c
    Fingerprint (SHA-256):
        E8:D8:D3:07:FC:3B:2A:38:C7:FE:F7:34:B6:55:09:76:17:27:B9:07:52:0A:B5:45:12:60:77:EA:FA:3E:F5:CC
    Fingerprint (SHA1):
        40:51:F3:AD:C9:E7:52:94:CD:DB:0A:07:C3:3D:7F:0C:92:E1:F8:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7520: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155191 (0x1dee47b7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 15:53:26 2017
            Not After : Mon May 02 15:53:26 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:ea:1a:54:91:49:a0:6b:07:16:a1:01:62:3a:e6:0c:
                    6b:c5:59:39:b1:7e:ba:0f:13:e8:73:d6:5d:7e:20:8c:
                    93:b3:a2:45:70:3e:86:0d:8e:9b:93:e3:e6:c9:87:3d:
                    94:19:f7:77:b9:c9:1e:fd:78:55:0e:32:c0:c3:29:ce:
                    db:aa:b6:a5:e1:ff:46:60:d5:eb:50:9c:bf:55:ea:46:
                    ba:6b:32:41:93:52:a8:27:e8:21:16:2c:21:3c:c2:40:
                    74:a5:1a:8b:db:0a:1b:b9:0d:7c:b1:28:5c:d9:58:ec:
                    1c:57:1d:e6:6f:00:ed:74:6e:cc:c3:4d:f7:74:46:95:
                    82:ee:bb:cf:dd:82:82:75:fe:e2:58:b0:30:b9:07:1a:
                    cf:ff:8e:e4:fd:15:cc:30:bf:77:30:fb:1a:3e:a5:58:
                    6c:c7:1e:d5:40:d6:73:e1:88:8a:7b:16:25:be:76:83:
                    db:d6:23:bc:66:3d:3a:14:93:44:75:ce:d0:6a:89:35:
                    f4:e4:59:e2:e2:f7:05:e0:f9:a2:d4:ce:61:ed:05:3f:
                    55:0d:89:c6:21:f8:1c:4a:fa:b1:68:4c:df:71:19:80:
                    bd:63:8d:e7:95:be:ae:99:cd:2c:aa:ef:a7:3d:89:8d:
                    8b:12:20:c5:6f:e8:70:b4:63:6e:86:4e:19:7b:03:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9e:10:6e:07:3d:d3:51:99:c5:f1:53:f0:4a:49:92:32:
        ce:e4:8b:2d:cf:23:df:a6:50:87:f4:9f:4c:65:47:05:
        a1:73:14:5a:7b:ad:df:d0:f4:6c:4d:be:2c:08:db:89:
        81:17:10:aa:7d:82:fa:4b:35:9e:4d:b1:94:56:17:1b:
        63:50:83:84:c3:6e:b9:de:58:fd:a9:9a:c2:d4:59:52:
        68:89:5b:35:23:84:66:a8:c5:d2:8e:52:4a:6d:eb:1c:
        d3:06:90:93:e0:98:71:0a:2f:8c:5c:98:11:59:41:1b:
        43:79:dc:ed:f7:fb:d5:7e:28:e5:a1:01:a7:7a:0f:91:
        fe:39:0d:74:ae:bc:fe:9c:7a:64:d7:16:93:d3:9d:d7:
        18:da:99:e5:5c:e2:cd:a8:c3:2c:c7:c3:ed:b0:d3:10:
        b5:83:51:01:27:0e:76:e3:d7:1c:5f:1e:91:22:90:09:
        d8:0a:2e:ea:0b:dc:8d:b7:a9:dd:b4:7c:c6:a4:6c:c8:
        47:44:3e:7f:5a:6b:01:2a:f1:e6:11:c8:85:2a:6b:87:
        01:f6:89:22:9c:ab:76:f6:94:42:74:d5:40:79:12:14:
        4a:6c:90:89:de:d7:1b:ab:a9:9c:b7:df:5f:ce:99:fc:
        76:b8:52:7d:79:54:72:d4:8a:d0:82:69:d9:13:68:f6
    Fingerprint (SHA-256):
        45:45:8B:77:7B:72:73:37:46:54:C2:F3:78:BF:5F:31:49:C2:B2:B9:04:69:56:69:D2:AC:A3:20:45:8F:D1:F7
    Fingerprint (SHA1):
        83:08:88:48:12:73:BA:ED:22:F1:1E:78:61:81:F1:B2:DF:36:76:31
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7521: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #7522: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #7523: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #7524: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155189 (0x1dee47b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:24 2017
            Not After : Mon May 02 15:53:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:6d:42:50:aa:9e:48:c6:52:0c:25:c6:8d:2c:6c:77:
                    2c:6f:07:da:dc:d9:ee:19:57:90:fa:27:ce:2c:d8:d4:
                    47:7e:62:de:8e:e5:6d:c5:c4:e2:0e:a7:54:2f:a2:9f:
                    13:1d:70:a1:f3:c3:29:d7:79:0f:92:9e:55:8a:dc:2b:
                    01:5a:2f:47:52:ca:92:16:ce:11:de:81:4a:fe:34:99:
                    0f:7f:eb:ca:f6:58:7f:81:c5:0e:f6:d0:b0:06:32:c7:
                    b1:8d:8f:b5:53:80:f6:66:29:2a:a1:3c:b1:c7:c4:f7:
                    78:b1:00:fc:63:23:69:9c:1e:1c:93:d3:87:dd:ff:d7:
                    42:3e:23:ea:38:64:8e:9f:f2:e3:f6:4f:f6:43:6b:70:
                    ef:a9:b2:a7:6a:f9:d7:dd:fd:61:c8:c0:56:34:bb:7c:
                    76:8a:3c:83:af:0e:a4:28:5f:76:d6:ab:c4:8f:55:1b:
                    07:8a:0b:e2:13:40:68:80:eb:ca:9c:ae:91:29:97:05:
                    28:b0:79:ce:88:ce:9c:70:94:10:c8:23:2c:52:a6:ba:
                    da:c0:48:2a:30:4e:d2:a3:a4:2e:7c:29:7e:8b:d4:86:
                    38:05:c7:28:c3:25:2b:1e:f5:c1:3c:d0:68:7e:b3:db:
                    85:42:0b:26:b8:ac:08:54:59:48:8f:e6:e3:e2:ac:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:62:e9:07:e3:d2:83:c2:1e:29:0d:57:75:81:e0:e8:
        d7:26:bc:2b:12:79:12:17:60:09:16:09:8d:21:6d:f2:
        d8:d7:59:38:29:87:ea:71:3a:cf:45:89:60:b6:2e:84:
        10:85:22:0f:6c:27:a6:e6:7c:58:b4:4b:26:35:83:b5:
        65:5f:c1:45:a3:9f:93:e4:9f:88:a7:66:d5:79:2a:b1:
        c0:98:a2:37:c3:27:5e:39:b8:b7:b7:36:22:36:31:64:
        52:54:29:1a:1d:9a:6d:72:2c:fd:6c:b8:d0:b8:23:f3:
        34:db:f1:dd:88:47:ba:e4:6a:a6:1f:aa:2b:0e:cc:01:
        a9:62:f5:83:e5:d0:ac:3a:c0:b7:9b:75:6c:0c:1a:26:
        c1:6e:33:ad:b5:55:f5:82:ff:8c:ef:2c:89:ad:7a:46:
        46:10:25:8f:0e:b2:08:62:42:a6:4d:50:e0:81:7f:6b:
        4c:69:c1:5d:1e:5a:36:60:61:64:93:c7:1f:12:da:f9:
        b5:1a:83:e3:77:e2:02:2b:44:bf:c5:ce:28:d4:47:c8:
        85:5e:4b:bd:8b:44:b4:8e:94:0a:23:e2:20:ed:a1:30:
        d7:4d:2c:b4:25:bd:31:fe:63:25:4e:d6:e3:50:0d:b2:
        44:d5:d2:a5:c9:9a:9d:6a:3d:7f:2e:62:94:ef:57:6c
    Fingerprint (SHA-256):
        E8:D8:D3:07:FC:3B:2A:38:C7:FE:F7:34:B6:55:09:76:17:27:B9:07:52:0A:B5:45:12:60:77:EA:FA:3E:F5:CC
    Fingerprint (SHA1):
        40:51:F3:AD:C9:E7:52:94:CD:DB:0A:07:C3:3D:7F:0C:92:E1:F8:7E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7525: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155193 (0x1dee47b9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:53:27 2017
            Not After : Mon May 02 15:53:27 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e1:3f:a1:e3:82:38:4e:4a:d7:1f:f1:77:a7:cd:2c:c4:
                    fd:1b:3f:65:1c:98:84:5c:26:7f:59:fb:80:f8:a3:76:
                    f4:6d:b1:34:a8:87:fb:07:2d:bb:db:2b:05:8f:4b:c0:
                    b6:87:95:c9:d5:4d:40:2d:ca:35:64:92:3a:7d:51:c7:
                    fe:5b:65:e9:2a:6e:45:1c:eb:52:9c:d8:e3:70:ec:d7:
                    47:40:02:d0:86:bd:03:3b:e4:ed:50:7a:5a:e4:40:03:
                    4d:d9:35:fc:c5:c3:f4:7d:c7:2d:15:63:36:bd:f8:4d:
                    83:cc:e4:0c:96:12:51:4f:05:b8:87:d9:4d:ec:47:3f:
                    62:d1:d0:f9:49:81:a2:3c:40:dc:d3:7a:a6:f1:41:38:
                    e4:99:8f:10:34:2d:14:24:f1:1c:b2:0b:97:52:36:82:
                    54:58:e3:b6:94:e1:30:c0:9e:56:03:55:67:6d:06:c9:
                    14:22:98:e5:9a:8d:df:9c:86:6b:b4:7a:90:91:c8:21:
                    24:ff:52:5b:4b:af:c3:49:90:87:8e:d0:cc:07:50:3d:
                    aa:bb:a8:c4:5f:75:7e:73:f4:61:d9:cb:a8:76:3b:ec:
                    8d:e8:a5:38:87:41:36:b3:dd:96:54:27:97:de:93:65:
                    7b:6b:e9:86:eb:48:91:c1:ec:89:a3:6e:88:e5:0f:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:07:5c:30:a6:e2:31:16:55:1b:cc:ae:06:96:11:1e:
        96:32:f0:39:00:4a:cd:8c:4d:a4:f2:b3:c6:94:d1:32:
        81:71:c2:e5:de:5e:3b:5b:be:22:31:71:70:1c:b1:f0:
        f5:d5:49:83:22:60:64:92:82:0e:37:5c:40:10:92:6c:
        88:88:04:49:60:6e:b1:30:01:6a:1c:64:18:35:23:45:
        46:71:f6:f1:4f:48:78:8d:bb:fe:27:5f:ea:7a:8a:ee:
        ca:09:54:88:79:67:eb:99:8d:8b:52:56:d6:14:14:cd:
        32:ee:ce:e8:ba:46:15:ed:d0:81:76:e6:6e:55:7f:bd:
        2c:72:e0:20:86:f7:22:43:21:e8:e5:1d:c0:5c:e5:de:
        c7:41:6f:3b:55:30:22:80:b4:20:54:ff:88:94:31:ae:
        55:97:87:a9:34:d4:30:d7:ec:ae:29:33:b8:60:35:fb:
        6f:b0:d3:40:66:70:8b:c4:b9:7e:ce:dc:7d:58:8c:e1:
        64:ad:5b:ad:08:87:b9:8b:27:58:76:10:ee:ab:a7:7b:
        6c:17:80:b2:0b:f8:b9:1d:36:c8:5a:a6:36:fb:15:0e:
        5e:0c:8c:94:7a:55:74:33:b4:e1:36:df:12:d6:be:41:
        69:e9:e2:e6:9e:76:87:7a:d2:ce:da:53:a2:41:b4:f1
    Fingerprint (SHA-256):
        AB:B5:EB:AE:FC:B3:0E:76:EF:2A:D9:94:A0:9E:7C:2E:CF:10:B7:96:72:AB:1F:31:04:2D:55:BF:2D:21:82:A3
    Fingerprint (SHA1):
        62:A4:97:DB:6F:AE:34:AE:E7:75:85:90:D7:94:CD:0E:2C:A3:50:E2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #7526: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155189 (0x1dee47b5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 15:53:24 2017
            Not After : Mon May 02 15:53:24 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:6d:42:50:aa:9e:48:c6:52:0c:25:c6:8d:2c:6c:77:
                    2c:6f:07:da:dc:d9:ee:19:57:90:fa:27:ce:2c:d8:d4:
                    47:7e:62:de:8e:e5:6d:c5:c4:e2:0e:a7:54:2f:a2:9f:
                    13:1d:70:a1:f3:c3:29:d7:79:0f:92:9e:55:8a:dc:2b:
                    01:5a:2f:47:52:ca:92:16:ce:11:de:81:4a:fe:34:99:
                    0f:7f:eb:ca:f6:58:7f:81:c5:0e:f6:d0:b0:06:32:c7:
                    b1:8d:8f:b5:53:80:f6:66:29:2a:a1:3c:b1:c7:c4:f7:
                    78:b1:00:fc:63:23:69:9c:1e:1c:93:d3:87:dd:ff:d7:
                    42:3e:23:ea:38:64:8e:9f:f2:e3:f6:4f:f6:43:6b:70:
                    ef:a9:b2:a7:6a:f9:d7:dd:fd:61:c8:c0:56:34:bb:7c:
                    76:8a:3c:83:af:0e:a4:28:5f:76:d6:ab:c4:8f:55:1b:
                    07:8a:0b:e2:13:40:68:80:eb:ca:9c:ae:91:29:97:05:
                    28:b0:79:ce:88:ce:9c:70:94:10:c8:23:2c:52:a6:ba:
                    da:c0:48:2a:30:4e:d2:a3:a4:2e:7c:29:7e:8b:d4:86:
                    38:05:c7:28:c3:25:2b:1e:f5:c1:3c:d0:68:7e:b3:db:
                    85:42:0b:26:b8:ac:08:54:59:48:8f:e6:e3:e2:ac:f1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        50:62:e9:07:e3:d2:83:c2:1e:29:0d:57:75:81:e0:e8:
        d7:26:bc:2b:12:79:12:17:60:09:16:09:8d:21:6d:f2:
        d8:d7:59:38:29:87:ea:71:3a:cf:45:89:60:b6:2e:84:
        10:85:22:0f:6c:27:a6:e6:7c:58:b4:4b:26:35:83:b5:
        65:5f:c1:45:a3:9f:93:e4:9f:88:a7:66:d5:79:2a:b1:
        c0:98:a2:37:c3:27:5e:39:b8:b7:b7:36:22:36:31:64:
        52:54:29:1a:1d:9a:6d:72:2c:fd:6c:b8:d0:b8:23:f3:
        34:db:f1:dd:88:47:ba:e4:6a:a6:1f:aa:2b:0e:cc:01:
        a9:62:f5:83:e5:d0:ac:3a:c0:b7:9b:75:6c:0c:1a:26:
        c1:6e:33:ad:b5:55:f5:82:ff:8c:ef:2c:89:ad:7a:46:
        46:10:25:8f:0e:b2:08:62:42:a6:4d:50:e0:81:7f:6b:
        4c:69:c1:5d:1e:5a:36:60:61:64:93:c7:1f:12:da:f9:
        b5:1a:83:e3:77:e2:02:2b:44:bf:c5:ce:28:d4:47:c8:
        85:5e:4b:bd:8b:44:b4:8e:94:0a:23:e2:20:ed:a1:30:
        d7:4d:2c:b4:25:bd:31:fe:63:25:4e:d6:e3:50:0d:b2:
        44:d5:d2:a5:c9:9a:9d:6a:3d:7f:2e:62:94:ef:57:6c
    Fingerprint (SHA-256):
        E8:D8:D3:07:FC:3B:2A:38:C7:FE:F7:34:B6:55:09:76:17:27:B9:07:52:0A:B5:45:12:60:77:EA:FA:3E:F5:CC
    Fingerprint (SHA1):
        40:51:F3:AD:C9:E7:52:94:CD:DB:0A:07:C3:3D:7F:0C:92:E1:F8:7E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #7527: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #7528: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #7529: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #7530: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #7531: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #7532: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502155194 (0x1dee47ba)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 15:53:28 2017
            Not After : Mon May 02 15:53:28 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:1f:87:9b:18:b8:5e:a9:34:7e:cb:d9:4c:51:38:b8:
                    40:68:01:4a:3d:42:82:16:c3:17:d9:5d:dc:45:d6:55:
                    84:5a:51:1e:a7:f6:ed:91:fc:40:2f:99:8c:d9:89:00:
                    ac:03:a8:e7:03:01:22:bd:c2:a8:bc:31:2d:f6:f3:6e:
                    fb:05:a0:40:1f:69:6e:54:a4:82:8d:61:00:4b:4f:e3:
                    37:a2:26:ea:b3:c0:5a:f6:d3:cf:81:7f:0e:a0:98:cf:
                    ee:a6:da:47:cd:57:19:94:92:73:10:b5:14:fa:bf:f8:
                    92:5e:34:fc:d6:32:c6:8c:d6:3a:1d:23:fd:55:39:d7:
                    8e:f5:9f:c3:d8:21:66:f1:ed:8c:59:48:9b:9f:d0:93:
                    5e:03:01:37:09:6e:98:95:b4:da:3b:b5:c0:c0:4c:20:
                    aa:1c:da:39:d4:19:33:56:f5:7d:1e:cb:3b:6b:4a:84:
                    ca:58:8e:11:88:ed:0e:b5:88:80:b4:f9:39:03:81:1f:
                    33:a7:d5:62:8b:58:aa:8a:de:db:20:1d:67:ca:8c:d2:
                    54:fb:7c:69:79:50:4d:aa:7a:98:34:2e:8e:46:2b:e0:
                    8c:15:3f:f4:38:dc:21:06:b7:02:07:8d:22:be:ae:f9:
                    35:87:a7:9b:7f:d0:cd:44:23:97:6e:02:3e:7b:6a:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:3a:75:cf:e2:89:c0:37:26:09:61:27:df:51:17:2d:
        bf:2b:71:de:a1:98:08:b5:32:8d:98:84:52:62:4f:24:
        16:e8:97:73:b0:9b:87:4f:9c:b7:f3:ee:2c:a0:1c:f2:
        d9:6a:73:10:d6:94:31:3b:10:5a:60:03:60:c0:8a:92:
        96:ba:f6:71:50:0c:3a:1d:df:01:a6:a9:00:87:4c:75:
        65:d3:38:99:a8:12:19:1d:88:1f:51:e4:7c:50:c1:c6:
        84:b4:4b:83:e3:2b:df:2f:43:c1:fe:96:2b:bf:34:6d:
        4a:df:84:16:a5:76:ef:ed:00:a3:e6:2a:b9:1b:f4:00:
        8c:ed:66:34:ed:fb:7c:cf:84:97:7d:ad:ee:08:0e:49:
        f7:13:37:93:4d:c9:a2:12:8e:b3:bf:7c:1a:3a:7f:23:
        e9:85:45:14:53:f8:a0:3e:d8:de:2e:9d:5b:23:1b:94:
        55:52:df:e9:1c:8c:5b:c1:c7:cb:a2:e2:bf:c2:b6:5e:
        a4:13:1b:98:e2:50:8d:44:46:8e:85:65:89:d7:ba:8e:
        d2:64:f9:bc:dd:73:e0:75:02:6d:3b:ba:e5:d0:a0:4b:
        5b:a5:08:43:d0:04:c1:f0:9a:01:18:fe:d6:69:a7:8d:
        f9:fd:a8:12:f3:ba:9e:05:0c:1a:ed:07:df:55:52:07
    Fingerprint (SHA-256):
        97:4A:6F:C8:1D:D4:3A:31:B7:4F:46:3F:39:44:DF:B1:31:98:CA:7B:57:2A:50:95:93:9B:B4:67:BF:A4:DF:A2
    Fingerprint (SHA1):
        8E:0B:6F:6D:DC:DC:0E:A3:17:E3:70:B7:2A:8F:0A:C1:3F:C8:C6:9F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #7533: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #7534: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #7535: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #7536: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #7537: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7538: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7539: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7540: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7541: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7542: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7543: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7544: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7545: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7546: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7547: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #7548: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7549: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8174: security library: bad database.
Returned value is 1, expected result is fail
chains.sh: #7550: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7551: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #7552: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7553: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7554: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #7555: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #7556: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 18100 at Tue May  2 15:53:31 UTC 2017
kill -USR1 18100
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 18100 killed at Tue May  2 15:53:31 UTC 2017
TIMESTAMP chains END: Tue May  2 15:53:31 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:53:31 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:53:31 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #7557: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:53:31 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:53:31 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7558: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7559: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7560: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #7561: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #7562: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #7563: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:53:31 UTC 2017
TIMESTAMP ec END: Tue May  2 15:53:31 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:53:31 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (8 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (2 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (13 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #7564: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/pkix/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #7565: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #7566: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #7567: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #7568: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #7569: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #7570: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #7571: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #7572: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #7573: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #7574: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #7575: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #7576: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #7577: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #7578: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #7579: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #7580: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #7581: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #7582: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:53:31 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:53:31 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #7583: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7584: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7585: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7586: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7587: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7588: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7589: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7590: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7591: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7592: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7593: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7594: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7595: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7596: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #7597: create certificate: sign  - PASSED
ssl_gtest.sh: #7598: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:53:33 UTC 2017
ssl_gtests.sh: Testing with upgraded library ===============================
cp: cannot stat '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/cert.done': No such file or directory
Running tests for dbupgrade
TIMESTAMP dbupgrade BEGIN: Tue May  2 15:53:33 UTC 2017
dbupgrade.sh: DB upgrade tests ===============================
Reset databases to their initial values:
certutil: could not find certificate named "objsigner": SEC_ERROR_BAD_DATABASE: security library: bad database.
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
dbupgrade.sh: Legacy to shared Library update ===============================
alicedir
upgrading db alicedir
Generating key.  This may take a few moments...
dbupgrade.sh: #7599: Upgrading alicedir  - PASSED
bobdir
upgrading db bobdir
Generating key.  This may take a few moments...
dbupgrade.sh: #7600: Upgrading bobdir  - PASSED
CA
upgrading db CA
Generating key.  This may take a few moments...
dbupgrade.sh: #7601: Upgrading CA  - PASSED
cert_extensions
upgrading db cert_extensions
Generating key.  This may take a few moments...
dbupgrade.sh: #7602: Upgrading cert_extensions  - PASSED
client
upgrading db client
Generating key.  This may take a few moments...
dbupgrade.sh: #7603: Upgrading client  - PASSED
clientCA
upgrading db clientCA
Generating key.  This may take a few moments...
dbupgrade.sh: #7604: Upgrading clientCA  - PASSED
dave
upgrading db dave
Generating key.  This may take a few moments...
dbupgrade.sh: #7605: Upgrading dave  - PASSED
eccurves
upgrading db eccurves
Generating key.  This may take a few moments...
dbupgrade.sh: #7606: Upgrading eccurves  - PASSED
eve
upgrading db eve
Generating key.  This may take a few moments...
dbupgrade.sh: #7607: Upgrading eve  - PASSED
ext_client
upgrading db ext_client
Generating key.  This may take a few moments...
dbupgrade.sh: #7608: Upgrading ext_client  - PASSED
ext_server
upgrading db ext_server
Generating key.  This may take a few moments...
dbupgrade.sh: #7609: Upgrading ext_server  - PASSED
SDR
upgrading db SDR
Generating key.  This may take a few moments...
dbupgrade.sh: #7610: Upgrading SDR  - PASSED
server
upgrading db server
Generating key.  This may take a few moments...
dbupgrade.sh: #7611: Upgrading server  - PASSED
serverCA
upgrading db serverCA
Generating key.  This may take a few moments...
dbupgrade.sh: #7612: Upgrading serverCA  - PASSED
ssl_gtests
skipping db ssl_gtests
dbupgrade.sh: #7613: No directory ssl_gtests  - PASSED
stapling
upgrading db stapling
Generating key.  This may take a few moments...
dbupgrade.sh: #7614: Upgrading stapling  - PASSED
tools/copydir
skipping db tools/copydir
dbupgrade.sh: #7615: No directory tools/copydir  - PASSED
upgrading db fips
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
dbupgrade.sh: #7616: Upgrading fips  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
TIMESTAMP dbupgrade END: Tue May  2 15:53:45 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 15:53:45 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7617: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                91:1f:a1:57:96:d7:79:67:b5:15:e2:93:2a:09:a4:0c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7618: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7619: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7620: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7621: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                bf:52:d7:08:1f:50:c7:6b:2b:f6:a4:12:58:c6:51:6e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:18:43 2017
            Not After : Mon May 02 15:18:43 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:01:c9:c3:f7:4e:e7:f5:72:c1:0b:0d:c7:84:08:21:
                    0c:29:bb:9f:45:4e:d8:c3:30:b7:43:f3:92:94:bb:1c:
                    8f:8c:12:2f:5c:2c:f9:9b:7c:be:3e:a5:8e:6e:ba:ba:
                    fd:ae:8f:68:97:62:2a:95:7d:18:85:96:97:d8:80:0c:
                    65:81:0c:00:a9:d1:66:de:4c:a2:ca:af:27:d3:71:b9:
                    16:d5:ab:f4:3e:07:4d:46:b4:7b:d6:15:f6:57:48:cd:
                    09:8b:08:d9:9b:5c:c3:5a:ba:b0:19:64:c5:0e:b4:fe:
                    17:6b:ae:ae:c6:97:aa:c4:40:6e:c6:a1:3c:f9:c8:54:
                    fa:31:fb:d1:d7
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:a3:4f:7b:df:53:44:b3:3d:f8:aa:
        61:ac:1a:eb:f2:fd:90:78:30:e1:f2:52:e6:5b:d4:10:
        b8:35:64:ff:ec:22:29:80:8c:8c:57:c8:db:da:ad:13:
        74:59:24:79:1d:1e:7d:c4:0c:00:a9:30:04:99:c9:ed:
        f4:12:73:27:bb:13:6e:02:42:01:8e:d4:74:85:46:98:
        a4:ca:71:4c:94:8b:a2:ed:39:77:a3:36:c5:9a:31:20:
        e8:6e:68:11:5a:36:b7:17:e7:8a:6d:56:67:18:fe:e6:
        a6:23:51:17:a9:3a:c2:9e:23:67:95:b4:37:ea:15:c6:
        6b:1b:61:e8:51:d0:89:64:73:26:0e
    Fingerprint (SHA-256):
        DB:1B:A1:98:69:1D:A8:C8:EA:A3:4F:D4:95:EB:FB:B2:16:EB:9E:29:67:ED:5C:9E:77:B5:8D:E4:69:97:1F:C4
    Fingerprint (SHA1):
        B9:6A:B8:C2:5F:08:7C:F3:B9:2C:38:B6:00:F6:CB:B0:1B:01:78:AA
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 15:18:53 2017
            Not After : Mon May 02 15:18:53 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:63:33:05:06:f3:6d:71:2d:49:fc:8f:02:c0:24:fd:
                    bd:51:c7:5e:90:6d:79:c9:79:6c:b2:41:4c:25:00:10:
                    08:c6:24:55:63:f2:68:18:9f:f3:36:0f:b1:91:9e:76:
                    01:92:0c:a4:a7:f6:23:1f:b0:75:e0:9c:71:77:c6:62:
                    00:cc:c4:f8:49:db:de:5f:7d:39:09:2e:f4:3f:c7:72:
                    e6:79:98:a5:b6:a1:80:82:af:9b:85:47:86:aa:75:17:
                    7f
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:00:cf:2d:c2:bd:12:e9:7f:16:7c:f5:
        d5:e5:43:78:b1:46:c3:0d:50:0d:ad:73:83:e2:7e:1a:
        d4:41:4b:b8:a9:35:33:19:65:5c:34:08:a0:83:4f:4d:
        b1:56:df:9c:5b:91:1a:78:07:4b:03:71:25:75:4c:8e:
        09:0b:6f:3d:bb:1a:b9:02:42:00:98:e5:99:1b:1a:2b:
        70:b0:4d:3a:dc:c5:a2:8f:0c:2b:29:8f:27:11:9c:a5:
        d3:94:00:16:c6:61:93:70:4d:82:76:88:0a:cf:15:0e:
        02:cf:02:19:4d:4d:4a:78:73:8d:43:2d:ab:dc:1d:a2:
        92:ba:a1:e5:d9:16:e5:e6:0c:e5:ea
    Fingerprint (SHA-256):
        22:A0:65:1E:8D:F6:F6:FC:8D:AF:55:FA:51:86:BA:D1:61:5C:62:3B:03:1F:2D:F1:62:08:6A:C6:4F:8E:8B:45
    Fingerprint (SHA1):
        9B:FD:92:46:69:03:66:6D:CE:04:9C:34:13:AD:B0:94:A5:E3:36:BE
    Friendly Name: Alice-ec
tools.sh: #7622: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7623: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                0c:e4:86:ce:e5:8f:39:0f:ac:b2:ef:75:b4:23:fd:f9
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7624: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7625: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7626: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                6e:02:5b:7a:95:21:fb:d5:ea:f0:d7:a4:34:c5:75:6d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7627: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7628: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7629: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                ff:a1:53:f5:5d:2d:32:7f:8f:0a:49:ba:dd:86:d7:63
            Iteration Count: 2000 (0x7d0)
tools.sh: #7630: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7631: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7632: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d8:f2:aa:7d:76:02:88:d2:cb:09:78:5f:76:05:dc:3c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7633: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7634: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7635: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4a:b0:1d:b2:3e:80:43:5e:9a:fb:8e:5e:20:f5:5c:26
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7636: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7637: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7638: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                b9:ee:a3:32:6e:05:be:5a:95:a1:46:b9:7b:ef:c1:b3
            Iteration Count: 2000 (0x7d0)
tools.sh: #7639: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7640: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7641: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        c3:86:fe:9b:70:ef:09:62:87:03:da:12:52:19:b3:7c
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:b2:5a:2f:51:3b:d5:f1:8f:a6:50:ab:7d:89:bc:
                    06:b9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7642: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7643: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7644: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ab:4c:d4:3b:f1:a1:98:31:11:f6:9b:96:51:56:7f:d0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:47:68:44:6b:3d:8b:b3:0d:45:69:92:02:70:a9:
                    cc:91
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7645: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7646: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7647: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        a3:13:ec:13:68:9f:38:49:05:07:c7:5e:0a:e6:3a:34
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:03:be:88:d5:8f:f0:92:45:b8:3d:85:c9:f4:b8:
                    16:4b
tools.sh: #7648: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7649: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7650: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ce:eb:c3:38:d2:68:d0:b6:68:fb:da:3a:4a:fe:ae:3e
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:bf:b4:31:e3:94:42:cf:2e:94:d8:2e:9d:d3:98:
                    4e:8c
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7651: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7652: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7653: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        44:6f:9c:e8:b6:93:06:3d:c8:7d:6c:f8:2f:23:8a:0d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:04:19:31:9f:d6:33:76:1b:03:a6:05:e3:34:c2:
                    ae:df
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7654: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7655: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7656: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ab:5d:f1:fc:3e:2f:91:77:8f:f7:dc:34:b9:ca:ca:ed
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:9e:62:05:88:6e:67:33:95:a6:45:40:76:8a:b6:
                    8f:53
tools.sh: #7657: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7658: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7659: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6b:ac:ca:b8:11:ba:76:4a:f0:43:82:4f:44:49:b4:07
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:74:a8:2b:7e:86:1e:73:8f:08:03:33:e8:6c:8a:
                    bb:99
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7660: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7661: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7662: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        36:eb:aa:42:5e:34:c1:4c:6c:0b:42:b5:81:d0:ca:0d
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:42:f0:8f:45:e8:4e:f1:03:42:23:64:45:66:51:
                    5e:c4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7663: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7664: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7665: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        76:4a:c4:93:d4:83:37:cc:31:55:e3:ff:2b:70:41:3b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:24:eb:6f:01:b7:3a:c5:76:5c:da:9c:ef:77:20:
                    e0:ba
tools.sh: #7666: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7667: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7668: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8e:89:e0:84:91:73:0b:e5:01:1b:75:e3:f9:da:d2:a8
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:fb:e6:bf:90:13:85:52:ec:aa:a2:4e:f6:89:d2:
                    1a:66
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7669: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7670: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7671: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ed:55:65:e9:83:59:31:f9:3d:e7:e6:95:90:bd:2f:df
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:43:be:7f:ec:3c:ff:50:ff:a2:ac:4c:bf:08:79:
                    35:cd
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7672: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7673: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7674: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8f:c3:6b:18:ef:88:d7:c8:5f:c4:7d:07:ed:f1:d2:79
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:d5:91:24:6a:f1:f9:c3:4d:20:1c:87:62:04:0c:
                    64:f1
tools.sh: #7675: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7676: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7677: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        51:76:54:cd:59:b4:73:47:ab:91:d9:0e:2b:35:9e:24
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:e4:7e:7d:3c:3d:b0:57:74:a8:3d:62:e0:7e:90:
                    37:09
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7678: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7679: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7680: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ab:fa:32:af:3e:d5:de:09:be:8a:13:04:e7:69:92:cd
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:08:54:78:ec:cb:90:78:94:df:9f:3d:c4:c4:0a:
                    a9:74
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7681: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7682: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7683: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        f8:f4:a2:48:1a:67:33:33:c6:5b:eb:7f:c0:60:77:24
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:23:52:18:ee:33:1c:97:f7:19:ad:60:9c:34:81:
                    a4:57
tools.sh: #7684: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7685: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7686: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        33:0a:19:14:1f:96:ca:c2:f9:6d:17:f5:10:9f:da:13
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:ca:0c:d3:01:29:c2:a5:ec:7f:6a:5a:b4:68:d9:
                    cb:45
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7687: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7688: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7689: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        bb:24:44:53:a8:1d:bf:c0:2d:ba:d5:44:48:5f:fe:a5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:7f:a2:e5:31:bd:1a:47:db:3f:7b:21:3e:65:cc:
                    3a:78
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7690: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7691: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7692: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        ab:94:8f:8b:32:28:18:e0:fe:50:4b:a3:c5:0b:8b:82
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:7c:cb:e4:93:bc:cd:81:b0:8d:62:22:77:6b:da:
                    f4:59
tools.sh: #7693: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7694: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7695: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                cb:e4:5a:bc:90:fb:74:50:f1:c8:28:48:06:6d:bc:66
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7696: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7697: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7698: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                37:31:0d:e8:39:36:d6:4f:21:fc:d9:2b:f4:f1:3d:06
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7699: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7700: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7701: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                1d:f4:11:d4:52:b3:ef:75:38:a4:dc:56:1c:b0:3a:d5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7702: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7703: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7704: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                9f:26:5b:f6:0f:0f:70:89:54:5c:d4:d7:57:dc:5c:5c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7705: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7706: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7707: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                25:9a:d9:71:b4:74:50:c0:6b:57:86:3a:84:01:bb:7d
            Iteration Count: 2000 (0x7d0)
tools.sh: #7708: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7709: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7710: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                e0:af:7a:ab:1d:68:6d:93:5a:d1:7f:de:4b:ee:2e:f8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7711: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7712: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7713: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                58:4c:6d:cf:00:06:46:71:b4:e3:16:60:b6:db:e8:b0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7714: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7715: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7716: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                24:13:9a:98:5b:56:7c:1c:3a:20:73:b3:f8:25:ed:b5
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7717: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7718: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7719: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                c2:fa:ba:00:c4:d1:7a:62:9f:f2:8c:ec:20:16:ad:d2
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7720: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7721: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7722: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                c4:57:52:8b:9b:87:94:24:28:dd:5d:cc:a6:b6:43:78
            Iteration Count: 2000 (0x7d0)
tools.sh: #7723: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7724: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7725: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                a7:41:f9:e8:2a:e8:75:cf:8a:aa:d5:d9:ea:4b:e7:71
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7726: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7727: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7728: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ec:44:ef:d9:6c:2a:8e:3b:cc:ef:9f:bb:55:d4:c3:7e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7729: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7730: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7731: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                0c:42:e1:58:33:43:82:c1:01:6e:cc:82:54:f3:f6:27
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7732: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7733: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7734: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                9d:0b:d2:57:db:24:1e:28:fe:43:5c:08:c6:2d:23:18
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7735: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7736: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7737: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                94:4a:7f:54:5b:31:bf:5d:62:17:f4:c7:ec:cb:16:b3
            Iteration Count: 2000 (0x7d0)
tools.sh: #7738: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7739: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7740: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2c:67:ae:69:24:b2:db:c3:d3:0a:fd:b5:74:77:7e:b6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7741: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7742: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7743: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                50:07:ae:10:d3:5a:cc:87:d7:35:20:c5:9c:fb:e1:24
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7744: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7745: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7746: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c4:6b:c9:ac:df:8e:aa:14:c7:88:d8:b6:24:3d:2e:aa
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7747: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7748: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7749: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                64:6a:ee:0b:de:c2:d2:54:09:8c:9e:bb:e4:a1:c1:1e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7750: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7751: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7752: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                8f:34:56:50:9e:82:96:e7:2e:97:01:47:9e:49:71:48
            Iteration Count: 2000 (0x7d0)
tools.sh: #7753: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7754: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7755: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                41:f1:e2:87:2c:b0:c7:9a:9e:1b:ed:73:98:d6:b0:5f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7756: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7757: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7758: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                54:b0:74:c3:c0:88:d7:f5:17:20:78:8d:a9:2e:c7:f8
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7759: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7760: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7761: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7b:46:9a:6c:be:fa:6a:2d:91:fb:e9:27:cc:07:b5:55
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7762: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7763: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7764: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                31:7b:af:d8:2e:78:a3:cb:e2:56:5c:11:c1:18:66:a6
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7765: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7766: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7767: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fe:35:d2:d5:1d:09:4e:df:09:64:db:1c:a2:71:59:ae
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7768: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7769: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7770: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7b:e8:65:d4:03:b3:0b:a3:e4:7a:42:8d:a9:01:69:67
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7771: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7772: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7773: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3c:ea:b7:26:f3:01:79:1a:71:19:cd:54:74:f4:85:74
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7774: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7775: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7776: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c5:48:ff:b4:64:bc:a8:4f:3c:56:5f:43:af:dd:f7:49
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7777: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7778: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7779: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                91:e7:a1:92:4a:7f:ac:b7:31:38:02:bb:77:51:2f:62
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7780: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7781: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7782: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                0a:3a:26:f7:e8:25:8c:83:98:65:b9:70:e7:c8:6a:fe
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:38 2017
            Not After : Mon May 02 15:18:38 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ec:2a:19:4f:97:eb:34:8f:87:99:41:2a:25:5c:8a:92:
                    b7:7d:75:44:f2:81:94:b1:5c:5b:19:06:f4:72:fc:6b:
                    cc:e2:f7:38:58:62:65:51:cb:1b:24:d7:d0:4f:cb:bc:
                    64:a2:e4:d1:5d:25:38:2f:3f:52:63:b0:03:f7:bc:97:
                    23:2b:0c:54:da:ab:fd:96:5b:fd:19:b3:a9:cb:e7:71:
                    b4:e2:ba:36:bf:ba:8f:56:3f:2b:f2:74:2d:d0:23:e6:
                    d4:43:1c:97:72:13:ff:5f:12:81:35:46:8e:0e:c2:48:
                    72:cf:e4:a1:e5:f6:3d:96:f7:e2:62:b9:6f:d7:03:23:
                    50:80:7b:a8:1d:c1:1f:27:65:7a:75:0a:0e:16:ff:a0:
                    05:2f:61:79:8d:b6:55:c2:05:2d:90:ab:bd:8f:84:58:
                    fb:ef:d8:2f:fd:8c:43:4c:51:3e:68:8a:91:32:34:15:
                    35:21:49:44:89:cf:8e:25:5c:c0:86:26:39:5c:81:32:
                    4d:b2:80:3f:ab:44:ef:f1:2f:f1:18:d0:b9:67:10:54:
                    41:2d:17:2e:d8:a7:4e:5c:8b:f8:be:2c:f9:5d:34:ae:
                    f6:cb:fb:75:04:38:20:91:fb:e9:89:ae:4b:d8:4f:da:
                    13:37:96:0a:0d:91:35:52:52:e4:68:e9:da:3b:3d:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d6:58:d6:30:1b:dd:c4:49:bc:ef:46:a1:67:81:75:3c:
        0e:d0:d5:d0:5f:ae:6d:67:51:79:32:2e:8d:43:9f:4b:
        ca:29:68:d9:52:bd:b4:36:91:2d:ac:c6:c6:87:ad:16:
        cd:c4:78:0c:96:44:0a:5b:a5:2d:53:34:5d:d0:9b:a8:
        34:ff:a8:d9:84:bb:5a:09:ba:f3:c0:97:d2:33:63:40:
        29:66:c8:93:9e:09:6e:48:d2:3a:31:f6:b2:be:f3:ce:
        90:41:92:c2:f0:01:57:07:55:4c:42:5f:29:f7:33:c4:
        e7:e4:94:78:f4:31:81:af:9f:9a:93:7c:1b:b9:f5:ef:
        42:c4:b0:ac:f1:ad:fc:6f:71:e1:d8:36:01:60:95:77:
        c2:f6:ae:81:47:c7:08:a4:3a:45:49:f1:04:5f:78:5a:
        b9:48:6a:83:71:65:4c:1f:74:09:27:32:1b:51:70:17:
        f4:be:e1:25:51:da:01:ed:93:00:d2:75:a6:6e:ca:88:
        d6:93:33:05:e5:ef:d7:13:20:4a:7b:ee:a6:91:59:f9:
        9e:30:d6:f5:a7:de:0e:68:f4:ab:2b:af:7b:9f:42:aa:
        06:ab:3a:fb:d7:e5:51:c7:4b:4e:63:e8:b5:f0:e2:d4:
        05:77:0b:16:0b:db:f1:a3:13:54:0e:d8:2b:0c:e4:b6
    Fingerprint (SHA-256):
        D4:8D:BB:19:5A:1D:76:65:9C:9F:A5:29:51:FD:F9:C4:D7:B0:E9:5A:16:EB:BE:BA:73:30:B3:2D:3B:C6:39:72
    Fingerprint (SHA1):
        55:03:24:C5:4F:BA:A6:53:87:63:EB:6A:30:D9:04:91:B2:0D:60:CC
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:18:52 2017
            Not After : Mon May 02 15:18:52 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:55:d9:7a:ec:f0:d6:53:76:21:5e:a8:40:ba:9f:7b:
                    8c:74:2e:0e:74:14:5f:d3:cf:86:5a:c3:fa:a5:48:58:
                    30:7e:3b:91:12:c1:9e:d0:6f:9c:9b:b0:b5:fb:49:a3:
                    73:59:2c:b6:7c:6d:8c:33:79:32:02:05:89:fa:90:93:
                    40:31:e9:1e:cd:f6:7a:d6:07:16:01:4e:5c:cd:18:09:
                    93:b6:f4:d9:01:70:37:06:86:be:0c:ad:55:8d:9c:06:
                    4a:9d:d6:b7:88:27:f7:18:7c:92:21:d0:6e:a4:97:87:
                    e8:a1:23:a8:55:54:09:26:16:cc:f2:38:97:fd:90:31:
                    2b:32:bc:1f:3a:b4:c8:cb:6e:c2:8a:82:47:4f:fb:bd:
                    f7:9f:21:13:e2:62:2a:f1:1c:1e:ef:1a:47:75:d8:49:
                    34:d4:0d:7b:98:b5:28:70:98:64:23:f8:fa:d7:14:9d:
                    85:c7:3a:70:ee:fc:fd:b4:60:37:5d:7b:fc:74:26:aa:
                    c8:c5:1c:b0:8f:4a:07:e3:eb:45:06:f7:89:83:ba:28:
                    80:93:f2:09:c8:03:be:93:e4:4b:b2:0c:3f:92:42:8e:
                    f4:64:34:56:13:6e:11:6e:ff:22:5c:1a:c6:d1:8f:98:
                    c5:1e:55:24:7a:91:1d:b5:c3:27:2d:e9:47:59:f9:4b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        27:b1:7d:34:b6:79:56:df:7e:cd:65:b2:57:2d:51:b9:
        7d:eb:aa:33:e5:cd:70:e9:63:b7:87:f7:44:3d:a3:50:
        b8:df:e1:9b:eb:c7:93:cd:e1:2c:fe:d2:44:bf:0a:5f:
        ed:e0:a3:c7:b5:69:96:6a:94:8c:82:8e:a5:5a:a8:97:
        fb:9d:23:63:d6:8b:3c:f0:26:8b:90:01:c1:c6:3f:82:
        ee:b1:1a:e1:d3:8b:37:da:82:a9:20:0c:9c:db:6a:48:
        1a:01:fc:42:cc:b5:75:d0:39:3d:46:33:52:d2:a6:b3:
        d4:86:30:fa:44:0e:74:c9:ec:cd:c1:5c:0d:1a:d9:15:
        45:ac:0c:b9:ba:1f:35:f1:a6:dc:68:ab:6e:70:25:bc:
        42:b2:a3:1e:07:87:28:15:5a:f0:f7:fd:1e:4e:0b:2a:
        4b:db:aa:01:f8:92:cc:8c:17:50:71:a5:6e:6c:83:35:
        28:49:4a:16:f4:8e:92:d1:d1:53:94:cd:8c:ce:ce:76:
        3a:a1:04:49:43:5b:e8:cf:62:ae:4f:1c:95:ae:00:fa:
        0e:95:0c:33:0b:f8:92:0f:a2:c2:ab:42:b9:63:d9:c6:
        a6:b1:df:6d:ea:af:61:c5:eb:7c:0d:5e:b0:be:6e:1a:
        a7:a8:a3:e4:b3:8c:fb:61:79:5c:4c:59:df:29:77:a0
    Fingerprint (SHA-256):
        06:E2:04:0C:E8:4F:60:FA:D7:90:76:F3:29:DB:8E:7D:07:72:6A:6F:61:40:0E:AE:A6:07:15:00:D7:DC:09:E9
    Fingerprint (SHA1):
        9F:80:98:8E:DD:95:91:21:C0:12:A1:EB:7F:0A:99:F5:67:F6:6F:AA
    Friendly Name: Alice
tools.sh: #7783: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #7784: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #7785: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #7786: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #7787: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #7788: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #7789: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #7790: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #7791: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #7792: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #7793: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 15:54:12 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 15:54:12 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #7794: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #7795: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      d6f70cde6db44a0620a4442d6ef78f4ec4395499   FIPS_PUB_140_Test_Certificate
fips.sh: #7796: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #7797: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #7798: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #7799: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #7800: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #7801: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #7802: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #7803: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #7804: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #7805: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #7806: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      d6f70cde6db44a0620a4442d6ef78f4ec4395499   FIPS_PUB_140_Test_Certificate
fips.sh: #7807: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #7808: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #7809: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #7810: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #7811: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      d6f70cde6db44a0620a4442d6ef78f4ec4395499   FIPS_PUB_140_Test_Certificate
fips.sh: #7812: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #7813: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #7814: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
mkdir: cannot create directory '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle': File exists
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle/libsoftokn3.so -o -8 -b 5
Changing byte 0x00042cf8 (273656): from 20 (32) to 00 (0)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/fips/mangle dbtest -r -d ../fips
fips.sh: #7815: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 15:54:42 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Tue May  2 15:54:42 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #7816: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #7817: CMMF test . - PASSED
TIMESTAMP crmf END: Tue May  2 15:54:42 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Tue May  2 15:54:42 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #7818: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7819: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #7820: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #7821: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #7822: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #7823: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7824: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #7825: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #7826: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #7827: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #7828: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7829: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #7830: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #7831: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #7832: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #7833: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7834: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #7835: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #7836: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #7837: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #7838: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7839: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #7840: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #7841: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #7842: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #7843: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7844: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #7845: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #7846: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #7847: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #7848: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7849: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #7850: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #7851: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #7852: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #7853: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #7854: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #7855: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #7856: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #7857: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #7858: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #7859: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #7860: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #7861: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #7862: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #7863: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #7864: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #7865: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #7866: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #7867: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #7868: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #7869: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #7870: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #7871: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #7872: Decode Encrypted-Data . - PASSED
smime.sh: #7873: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #7874: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #7875: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #7876: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #7877: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #7878: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Tue May  2 15:54:50 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 15:54:50 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:54:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4336 >/dev/null 2>/dev/null
selfserv_9590 with PID 4336 found at Tue May  2 15:54:50 UTC 2017
selfserv_9590 with PID 4336 started at Tue May  2 15:54:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7879: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4336 at Tue May  2 15:54:50 UTC 2017
kill -USR1 4336
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4336 killed at Tue May  2 15:54:50 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:54:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4392 >/dev/null 2>/dev/null
selfserv_9590 with PID 4392 found at Tue May  2 15:54:51 UTC 2017
selfserv_9590 with PID 4392 started at Tue May  2 15:54:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7880: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4392 at Tue May  2 15:54:51 UTC 2017
kill -USR1 4392
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4392 killed at Tue May  2 15:54:51 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:54:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4448 >/dev/null 2>/dev/null
selfserv_9590 with PID 4448 found at Tue May  2 15:54:51 UTC 2017
selfserv_9590 with PID 4448 started at Tue May  2 15:54:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7881: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4448 at Tue May  2 15:54:52 UTC 2017
kill -USR1 4448
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4448 killed at Tue May  2 15:54:52 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:54:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4516 >/dev/null 2>/dev/null
selfserv_9590 with PID 4516 found at Tue May  2 15:54:52 UTC 2017
selfserv_9590 with PID 4516 started at Tue May  2 15:54:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7882: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4516 at Tue May  2 15:54:52 UTC 2017
kill -USR1 4516
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4516 killed at Tue May  2 15:54:52 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:54:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4573 >/dev/null 2>/dev/null
selfserv_9590 with PID 4573 found at Tue May  2 15:54:52 UTC 2017
selfserv_9590 with PID 4573 started at Tue May  2 15:54:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7883: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4573 at Tue May  2 15:54:53 UTC 2017
kill -USR1 4573
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4573 killed at Tue May  2 15:54:53 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:54:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4629 >/dev/null 2>/dev/null
selfserv_9590 with PID 4629 found at Tue May  2 15:54:53 UTC 2017
selfserv_9590 with PID 4629 started at Tue May  2 15:54:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7884: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4629 at Tue May  2 15:54:53 UTC 2017
kill -USR1 4629
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4629 killed at Tue May  2 15:54:53 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:54:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4697 >/dev/null 2>/dev/null
selfserv_9590 with PID 4697 found at Tue May  2 15:54:53 UTC 2017
selfserv_9590 with PID 4697 started at Tue May  2 15:54:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7885: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 4697 at Tue May  2 15:54:54 UTC 2017
kill -USR1 4697
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4697 killed at Tue May  2 15:54:54 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:54:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4753 >/dev/null 2>/dev/null
selfserv_9590 with PID 4753 found at Tue May  2 15:54:54 UTC 2017
selfserv_9590 with PID 4753 started at Tue May  2 15:54:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7886: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 4753 at Tue May  2 15:54:54 UTC 2017
kill -USR1 4753
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4753 killed at Tue May  2 15:54:54 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:54:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4809 >/dev/null 2>/dev/null
selfserv_9590 with PID 4809 found at Tue May  2 15:54:55 UTC 2017
selfserv_9590 with PID 4809 started at Tue May  2 15:54:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7887: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 4809 at Tue May  2 15:54:55 UTC 2017
kill -USR1 4809
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4809 killed at Tue May  2 15:54:55 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:54:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4877 >/dev/null 2>/dev/null
selfserv_9590 with PID 4877 found at Tue May  2 15:54:55 UTC 2017
selfserv_9590 with PID 4877 started at Tue May  2 15:54:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7888: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 4877 at Tue May  2 15:54:56 UTC 2017
kill -USR1 4877
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4877 killed at Tue May  2 15:54:56 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:54:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4933 >/dev/null 2>/dev/null
selfserv_9590 with PID 4933 found at Tue May  2 15:54:56 UTC 2017
selfserv_9590 with PID 4933 started at Tue May  2 15:54:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7889: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 4933 at Tue May  2 15:54:56 UTC 2017
kill -USR1 4933
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4933 killed at Tue May  2 15:54:56 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:54:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4989 >/dev/null 2>/dev/null
selfserv_9590 with PID 4989 found at Tue May  2 15:54:56 UTC 2017
selfserv_9590 with PID 4989 started at Tue May  2 15:54:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7890: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 4989 at Tue May  2 15:54:57 UTC 2017
kill -USR1 4989
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4989 killed at Tue May  2 15:54:57 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:54:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5057 >/dev/null 2>/dev/null
selfserv_9590 with PID 5057 found at Tue May  2 15:54:57 UTC 2017
selfserv_9590 with PID 5057 started at Tue May  2 15:54:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7891: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 5057 at Tue May  2 15:54:57 UTC 2017
kill -USR1 5057
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5057 killed at Tue May  2 15:54:57 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:54:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5113 >/dev/null 2>/dev/null
selfserv_9590 with PID 5113 found at Tue May  2 15:54:57 UTC 2017
selfserv_9590 with PID 5113 started at Tue May  2 15:54:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7892: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 5113 at Tue May  2 15:54:58 UTC 2017
kill -USR1 5113
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5113 killed at Tue May  2 15:54:58 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:54:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5169 >/dev/null 2>/dev/null
selfserv_9590 with PID 5169 found at Tue May  2 15:54:58 UTC 2017
selfserv_9590 with PID 5169 started at Tue May  2 15:54:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7893: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 5169 at Tue May  2 15:54:58 UTC 2017
kill -USR1 5169
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5169 killed at Tue May  2 15:54:58 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:54:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5237 >/dev/null 2>/dev/null
selfserv_9590 with PID 5237 found at Tue May  2 15:54:58 UTC 2017
selfserv_9590 with PID 5237 started at Tue May  2 15:54:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7894: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 5237 at Tue May  2 15:54:59 UTC 2017
kill -USR1 5237
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5237 killed at Tue May  2 15:54:59 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:54:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:54:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5293 >/dev/null 2>/dev/null
selfserv_9590 with PID 5293 found at Tue May  2 15:54:59 UTC 2017
selfserv_9590 with PID 5293 started at Tue May  2 15:54:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7895: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5293 at Tue May  2 15:54:59 UTC 2017
kill -USR1 5293
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5293 killed at Tue May  2 15:54:59 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:54:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5349 >/dev/null 2>/dev/null
selfserv_9590 with PID 5349 found at Tue May  2 15:55:00 UTC 2017
selfserv_9590 with PID 5349 started at Tue May  2 15:55:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7896: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 5349 at Tue May  2 15:55:00 UTC 2017
kill -USR1 5349
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5349 killed at Tue May  2 15:55:00 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5417 >/dev/null 2>/dev/null
selfserv_9590 with PID 5417 found at Tue May  2 15:55:00 UTC 2017
selfserv_9590 with PID 5417 started at Tue May  2 15:55:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7897: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5417 at Tue May  2 15:55:01 UTC 2017
kill -USR1 5417
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5417 killed at Tue May  2 15:55:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5473 >/dev/null 2>/dev/null
selfserv_9590 with PID 5473 found at Tue May  2 15:55:01 UTC 2017
selfserv_9590 with PID 5473 started at Tue May  2 15:55:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7898: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5473 at Tue May  2 15:55:01 UTC 2017
kill -USR1 5473
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5473 killed at Tue May  2 15:55:01 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5529 >/dev/null 2>/dev/null
selfserv_9590 with PID 5529 found at Tue May  2 15:55:01 UTC 2017
selfserv_9590 with PID 5529 started at Tue May  2 15:55:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7899: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5529 at Tue May  2 15:55:02 UTC 2017
kill -USR1 5529
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5529 killed at Tue May  2 15:55:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5597 >/dev/null 2>/dev/null
selfserv_9590 with PID 5597 found at Tue May  2 15:55:02 UTC 2017
selfserv_9590 with PID 5597 started at Tue May  2 15:55:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7900: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5597 at Tue May  2 15:55:02 UTC 2017
kill -USR1 5597
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5597 killed at Tue May  2 15:55:02 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5653 >/dev/null 2>/dev/null
selfserv_9590 with PID 5653 found at Tue May  2 15:55:02 UTC 2017
selfserv_9590 with PID 5653 started at Tue May  2 15:55:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7901: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5653 at Tue May  2 15:55:03 UTC 2017
kill -USR1 5653
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5653 killed at Tue May  2 15:55:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5709 >/dev/null 2>/dev/null
selfserv_9590 with PID 5709 found at Tue May  2 15:55:03 UTC 2017
selfserv_9590 with PID 5709 started at Tue May  2 15:55:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7902: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5709 at Tue May  2 15:55:03 UTC 2017
kill -USR1 5709
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5709 killed at Tue May  2 15:55:03 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5777 >/dev/null 2>/dev/null
selfserv_9590 with PID 5777 found at Tue May  2 15:55:03 UTC 2017
selfserv_9590 with PID 5777 started at Tue May  2 15:55:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7903: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 5777 at Tue May  2 15:55:04 UTC 2017
kill -USR1 5777
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5777 killed at Tue May  2 15:55:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5833 >/dev/null 2>/dev/null
selfserv_9590 with PID 5833 found at Tue May  2 15:55:04 UTC 2017
selfserv_9590 with PID 5833 started at Tue May  2 15:55:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7904: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 5833 at Tue May  2 15:55:04 UTC 2017
kill -USR1 5833
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5833 killed at Tue May  2 15:55:04 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5889 >/dev/null 2>/dev/null
selfserv_9590 with PID 5889 found at Tue May  2 15:55:04 UTC 2017
selfserv_9590 with PID 5889 started at Tue May  2 15:55:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7905: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 5889 at Tue May  2 15:55:05 UTC 2017
kill -USR1 5889
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5889 killed at Tue May  2 15:55:05 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 5957 >/dev/null 2>/dev/null
selfserv_9590 with PID 5957 found at Tue May  2 15:55:05 UTC 2017
selfserv_9590 with PID 5957 started at Tue May  2 15:55:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7906: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 5957 at Tue May  2 15:55:05 UTC 2017
kill -USR1 5957
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 5957 killed at Tue May  2 15:55:05 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6013 >/dev/null 2>/dev/null
selfserv_9590 with PID 6013 found at Tue May  2 15:55:05 UTC 2017
selfserv_9590 with PID 6013 started at Tue May  2 15:55:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7907: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 6013 at Tue May  2 15:55:06 UTC 2017
kill -USR1 6013
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6013 killed at Tue May  2 15:55:06 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6069 >/dev/null 2>/dev/null
selfserv_9590 with PID 6069 found at Tue May  2 15:55:06 UTC 2017
selfserv_9590 with PID 6069 started at Tue May  2 15:55:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7908: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 6069 at Tue May  2 15:55:06 UTC 2017
kill -USR1 6069
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6069 killed at Tue May  2 15:55:06 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6137 >/dev/null 2>/dev/null
selfserv_9590 with PID 6137 found at Tue May  2 15:55:06 UTC 2017
selfserv_9590 with PID 6137 started at Tue May  2 15:55:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7909: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 6137 at Tue May  2 15:55:07 UTC 2017
kill -USR1 6137
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6137 killed at Tue May  2 15:55:07 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6193 >/dev/null 2>/dev/null
selfserv_9590 with PID 6193 found at Tue May  2 15:55:07 UTC 2017
selfserv_9590 with PID 6193 started at Tue May  2 15:55:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7910: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 6193 at Tue May  2 15:55:07 UTC 2017
kill -USR1 6193
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6193 killed at Tue May  2 15:55:07 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6250 >/dev/null 2>/dev/null
selfserv_9590 with PID 6250 found at Tue May  2 15:55:07 UTC 2017
selfserv_9590 with PID 6250 started at Tue May  2 15:55:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7911: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 6250 at Tue May  2 15:55:08 UTC 2017
kill -USR1 6250
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6250 killed at Tue May  2 15:55:08 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6318 >/dev/null 2>/dev/null
selfserv_9590 with PID 6318 found at Tue May  2 15:55:08 UTC 2017
selfserv_9590 with PID 6318 started at Tue May  2 15:55:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7912: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 6318 at Tue May  2 15:55:08 UTC 2017
kill -USR1 6318
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6318 killed at Tue May  2 15:55:08 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6374 >/dev/null 2>/dev/null
selfserv_9590 with PID 6374 found at Tue May  2 15:55:09 UTC 2017
selfserv_9590 with PID 6374 started at Tue May  2 15:55:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7913: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6374 at Tue May  2 15:55:09 UTC 2017
kill -USR1 6374
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6374 killed at Tue May  2 15:55:09 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6430 >/dev/null 2>/dev/null
selfserv_9590 with PID 6430 found at Tue May  2 15:55:09 UTC 2017
selfserv_9590 with PID 6430 started at Tue May  2 15:55:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7914: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 6430 at Tue May  2 15:55:10 UTC 2017
kill -USR1 6430
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6430 killed at Tue May  2 15:55:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6498 >/dev/null 2>/dev/null
selfserv_9590 with PID 6498 found at Tue May  2 15:55:10 UTC 2017
selfserv_9590 with PID 6498 started at Tue May  2 15:55:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7915: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6498 at Tue May  2 15:55:10 UTC 2017
kill -USR1 6498
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6498 killed at Tue May  2 15:55:10 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6554 >/dev/null 2>/dev/null
selfserv_9590 with PID 6554 found at Tue May  2 15:55:10 UTC 2017
selfserv_9590 with PID 6554 started at Tue May  2 15:55:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7916: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6554 at Tue May  2 15:55:11 UTC 2017
kill -USR1 6554
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6554 killed at Tue May  2 15:55:11 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6610 >/dev/null 2>/dev/null
selfserv_9590 with PID 6610 found at Tue May  2 15:55:11 UTC 2017
selfserv_9590 with PID 6610 started at Tue May  2 15:55:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7917: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6610 at Tue May  2 15:55:11 UTC 2017
kill -USR1 6610
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6610 killed at Tue May  2 15:55:11 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6678 >/dev/null 2>/dev/null
selfserv_9590 with PID 6678 found at Tue May  2 15:55:11 UTC 2017
selfserv_9590 with PID 6678 started at Tue May  2 15:55:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7918: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6678 at Tue May  2 15:55:12 UTC 2017
kill -USR1 6678
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6678 killed at Tue May  2 15:55:12 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6734 >/dev/null 2>/dev/null
selfserv_9590 with PID 6734 found at Tue May  2 15:55:12 UTC 2017
selfserv_9590 with PID 6734 started at Tue May  2 15:55:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7919: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6734 at Tue May  2 15:55:13 UTC 2017
kill -USR1 6734
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6734 killed at Tue May  2 15:55:13 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6790 >/dev/null 2>/dev/null
selfserv_9590 with PID 6790 found at Tue May  2 15:55:13 UTC 2017
selfserv_9590 with PID 6790 started at Tue May  2 15:55:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7920: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6790 at Tue May  2 15:55:13 UTC 2017
kill -USR1 6790
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6790 killed at Tue May  2 15:55:13 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6858 >/dev/null 2>/dev/null
selfserv_9590 with PID 6858 found at Tue May  2 15:55:13 UTC 2017
selfserv_9590 with PID 6858 started at Tue May  2 15:55:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7921: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6858 at Tue May  2 15:55:14 UTC 2017
kill -USR1 6858
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6858 killed at Tue May  2 15:55:14 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6914 >/dev/null 2>/dev/null
selfserv_9590 with PID 6914 found at Tue May  2 15:55:14 UTC 2017
selfserv_9590 with PID 6914 started at Tue May  2 15:55:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7922: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 6914 at Tue May  2 15:55:14 UTC 2017
kill -USR1 6914
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6914 killed at Tue May  2 15:55:14 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6970 >/dev/null 2>/dev/null
selfserv_9590 with PID 6970 found at Tue May  2 15:55:15 UTC 2017
selfserv_9590 with PID 6970 started at Tue May  2 15:55:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7923: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6970 at Tue May  2 15:55:15 UTC 2017
kill -USR1 6970
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6970 killed at Tue May  2 15:55:15 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7038 >/dev/null 2>/dev/null
selfserv_9590 with PID 7038 found at Tue May  2 15:55:15 UTC 2017
selfserv_9590 with PID 7038 started at Tue May  2 15:55:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7924: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7038 at Tue May  2 15:55:16 UTC 2017
kill -USR1 7038
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7038 killed at Tue May  2 15:55:16 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7094 >/dev/null 2>/dev/null
selfserv_9590 with PID 7094 found at Tue May  2 15:55:16 UTC 2017
selfserv_9590 with PID 7094 started at Tue May  2 15:55:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7925: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7094 at Tue May  2 15:55:16 UTC 2017
kill -USR1 7094
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7094 killed at Tue May  2 15:55:16 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7150 >/dev/null 2>/dev/null
selfserv_9590 with PID 7150 found at Tue May  2 15:55:16 UTC 2017
selfserv_9590 with PID 7150 started at Tue May  2 15:55:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7926: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7150 at Tue May  2 15:55:17 UTC 2017
kill -USR1 7150
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7150 killed at Tue May  2 15:55:17 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7218 >/dev/null 2>/dev/null
selfserv_9590 with PID 7218 found at Tue May  2 15:55:17 UTC 2017
selfserv_9590 with PID 7218 started at Tue May  2 15:55:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7927: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7218 at Tue May  2 15:55:18 UTC 2017
kill -USR1 7218
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7218 killed at Tue May  2 15:55:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7274 >/dev/null 2>/dev/null
selfserv_9590 with PID 7274 found at Tue May  2 15:55:18 UTC 2017
selfserv_9590 with PID 7274 started at Tue May  2 15:55:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7928: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7274 at Tue May  2 15:55:18 UTC 2017
kill -USR1 7274
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7274 killed at Tue May  2 15:55:18 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7330 >/dev/null 2>/dev/null
selfserv_9590 with PID 7330 found at Tue May  2 15:55:18 UTC 2017
selfserv_9590 with PID 7330 started at Tue May  2 15:55:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7929: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7330 at Tue May  2 15:55:19 UTC 2017
kill -USR1 7330
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7330 killed at Tue May  2 15:55:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7398 >/dev/null 2>/dev/null
selfserv_9590 with PID 7398 found at Tue May  2 15:55:19 UTC 2017
selfserv_9590 with PID 7398 started at Tue May  2 15:55:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7930: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7398 at Tue May  2 15:55:19 UTC 2017
kill -USR1 7398
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7398 killed at Tue May  2 15:55:19 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7455 >/dev/null 2>/dev/null
selfserv_9590 with PID 7455 found at Tue May  2 15:55:19 UTC 2017
selfserv_9590 with PID 7455 started at Tue May  2 15:55:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7931: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7455 at Tue May  2 15:55:20 UTC 2017
kill -USR1 7455
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7455 killed at Tue May  2 15:55:20 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7511 >/dev/null 2>/dev/null
selfserv_9590 with PID 7511 found at Tue May  2 15:55:20 UTC 2017
selfserv_9590 with PID 7511 started at Tue May  2 15:55:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7932: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7511 at Tue May  2 15:55:21 UTC 2017
kill -USR1 7511
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7511 killed at Tue May  2 15:55:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7579 >/dev/null 2>/dev/null
selfserv_9590 with PID 7579 found at Tue May  2 15:55:21 UTC 2017
selfserv_9590 with PID 7579 started at Tue May  2 15:55:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7933: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7579 at Tue May  2 15:55:21 UTC 2017
kill -USR1 7579
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7579 killed at Tue May  2 15:55:21 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7635 >/dev/null 2>/dev/null
selfserv_9590 with PID 7635 found at Tue May  2 15:55:21 UTC 2017
selfserv_9590 with PID 7635 started at Tue May  2 15:55:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7934: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7635 at Tue May  2 15:55:22 UTC 2017
kill -USR1 7635
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7635 killed at Tue May  2 15:55:22 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7691 >/dev/null 2>/dev/null
selfserv_9590 with PID 7691 found at Tue May  2 15:55:22 UTC 2017
selfserv_9590 with PID 7691 started at Tue May  2 15:55:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7935: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7691 at Tue May  2 15:55:23 UTC 2017
kill -USR1 7691
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7691 killed at Tue May  2 15:55:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7759 >/dev/null 2>/dev/null
selfserv_9590 with PID 7759 found at Tue May  2 15:55:23 UTC 2017
selfserv_9590 with PID 7759 started at Tue May  2 15:55:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7936: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7759 at Tue May  2 15:55:23 UTC 2017
kill -USR1 7759
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7759 killed at Tue May  2 15:55:23 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7815 >/dev/null 2>/dev/null
selfserv_9590 with PID 7815 found at Tue May  2 15:55:23 UTC 2017
selfserv_9590 with PID 7815 started at Tue May  2 15:55:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7937: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7815 at Tue May  2 15:55:24 UTC 2017
kill -USR1 7815
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7815 killed at Tue May  2 15:55:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7871 >/dev/null 2>/dev/null
selfserv_9590 with PID 7871 found at Tue May  2 15:55:24 UTC 2017
selfserv_9590 with PID 7871 started at Tue May  2 15:55:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7938: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7871 at Tue May  2 15:55:24 UTC 2017
kill -USR1 7871
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7871 killed at Tue May  2 15:55:24 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7939 >/dev/null 2>/dev/null
selfserv_9590 with PID 7939 found at Tue May  2 15:55:25 UTC 2017
selfserv_9590 with PID 7939 started at Tue May  2 15:55:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7939: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7939 at Tue May  2 15:55:25 UTC 2017
kill -USR1 7939
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7939 killed at Tue May  2 15:55:25 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7995 >/dev/null 2>/dev/null
selfserv_9590 with PID 7995 found at Tue May  2 15:55:25 UTC 2017
selfserv_9590 with PID 7995 started at Tue May  2 15:55:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7940: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 7995 at Tue May  2 15:55:26 UTC 2017
kill -USR1 7995
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7995 killed at Tue May  2 15:55:26 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8051 >/dev/null 2>/dev/null
selfserv_9590 with PID 8051 found at Tue May  2 15:55:26 UTC 2017
selfserv_9590 with PID 8051 started at Tue May  2 15:55:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7941: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8051 at Tue May  2 15:55:26 UTC 2017
kill -USR1 8051
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8051 killed at Tue May  2 15:55:26 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8119 >/dev/null 2>/dev/null
selfserv_9590 with PID 8119 found at Tue May  2 15:55:26 UTC 2017
selfserv_9590 with PID 8119 started at Tue May  2 15:55:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7942: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8119 at Tue May  2 15:55:27 UTC 2017
kill -USR1 8119
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8119 killed at Tue May  2 15:55:27 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8176 >/dev/null 2>/dev/null
selfserv_9590 with PID 8176 found at Tue May  2 15:55:27 UTC 2017
selfserv_9590 with PID 8176 started at Tue May  2 15:55:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7943: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8176 at Tue May  2 15:55:28 UTC 2017
kill -USR1 8176
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8176 killed at Tue May  2 15:55:28 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8232 >/dev/null 2>/dev/null
selfserv_9590 with PID 8232 found at Tue May  2 15:55:28 UTC 2017
selfserv_9590 with PID 8232 started at Tue May  2 15:55:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7944: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8232 at Tue May  2 15:55:28 UTC 2017
kill -USR1 8232
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8232 killed at Tue May  2 15:55:28 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8300 >/dev/null 2>/dev/null
selfserv_9590 with PID 8300 found at Tue May  2 15:55:28 UTC 2017
selfserv_9590 with PID 8300 started at Tue May  2 15:55:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7945: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8300 at Tue May  2 15:55:29 UTC 2017
kill -USR1 8300
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8300 killed at Tue May  2 15:55:29 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8356 >/dev/null 2>/dev/null
selfserv_9590 with PID 8356 found at Tue May  2 15:55:29 UTC 2017
selfserv_9590 with PID 8356 started at Tue May  2 15:55:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7946: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8356 at Tue May  2 15:55:30 UTC 2017
kill -USR1 8356
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8356 killed at Tue May  2 15:55:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8412 >/dev/null 2>/dev/null
selfserv_9590 with PID 8412 found at Tue May  2 15:55:30 UTC 2017
selfserv_9590 with PID 8412 started at Tue May  2 15:55:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7947: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8412 at Tue May  2 15:55:30 UTC 2017
kill -USR1 8412
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8412 killed at Tue May  2 15:55:30 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8480 >/dev/null 2>/dev/null
selfserv_9590 with PID 8480 found at Tue May  2 15:55:30 UTC 2017
selfserv_9590 with PID 8480 started at Tue May  2 15:55:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7948: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8480 at Tue May  2 15:55:31 UTC 2017
kill -USR1 8480
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8480 killed at Tue May  2 15:55:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8537 >/dev/null 2>/dev/null
selfserv_9590 with PID 8537 found at Tue May  2 15:55:31 UTC 2017
selfserv_9590 with PID 8537 started at Tue May  2 15:55:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7949: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8537 at Tue May  2 15:55:31 UTC 2017
kill -USR1 8537
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8537 killed at Tue May  2 15:55:31 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8593 >/dev/null 2>/dev/null
selfserv_9590 with PID 8593 found at Tue May  2 15:55:31 UTC 2017
selfserv_9590 with PID 8593 started at Tue May  2 15:55:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7950: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 8593 at Tue May  2 15:55:32 UTC 2017
kill -USR1 8593
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8593 killed at Tue May  2 15:55:32 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:32 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8661 >/dev/null 2>/dev/null
selfserv_9590 with PID 8661 found at Tue May  2 15:55:32 UTC 2017
selfserv_9590 with PID 8661 started at Tue May  2 15:55:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7951: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8661 at Tue May  2 15:55:33 UTC 2017
kill -USR1 8661
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8661 killed at Tue May  2 15:55:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8717 >/dev/null 2>/dev/null
selfserv_9590 with PID 8717 found at Tue May  2 15:55:33 UTC 2017
selfserv_9590 with PID 8717 started at Tue May  2 15:55:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7952: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8717 at Tue May  2 15:55:33 UTC 2017
kill -USR1 8717
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8717 killed at Tue May  2 15:55:33 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8774 >/dev/null 2>/dev/null
selfserv_9590 with PID 8774 found at Tue May  2 15:55:33 UTC 2017
selfserv_9590 with PID 8774 started at Tue May  2 15:55:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7953: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8774 at Tue May  2 15:55:34 UTC 2017
kill -USR1 8774
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8774 killed at Tue May  2 15:55:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8843 >/dev/null 2>/dev/null
selfserv_9590 with PID 8843 found at Tue May  2 15:55:34 UTC 2017
selfserv_9590 with PID 8843 started at Tue May  2 15:55:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7954: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8843 at Tue May  2 15:55:34 UTC 2017
kill -USR1 8843
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8843 killed at Tue May  2 15:55:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8900 >/dev/null 2>/dev/null
selfserv_9590 with PID 8900 found at Tue May  2 15:55:34 UTC 2017
selfserv_9590 with PID 8900 started at Tue May  2 15:55:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7955: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8900 at Tue May  2 15:55:35 UTC 2017
kill -USR1 8900
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8900 killed at Tue May  2 15:55:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 8956 >/dev/null 2>/dev/null
selfserv_9590 with PID 8956 found at Tue May  2 15:55:35 UTC 2017
selfserv_9590 with PID 8956 started at Tue May  2 15:55:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7956: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 8956 at Tue May  2 15:55:35 UTC 2017
kill -USR1 8956
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 8956 killed at Tue May  2 15:55:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9024 >/dev/null 2>/dev/null
selfserv_9590 with PID 9024 found at Tue May  2 15:55:36 UTC 2017
selfserv_9590 with PID 9024 started at Tue May  2 15:55:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7957: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9024 at Tue May  2 15:55:36 UTC 2017
kill -USR1 9024
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9024 killed at Tue May  2 15:55:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9081 >/dev/null 2>/dev/null
selfserv_9590 with PID 9081 found at Tue May  2 15:55:36 UTC 2017
selfserv_9590 with PID 9081 started at Tue May  2 15:55:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7958: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9081 at Tue May  2 15:55:37 UTC 2017
kill -USR1 9081
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9081 killed at Tue May  2 15:55:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9137 >/dev/null 2>/dev/null
selfserv_9590 with PID 9137 found at Tue May  2 15:55:37 UTC 2017
selfserv_9590 with PID 9137 started at Tue May  2 15:55:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7959: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9137 at Tue May  2 15:55:37 UTC 2017
kill -USR1 9137
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9137 killed at Tue May  2 15:55:37 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9205 >/dev/null 2>/dev/null
selfserv_9590 with PID 9205 found at Tue May  2 15:55:37 UTC 2017
selfserv_9590 with PID 9205 started at Tue May  2 15:55:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7960: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9205 at Tue May  2 15:55:38 UTC 2017
kill -USR1 9205
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9205 killed at Tue May  2 15:55:38 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9261 >/dev/null 2>/dev/null
selfserv_9590 with PID 9261 found at Tue May  2 15:55:38 UTC 2017
selfserv_9590 with PID 9261 started at Tue May  2 15:55:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7961: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9261 at Tue May  2 15:55:38 UTC 2017
kill -USR1 9261
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9261 killed at Tue May  2 15:55:38 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 15:55:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9317 >/dev/null 2>/dev/null
selfserv_9590 with PID 9317 found at Tue May  2 15:55:38 UTC 2017
selfserv_9590 with PID 9317 started at Tue May  2 15:55:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7962: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9317 at Tue May  2 15:55:39 UTC 2017
kill -USR1 9317
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9317 killed at Tue May  2 15:55:39 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9385 >/dev/null 2>/dev/null
selfserv_9590 with PID 9385 found at Tue May  2 15:55:39 UTC 2017
selfserv_9590 with PID 9385 started at Tue May  2 15:55:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7963: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9385 at Tue May  2 15:55:39 UTC 2017
kill -USR1 9385
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9385 killed at Tue May  2 15:55:39 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9441 >/dev/null 2>/dev/null
selfserv_9590 with PID 9441 found at Tue May  2 15:55:40 UTC 2017
selfserv_9590 with PID 9441 started at Tue May  2 15:55:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7964: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9441 at Tue May  2 15:55:40 UTC 2017
kill -USR1 9441
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9441 killed at Tue May  2 15:55:40 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9497 >/dev/null 2>/dev/null
selfserv_9590 with PID 9497 found at Tue May  2 15:55:40 UTC 2017
selfserv_9590 with PID 9497 started at Tue May  2 15:55:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7965: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9497 at Tue May  2 15:55:41 UTC 2017
kill -USR1 9497
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9497 killed at Tue May  2 15:55:41 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9565 >/dev/null 2>/dev/null
selfserv_9590 with PID 9565 found at Tue May  2 15:55:41 UTC 2017
selfserv_9590 with PID 9565 started at Tue May  2 15:55:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7966: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9565 at Tue May  2 15:55:41 UTC 2017
kill -USR1 9565
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9565 killed at Tue May  2 15:55:41 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9621 >/dev/null 2>/dev/null
selfserv_9590 with PID 9621 found at Tue May  2 15:55:41 UTC 2017
selfserv_9590 with PID 9621 started at Tue May  2 15:55:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7967: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9621 at Tue May  2 15:55:42 UTC 2017
kill -USR1 9621
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9621 killed at Tue May  2 15:55:42 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9677 >/dev/null 2>/dev/null
selfserv_9590 with PID 9677 found at Tue May  2 15:55:42 UTC 2017
selfserv_9590 with PID 9677 started at Tue May  2 15:55:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7968: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9677 at Tue May  2 15:55:42 UTC 2017
kill -USR1 9677
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9677 killed at Tue May  2 15:55:42 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9754 >/dev/null 2>/dev/null
selfserv_9590 with PID 9754 found at Tue May  2 15:55:42 UTC 2017
selfserv_9590 with PID 9754 started at Tue May  2 15:55:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7969: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9754 at Tue May  2 15:55:43 UTC 2017
kill -USR1 9754
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9754 killed at Tue May  2 15:55:43 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9810 >/dev/null 2>/dev/null
selfserv_9590 with PID 9810 found at Tue May  2 15:55:43 UTC 2017
selfserv_9590 with PID 9810 started at Tue May  2 15:55:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7970: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9810 at Tue May  2 15:55:43 UTC 2017
kill -USR1 9810
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9810 killed at Tue May  2 15:55:43 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9866 >/dev/null 2>/dev/null
selfserv_9590 with PID 9866 found at Tue May  2 15:55:44 UTC 2017
selfserv_9590 with PID 9866 started at Tue May  2 15:55:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7971: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9866 at Tue May  2 15:55:44 UTC 2017
kill -USR1 9866
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9866 killed at Tue May  2 15:55:44 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9934 >/dev/null 2>/dev/null
selfserv_9590 with PID 9934 found at Tue May  2 15:55:44 UTC 2017
selfserv_9590 with PID 9934 started at Tue May  2 15:55:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7972: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 9934 at Tue May  2 15:55:45 UTC 2017
kill -USR1 9934
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9934 killed at Tue May  2 15:55:45 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9990 >/dev/null 2>/dev/null
selfserv_9590 with PID 9990 found at Tue May  2 15:55:45 UTC 2017
selfserv_9590 with PID 9990 started at Tue May  2 15:55:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7973: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 9990 at Tue May  2 15:55:45 UTC 2017
kill -USR1 9990
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9990 killed at Tue May  2 15:55:45 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10046 >/dev/null 2>/dev/null
selfserv_9590 with PID 10046 found at Tue May  2 15:55:45 UTC 2017
selfserv_9590 with PID 10046 started at Tue May  2 15:55:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7974: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10046 at Tue May  2 15:55:46 UTC 2017
kill -USR1 10046
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10046 killed at Tue May  2 15:55:46 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10114 >/dev/null 2>/dev/null
selfserv_9590 with PID 10114 found at Tue May  2 15:55:46 UTC 2017
selfserv_9590 with PID 10114 started at Tue May  2 15:55:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7975: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10114 at Tue May  2 15:55:46 UTC 2017
kill -USR1 10114
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10114 killed at Tue May  2 15:55:46 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10170 >/dev/null 2>/dev/null
selfserv_9590 with PID 10170 found at Tue May  2 15:55:46 UTC 2017
selfserv_9590 with PID 10170 started at Tue May  2 15:55:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7976: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10170 at Tue May  2 15:55:47 UTC 2017
kill -USR1 10170
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10170 killed at Tue May  2 15:55:47 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10226 >/dev/null 2>/dev/null
selfserv_9590 with PID 10226 found at Tue May  2 15:55:47 UTC 2017
selfserv_9590 with PID 10226 started at Tue May  2 15:55:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7977: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10226 at Tue May  2 15:55:47 UTC 2017
kill -USR1 10226
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10226 killed at Tue May  2 15:55:47 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10294 >/dev/null 2>/dev/null
selfserv_9590 with PID 10294 found at Tue May  2 15:55:48 UTC 2017
selfserv_9590 with PID 10294 started at Tue May  2 15:55:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7978: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10294 at Tue May  2 15:55:48 UTC 2017
kill -USR1 10294
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10294 killed at Tue May  2 15:55:48 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10350 >/dev/null 2>/dev/null
selfserv_9590 with PID 10350 found at Tue May  2 15:55:48 UTC 2017
selfserv_9590 with PID 10350 started at Tue May  2 15:55:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7979: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 10350 at Tue May  2 15:55:49 UTC 2017
kill -USR1 10350
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10350 killed at Tue May  2 15:55:49 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10406 >/dev/null 2>/dev/null
selfserv_9590 with PID 10406 found at Tue May  2 15:55:49 UTC 2017
selfserv_9590 with PID 10406 started at Tue May  2 15:55:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7980: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10406 at Tue May  2 15:55:49 UTC 2017
kill -USR1 10406
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10406 killed at Tue May  2 15:55:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10474 >/dev/null 2>/dev/null
selfserv_9590 with PID 10474 found at Tue May  2 15:55:49 UTC 2017
selfserv_9590 with PID 10474 started at Tue May  2 15:55:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7981: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 10474 at Tue May  2 15:55:50 UTC 2017
kill -USR1 10474
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10474 killed at Tue May  2 15:55:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10530 >/dev/null 2>/dev/null
selfserv_9590 with PID 10530 found at Tue May  2 15:55:50 UTC 2017
selfserv_9590 with PID 10530 started at Tue May  2 15:55:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7982: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 10530 at Tue May  2 15:55:50 UTC 2017
kill -USR1 10530
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10530 killed at Tue May  2 15:55:50 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10586 >/dev/null 2>/dev/null
selfserv_9590 with PID 10586 found at Tue May  2 15:55:50 UTC 2017
selfserv_9590 with PID 10586 started at Tue May  2 15:55:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7983: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 10586 at Tue May  2 15:55:51 UTC 2017
kill -USR1 10586
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10586 killed at Tue May  2 15:55:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10654 >/dev/null 2>/dev/null
selfserv_9590 with PID 10654 found at Tue May  2 15:55:51 UTC 2017
selfserv_9590 with PID 10654 started at Tue May  2 15:55:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7984: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10654 at Tue May  2 15:55:51 UTC 2017
kill -USR1 10654
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10654 killed at Tue May  2 15:55:51 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10710 >/dev/null 2>/dev/null
selfserv_9590 with PID 10710 found at Tue May  2 15:55:52 UTC 2017
selfserv_9590 with PID 10710 started at Tue May  2 15:55:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7985: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 10710 at Tue May  2 15:55:52 UTC 2017
kill -USR1 10710
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10710 killed at Tue May  2 15:55:52 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10766 >/dev/null 2>/dev/null
selfserv_9590 with PID 10766 found at Tue May  2 15:55:52 UTC 2017
selfserv_9590 with PID 10766 started at Tue May  2 15:55:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7986: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10766 at Tue May  2 15:55:53 UTC 2017
kill -USR1 10766
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10766 killed at Tue May  2 15:55:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10834 >/dev/null 2>/dev/null
selfserv_9590 with PID 10834 found at Tue May  2 15:55:53 UTC 2017
selfserv_9590 with PID 10834 started at Tue May  2 15:55:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7987: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10834 at Tue May  2 15:55:53 UTC 2017
kill -USR1 10834
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10834 killed at Tue May  2 15:55:53 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10890 >/dev/null 2>/dev/null
selfserv_9590 with PID 10890 found at Tue May  2 15:55:53 UTC 2017
selfserv_9590 with PID 10890 started at Tue May  2 15:55:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7988: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10890 at Tue May  2 15:55:54 UTC 2017
kill -USR1 10890
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10890 killed at Tue May  2 15:55:54 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10946 >/dev/null 2>/dev/null
selfserv_9590 with PID 10946 found at Tue May  2 15:55:54 UTC 2017
selfserv_9590 with PID 10946 started at Tue May  2 15:55:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7989: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 10946 at Tue May  2 15:55:54 UTC 2017
kill -USR1 10946
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10946 killed at Tue May  2 15:55:54 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11014 >/dev/null 2>/dev/null
selfserv_9590 with PID 11014 found at Tue May  2 15:55:54 UTC 2017
selfserv_9590 with PID 11014 started at Tue May  2 15:55:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7990: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 11014 at Tue May  2 15:55:55 UTC 2017
kill -USR1 11014
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11014 killed at Tue May  2 15:55:55 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11070 >/dev/null 2>/dev/null
selfserv_9590 with PID 11070 found at Tue May  2 15:55:55 UTC 2017
selfserv_9590 with PID 11070 started at Tue May  2 15:55:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7991: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 11070 at Tue May  2 15:55:55 UTC 2017
kill -USR1 11070
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11070 killed at Tue May  2 15:55:55 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11126 >/dev/null 2>/dev/null
selfserv_9590 with PID 11126 found at Tue May  2 15:55:55 UTC 2017
selfserv_9590 with PID 11126 started at Tue May  2 15:55:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7992: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 11126 at Tue May  2 15:55:56 UTC 2017
kill -USR1 11126
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11126 killed at Tue May  2 15:55:56 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11195 >/dev/null 2>/dev/null
selfserv_9590 with PID 11195 found at Tue May  2 15:55:56 UTC 2017
selfserv_9590 with PID 11195 started at Tue May  2 15:55:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7993: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 11195 at Tue May  2 15:55:57 UTC 2017
kill -USR1 11195
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11195 killed at Tue May  2 15:55:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11252 >/dev/null 2>/dev/null
selfserv_9590 with PID 11252 found at Tue May  2 15:55:57 UTC 2017
selfserv_9590 with PID 11252 started at Tue May  2 15:55:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7994: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 11252 at Tue May  2 15:55:57 UTC 2017
kill -USR1 11252
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11252 killed at Tue May  2 15:55:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:55:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11308 >/dev/null 2>/dev/null
selfserv_9590 with PID 11308 found at Tue May  2 15:55:57 UTC 2017
selfserv_9590 with PID 11308 started at Tue May  2 15:55:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7995: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 11308 at Tue May  2 15:55:58 UTC 2017
kill -USR1 11308
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11308 killed at Tue May  2 15:55:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11376 >/dev/null 2>/dev/null
selfserv_9590 with PID 11376 found at Tue May  2 15:55:58 UTC 2017
selfserv_9590 with PID 11376 started at Tue May  2 15:55:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7996: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 11376 at Tue May  2 15:55:58 UTC 2017
kill -USR1 11376
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11376 killed at Tue May  2 15:55:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11432 >/dev/null 2>/dev/null
selfserv_9590 with PID 11432 found at Tue May  2 15:55:58 UTC 2017
selfserv_9590 with PID 11432 started at Tue May  2 15:55:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #7997: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 11432 at Tue May  2 15:55:59 UTC 2017
kill -USR1 11432
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11432 killed at Tue May  2 15:55:59 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:55:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:55:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11488 >/dev/null 2>/dev/null
selfserv_9590 with PID 11488 found at Tue May  2 15:55:59 UTC 2017
selfserv_9590 with PID 11488 started at Tue May  2 15:55:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #7998: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 11488 at Tue May  2 15:56:00 UTC 2017
kill -USR1 11488
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11488 killed at Tue May  2 15:56:00 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11556 >/dev/null 2>/dev/null
selfserv_9590 with PID 11556 found at Tue May  2 15:56:00 UTC 2017
selfserv_9590 with PID 11556 started at Tue May  2 15:56:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #7999: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 11556 at Tue May  2 15:56:00 UTC 2017
kill -USR1 11556
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11556 killed at Tue May  2 15:56:00 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11612 >/dev/null 2>/dev/null
selfserv_9590 with PID 11612 found at Tue May  2 15:56:00 UTC 2017
selfserv_9590 with PID 11612 started at Tue May  2 15:56:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8000: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 11612 at Tue May  2 15:56:01 UTC 2017
kill -USR1 11612
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11612 killed at Tue May  2 15:56:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11668 >/dev/null 2>/dev/null
selfserv_9590 with PID 11668 found at Tue May  2 15:56:01 UTC 2017
selfserv_9590 with PID 11668 started at Tue May  2 15:56:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8001: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 11668 at Tue May  2 15:56:02 UTC 2017
kill -USR1 11668
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11668 killed at Tue May  2 15:56:02 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11736 >/dev/null 2>/dev/null
selfserv_9590 with PID 11736 found at Tue May  2 15:56:02 UTC 2017
selfserv_9590 with PID 11736 started at Tue May  2 15:56:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8002: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 11736 at Tue May  2 15:56:02 UTC 2017
kill -USR1 11736
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11736 killed at Tue May  2 15:56:02 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11792 >/dev/null 2>/dev/null
selfserv_9590 with PID 11792 found at Tue May  2 15:56:02 UTC 2017
selfserv_9590 with PID 11792 started at Tue May  2 15:56:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8003: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 11792 at Tue May  2 15:56:03 UTC 2017
kill -USR1 11792
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11792 killed at Tue May  2 15:56:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11848 >/dev/null 2>/dev/null
selfserv_9590 with PID 11848 found at Tue May  2 15:56:03 UTC 2017
selfserv_9590 with PID 11848 started at Tue May  2 15:56:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8004: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 11848 at Tue May  2 15:56:03 UTC 2017
kill -USR1 11848
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11848 killed at Tue May  2 15:56:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11916 >/dev/null 2>/dev/null
selfserv_9590 with PID 11916 found at Tue May  2 15:56:04 UTC 2017
selfserv_9590 with PID 11916 started at Tue May  2 15:56:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8005: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 11916 at Tue May  2 15:56:04 UTC 2017
kill -USR1 11916
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11916 killed at Tue May  2 15:56:04 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11972 >/dev/null 2>/dev/null
selfserv_9590 with PID 11972 found at Tue May  2 15:56:04 UTC 2017
selfserv_9590 with PID 11972 started at Tue May  2 15:56:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8006: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 11972 at Tue May  2 15:56:05 UTC 2017
kill -USR1 11972
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11972 killed at Tue May  2 15:56:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12028 >/dev/null 2>/dev/null
selfserv_9590 with PID 12028 found at Tue May  2 15:56:05 UTC 2017
selfserv_9590 with PID 12028 started at Tue May  2 15:56:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8007: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 12028 at Tue May  2 15:56:05 UTC 2017
kill -USR1 12028
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12028 killed at Tue May  2 15:56:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12096 >/dev/null 2>/dev/null
selfserv_9590 with PID 12096 found at Tue May  2 15:56:05 UTC 2017
selfserv_9590 with PID 12096 started at Tue May  2 15:56:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8008: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12096 at Tue May  2 15:56:06 UTC 2017
kill -USR1 12096
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12096 killed at Tue May  2 15:56:06 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12152 >/dev/null 2>/dev/null
selfserv_9590 with PID 12152 found at Tue May  2 15:56:06 UTC 2017
selfserv_9590 with PID 12152 started at Tue May  2 15:56:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8009: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 12152 at Tue May  2 15:56:07 UTC 2017
kill -USR1 12152
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12152 killed at Tue May  2 15:56:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12208 >/dev/null 2>/dev/null
selfserv_9590 with PID 12208 found at Tue May  2 15:56:07 UTC 2017
selfserv_9590 with PID 12208 started at Tue May  2 15:56:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8010: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12208 at Tue May  2 15:56:07 UTC 2017
kill -USR1 12208
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12208 killed at Tue May  2 15:56:07 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12276 >/dev/null 2>/dev/null
selfserv_9590 with PID 12276 found at Tue May  2 15:56:08 UTC 2017
selfserv_9590 with PID 12276 started at Tue May  2 15:56:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8011: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12276 at Tue May  2 15:56:08 UTC 2017
kill -USR1 12276
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12276 killed at Tue May  2 15:56:08 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12333 >/dev/null 2>/dev/null
selfserv_9590 with PID 12333 found at Tue May  2 15:56:08 UTC 2017
selfserv_9590 with PID 12333 started at Tue May  2 15:56:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8012: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12333 at Tue May  2 15:56:09 UTC 2017
kill -USR1 12333
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12333 killed at Tue May  2 15:56:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12389 >/dev/null 2>/dev/null
selfserv_9590 with PID 12389 found at Tue May  2 15:56:09 UTC 2017
selfserv_9590 with PID 12389 started at Tue May  2 15:56:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8013: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12389 at Tue May  2 15:56:09 UTC 2017
kill -USR1 12389
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12389 killed at Tue May  2 15:56:09 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12457 >/dev/null 2>/dev/null
selfserv_9590 with PID 12457 found at Tue May  2 15:56:09 UTC 2017
selfserv_9590 with PID 12457 started at Tue May  2 15:56:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8014: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12457 at Tue May  2 15:56:10 UTC 2017
kill -USR1 12457
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12457 killed at Tue May  2 15:56:10 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12513 >/dev/null 2>/dev/null
selfserv_9590 with PID 12513 found at Tue May  2 15:56:10 UTC 2017
selfserv_9590 with PID 12513 started at Tue May  2 15:56:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8015: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 12513 at Tue May  2 15:56:11 UTC 2017
kill -USR1 12513
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12513 killed at Tue May  2 15:56:11 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12569 >/dev/null 2>/dev/null
selfserv_9590 with PID 12569 found at Tue May  2 15:56:11 UTC 2017
selfserv_9590 with PID 12569 started at Tue May  2 15:56:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8016: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12569 at Tue May  2 15:56:11 UTC 2017
kill -USR1 12569
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12569 killed at Tue May  2 15:56:11 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12637 >/dev/null 2>/dev/null
selfserv_9590 with PID 12637 found at Tue May  2 15:56:11 UTC 2017
selfserv_9590 with PID 12637 started at Tue May  2 15:56:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8017: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 12637 at Tue May  2 15:56:12 UTC 2017
kill -USR1 12637
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12637 killed at Tue May  2 15:56:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12693 >/dev/null 2>/dev/null
selfserv_9590 with PID 12693 found at Tue May  2 15:56:12 UTC 2017
selfserv_9590 with PID 12693 started at Tue May  2 15:56:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8018: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 12693 at Tue May  2 15:56:12 UTC 2017
kill -USR1 12693
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12693 killed at Tue May  2 15:56:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12749 >/dev/null 2>/dev/null
selfserv_9590 with PID 12749 found at Tue May  2 15:56:13 UTC 2017
selfserv_9590 with PID 12749 started at Tue May  2 15:56:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8019: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 12749 at Tue May  2 15:56:13 UTC 2017
kill -USR1 12749
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12749 killed at Tue May  2 15:56:13 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12817 >/dev/null 2>/dev/null
selfserv_9590 with PID 12817 found at Tue May  2 15:56:13 UTC 2017
selfserv_9590 with PID 12817 started at Tue May  2 15:56:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8020: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12817 at Tue May  2 15:56:14 UTC 2017
kill -USR1 12817
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12817 killed at Tue May  2 15:56:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12873 >/dev/null 2>/dev/null
selfserv_9590 with PID 12873 found at Tue May  2 15:56:14 UTC 2017
selfserv_9590 with PID 12873 started at Tue May  2 15:56:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8021: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 12873 at Tue May  2 15:56:14 UTC 2017
kill -USR1 12873
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12873 killed at Tue May  2 15:56:14 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12929 >/dev/null 2>/dev/null
selfserv_9590 with PID 12929 found at Tue May  2 15:56:14 UTC 2017
selfserv_9590 with PID 12929 started at Tue May  2 15:56:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8022: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12929 at Tue May  2 15:56:15 UTC 2017
kill -USR1 12929
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12929 killed at Tue May  2 15:56:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 12997 >/dev/null 2>/dev/null
selfserv_9590 with PID 12997 found at Tue May  2 15:56:15 UTC 2017
selfserv_9590 with PID 12997 started at Tue May  2 15:56:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8023: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 12997 at Tue May  2 15:56:15 UTC 2017
kill -USR1 12997
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 12997 killed at Tue May  2 15:56:15 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13053 >/dev/null 2>/dev/null
selfserv_9590 with PID 13053 found at Tue May  2 15:56:16 UTC 2017
selfserv_9590 with PID 13053 started at Tue May  2 15:56:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8024: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 13053 at Tue May  2 15:56:16 UTC 2017
kill -USR1 13053
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13053 killed at Tue May  2 15:56:16 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 15:56:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13109 >/dev/null 2>/dev/null
selfserv_9590 with PID 13109 found at Tue May  2 15:56:16 UTC 2017
selfserv_9590 with PID 13109 started at Tue May  2 15:56:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #8025: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 13109 at Tue May  2 15:56:17 UTC 2017
kill -USR1 13109
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13109 killed at Tue May  2 15:56:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13177 >/dev/null 2>/dev/null
selfserv_9590 with PID 13177 found at Tue May  2 15:56:17 UTC 2017
selfserv_9590 with PID 13177 started at Tue May  2 15:56:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8026: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 13177 at Tue May  2 15:56:17 UTC 2017
kill -USR1 13177
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13177 killed at Tue May  2 15:56:17 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13233 >/dev/null 2>/dev/null
selfserv_9590 with PID 13233 found at Tue May  2 15:56:17 UTC 2017
selfserv_9590 with PID 13233 started at Tue May  2 15:56:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #8027: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 13233 at Tue May  2 15:56:18 UTC 2017
kill -USR1 13233
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13233 killed at Tue May  2 15:56:18 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13289 >/dev/null 2>/dev/null
selfserv_9590 with PID 13289 found at Tue May  2 15:56:18 UTC 2017
selfserv_9590 with PID 13289 started at Tue May  2 15:56:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #8028: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 13289 at Tue May  2 15:56:18 UTC 2017
kill -USR1 13289
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13289 killed at Tue May  2 15:56:18 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/authin.tl.tmp
0
selfserv_9590 starting at Tue May  2 15:56:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:19 UTC 2017
selfserv_9590 with PID 13352 started at Tue May  2 15:56:19 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:19 UTC 2017
ssl.sh: #8029: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:19 UTC 2017
ssl.sh: #8030: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:20 UTC 2017
ssl.sh: #8031: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:20 UTC 2017
ssl.sh: #8032: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:20 UTC 2017
ssl.sh: #8033: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:20 UTC 2017
ssl.sh: #8034: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:21 UTC 2017
ssl.sh: #8035: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:21 UTC 2017
ssl.sh: #8036: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:21 UTC 2017
ssl.sh: #8037: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:21 UTC 2017
ssl.sh: #8038: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:22 UTC 2017
ssl.sh: #8039: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:22 UTC 2017
ssl.sh: #8040: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:22 UTC 2017
ssl.sh: #8041: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8042: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:23 UTC 2017
ssl.sh: #8043: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:23 UTC 2017
ssl.sh: #8044: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:23 UTC 2017
ssl.sh: #8045: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:24 UTC 2017
ssl.sh: #8046: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:24 UTC 2017
ssl.sh: #8047: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:24 UTC 2017
ssl.sh: #8048: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:24 UTC 2017
ssl.sh: #8049: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:25 UTC 2017
ssl.sh: #8050: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:25 UTC 2017
ssl.sh: #8051: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:25 UTC 2017
ssl.sh: #8052: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:25 UTC 2017
ssl.sh: #8053: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:26 UTC 2017
ssl.sh: #8054: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:26 UTC 2017
ssl.sh: #8055: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8056: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:26 UTC 2017
ssl.sh: #8057: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:27 UTC 2017
ssl.sh: #8058: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:27 UTC 2017
ssl.sh: #8059: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:27 UTC 2017
ssl.sh: #8060: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:27 UTC 2017
ssl.sh: #8061: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:28 UTC 2017
ssl.sh: #8062: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:28 UTC 2017
ssl.sh: #8063: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:28 UTC 2017
ssl.sh: #8064: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:28 UTC 2017
ssl.sh: #8065: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:29 UTC 2017
ssl.sh: #8066: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:29 UTC 2017
ssl.sh: #8067: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:29 UTC 2017
ssl.sh: #8068: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 13352 >/dev/null 2>/dev/null
selfserv_9590 with PID 13352 found at Tue May  2 15:56:29 UTC 2017
ssl.sh: #8069: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 13352 at Tue May  2 15:56:29 UTC 2017
kill -USR1 13352
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13352 killed at Tue May  2 15:56:29 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:30 UTC 2017
selfserv_9590 with PID 14775 started at Tue May  2 15:56:30 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:30 UTC 2017
ssl.sh: #8070: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:30 UTC 2017
ssl.sh: #8071: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:30 UTC 2017
ssl.sh: #8072: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:31 UTC 2017
ssl.sh: #8073: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:31 UTC 2017
ssl.sh: #8074: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:31 UTC 2017
ssl.sh: #8075: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:31 UTC 2017
ssl.sh: #8076: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:32 UTC 2017
ssl.sh: #8077: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:32 UTC 2017
ssl.sh: #8078: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:32 UTC 2017
ssl.sh: #8079: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:32 UTC 2017
ssl.sh: #8080: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:33 UTC 2017
ssl.sh: #8081: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:33 UTC 2017
ssl.sh: #8082: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8083: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:33 UTC 2017
ssl.sh: #8084: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:34 UTC 2017
ssl.sh: #8085: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:34 UTC 2017
ssl.sh: #8086: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:34 UTC 2017
ssl.sh: #8087: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:34 UTC 2017
ssl.sh: #8088: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:35 UTC 2017
ssl.sh: #8089: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:35 UTC 2017
ssl.sh: #8090: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:35 UTC 2017
ssl.sh: #8091: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:35 UTC 2017
ssl.sh: #8092: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:35 UTC 2017
ssl.sh: #8093: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:36 UTC 2017
ssl.sh: #8094: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:36 UTC 2017
ssl.sh: #8095: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:36 UTC 2017
ssl.sh: #8096: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:36 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8097: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:37 UTC 2017
ssl.sh: #8098: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:37 UTC 2017
ssl.sh: #8099: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:37 UTC 2017
ssl.sh: #8100: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:37 UTC 2017
ssl.sh: #8101: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:38 UTC 2017
ssl.sh: #8102: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:38 UTC 2017
ssl.sh: #8103: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:38 UTC 2017
ssl.sh: #8104: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:38 UTC 2017
ssl.sh: #8105: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:39 UTC 2017
ssl.sh: #8106: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:39 UTC 2017
ssl.sh: #8107: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:39 UTC 2017
ssl.sh: #8108: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:39 UTC 2017
ssl.sh: #8109: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 14775 >/dev/null 2>/dev/null
selfserv_9590 with PID 14775 found at Tue May  2 15:56:39 UTC 2017
ssl.sh: #8110: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14775 at Tue May  2 15:56:40 UTC 2017
kill -USR1 14775
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14775 killed at Tue May  2 15:56:40 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:40 UTC 2017
selfserv_9590 with PID 16197 started at Tue May  2 15:56:40 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:40 UTC 2017
ssl.sh: #8111: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:40 UTC 2017
ssl.sh: #8112: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:41 UTC 2017
ssl.sh: #8113: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:41 UTC 2017
ssl.sh: #8114: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:41 UTC 2017
ssl.sh: #8115: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:41 UTC 2017
ssl.sh: #8116: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:42 UTC 2017
ssl.sh: #8117: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:42 UTC 2017
ssl.sh: #8118: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:42 UTC 2017
ssl.sh: #8119: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:43 UTC 2017
ssl.sh: #8120: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:43 UTC 2017
ssl.sh: #8121: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:43 UTC 2017
ssl.sh: #8122: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:43 UTC 2017
ssl.sh: #8123: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8124: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:44 UTC 2017
ssl.sh: #8125: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:44 UTC 2017
ssl.sh: #8126: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:45 UTC 2017
ssl.sh: #8127: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:45 UTC 2017
ssl.sh: #8128: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:45 UTC 2017
ssl.sh: #8129: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:45 UTC 2017
ssl.sh: #8130: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:46 UTC 2017
ssl.sh: #8131: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:46 UTC 2017
ssl.sh: #8132: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:46 UTC 2017
ssl.sh: #8133: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:46 UTC 2017
ssl.sh: #8134: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:47 UTC 2017
ssl.sh: #8135: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:47 UTC 2017
ssl.sh: #8136: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:47 UTC 2017
ssl.sh: #8137: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:48 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8138: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:48 UTC 2017
ssl.sh: #8139: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:48 UTC 2017
ssl.sh: #8140: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:48 UTC 2017
ssl.sh: #8141: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:49 UTC 2017
ssl.sh: #8142: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:49 UTC 2017
ssl.sh: #8143: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:49 UTC 2017
ssl.sh: #8144: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:49 UTC 2017
ssl.sh: #8145: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:50 UTC 2017
ssl.sh: #8146: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:50 UTC 2017
ssl.sh: #8147: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:50 UTC 2017
ssl.sh: #8148: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:50 UTC 2017
ssl.sh: #8149: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:51 UTC 2017
ssl.sh: #8150: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 16197 >/dev/null 2>/dev/null
selfserv_9590 with PID 16197 found at Tue May  2 15:56:51 UTC 2017
ssl.sh: #8151: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 16197 at Tue May  2 15:56:51 UTC 2017
kill -USR1 16197
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16197 killed at Tue May  2 15:56:51 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:56:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:56:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:51 UTC 2017
selfserv_9590 with PID 17624 started at Tue May  2 15:56:51 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:52 UTC 2017
ssl.sh: #8152: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:52 UTC 2017
ssl.sh: #8153: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:52 UTC 2017
ssl.sh: #8154: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:52 UTC 2017
ssl.sh: #8155: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:53 UTC 2017
ssl.sh: #8156: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:53 UTC 2017
ssl.sh: #8157: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:53 UTC 2017
ssl.sh: #8158: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:53 UTC 2017
ssl.sh: #8159: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:54 UTC 2017
ssl.sh: #8160: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:54 UTC 2017
ssl.sh: #8161: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:54 UTC 2017
ssl.sh: #8162: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:54 UTC 2017
ssl.sh: #8163: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:55 UTC 2017
ssl.sh: #8164: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:55 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8165: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:55 UTC 2017
ssl.sh: #8166: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:56 UTC 2017
ssl.sh: #8167: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:56 UTC 2017
ssl.sh: #8168: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:56 UTC 2017
ssl.sh: #8169: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:56 UTC 2017
ssl.sh: #8170: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:56 UTC 2017
ssl.sh: #8171: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:57 UTC 2017
ssl.sh: #8172: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:57 UTC 2017
ssl.sh: #8173: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:57 UTC 2017
ssl.sh: #8174: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:57 UTC 2017
ssl.sh: #8175: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:58 UTC 2017
ssl.sh: #8176: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:58 UTC 2017
ssl.sh: #8177: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:58 UTC 2017
ssl.sh: #8178: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:59 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8179: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:59 UTC 2017
ssl.sh: #8180: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:59 UTC 2017
ssl.sh: #8181: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:56:59 UTC 2017
ssl.sh: #8182: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:57:00 UTC 2017
ssl.sh: #8183: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:57:00 UTC 2017
ssl.sh: #8184: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:57:00 UTC 2017
ssl.sh: #8185: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:57:00 UTC 2017
ssl.sh: #8186: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:57:01 UTC 2017
ssl.sh: #8187: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:57:01 UTC 2017
ssl.sh: #8188: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:57:01 UTC 2017
ssl.sh: #8189: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:57:01 UTC 2017
ssl.sh: #8190: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:57:02 UTC 2017
ssl.sh: #8191: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 17624 >/dev/null 2>/dev/null
selfserv_9590 with PID 17624 found at Tue May  2 15:57:02 UTC 2017
ssl.sh: #8192: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 17624 at Tue May  2 15:57:02 UTC 2017
kill -USR1 17624
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17624 killed at Tue May  2 15:57:02 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:57:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:57:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19046 >/dev/null 2>/dev/null
selfserv_9590 with PID 19046 found at Tue May  2 15:57:02 UTC 2017
selfserv_9590 with PID 19046 started at Tue May  2 15:57:02 UTC 2017
trying to kill selfserv_9590 with PID 19046 at Tue May  2 15:57:02 UTC 2017
kill -USR1 19046
./ssl.sh: line 183: 19046 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19046 killed at Tue May  2 15:57:02 UTC 2017
selfserv_9590 starting at Tue May  2 15:57:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:57:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:02 UTC 2017
selfserv_9590 with PID 19080 started at Tue May  2 15:57:02 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:02 UTC 2017
ssl.sh: #8193: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:03 UTC 2017
ssl.sh: #8194: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:03 UTC 2017
ssl.sh: #8195: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:03 UTC 2017
ssl.sh: #8196: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:04 UTC 2017
ssl.sh: #8197: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:04 UTC 2017
ssl.sh: #8198: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:04 UTC 2017
ssl.sh: #8199: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:05 UTC 2017
ssl.sh: #8200: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:05 UTC 2017
ssl.sh: #8201: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:05 UTC 2017
ssl.sh: #8202: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:06 UTC 2017
ssl.sh: #8203: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:06 UTC 2017
ssl.sh: #8204: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:06 UTC 2017
ssl.sh: #8205: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8206: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:07 UTC 2017
ssl.sh: #8207: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:07 UTC 2017
ssl.sh: #8208: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:08 UTC 2017
ssl.sh: #8209: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:08 UTC 2017
ssl.sh: #8210: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:08 UTC 2017
ssl.sh: #8211: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:08 UTC 2017
ssl.sh: #8212: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:09 UTC 2017
ssl.sh: #8213: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:09 UTC 2017
ssl.sh: #8214: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:09 UTC 2017
ssl.sh: #8215: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:10 UTC 2017
ssl.sh: #8216: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:10 UTC 2017
ssl.sh: #8217: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:10 UTC 2017
ssl.sh: #8218: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:11 UTC 2017
ssl.sh: #8219: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8220: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:11 UTC 2017
ssl.sh: #8221: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:12 UTC 2017
ssl.sh: #8222: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:12 UTC 2017
ssl.sh: #8223: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:12 UTC 2017
ssl.sh: #8224: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:13 UTC 2017
ssl.sh: #8225: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:13 UTC 2017
ssl.sh: #8226: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:13 UTC 2017
ssl.sh: #8227: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:13 UTC 2017
ssl.sh: #8228: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:14 UTC 2017
ssl.sh: #8229: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:14 UTC 2017
ssl.sh: #8230: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:14 UTC 2017
ssl.sh: #8231: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:15 UTC 2017
ssl.sh: #8232: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 19080 >/dev/null 2>/dev/null
selfserv_9590 with PID 19080 found at Tue May  2 15:57:15 UTC 2017
ssl.sh: #8233: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 19080 at Tue May  2 15:57:15 UTC 2017
kill -USR1 19080
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19080 killed at Tue May  2 15:57:15 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:57:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:57:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:15 UTC 2017
selfserv_9590 with PID 20502 started at Tue May  2 15:57:15 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:16 UTC 2017
ssl.sh: #8234: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:16 UTC 2017
ssl.sh: #8235: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:16 UTC 2017
ssl.sh: #8236: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:17 UTC 2017
ssl.sh: #8237: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:17 UTC 2017
ssl.sh: #8238: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:17 UTC 2017
ssl.sh: #8239: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:18 UTC 2017
ssl.sh: #8240: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:18 UTC 2017
ssl.sh: #8241: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:18 UTC 2017
ssl.sh: #8242: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:19 UTC 2017
ssl.sh: #8243: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:19 UTC 2017
ssl.sh: #8244: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:19 UTC 2017
ssl.sh: #8245: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:20 UTC 2017
ssl.sh: #8246: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8247: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:20 UTC 2017
ssl.sh: #8248: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:21 UTC 2017
ssl.sh: #8249: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:21 UTC 2017
ssl.sh: #8250: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:21 UTC 2017
ssl.sh: #8251: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:22 UTC 2017
ssl.sh: #8252: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:22 UTC 2017
ssl.sh: #8253: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:22 UTC 2017
ssl.sh: #8254: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:23 UTC 2017
ssl.sh: #8255: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:23 UTC 2017
ssl.sh: #8256: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:23 UTC 2017
ssl.sh: #8257: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:24 UTC 2017
ssl.sh: #8258: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:24 UTC 2017
ssl.sh: #8259: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:24 UTC 2017
ssl.sh: #8260: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8261: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:25 UTC 2017
ssl.sh: #8262: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:25 UTC 2017
ssl.sh: #8263: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:26 UTC 2017
ssl.sh: #8264: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:26 UTC 2017
ssl.sh: #8265: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:26 UTC 2017
ssl.sh: #8266: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:27 UTC 2017
ssl.sh: #8267: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:27 UTC 2017
ssl.sh: #8268: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:27 UTC 2017
ssl.sh: #8269: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:28 UTC 2017
ssl.sh: #8270: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:28 UTC 2017
ssl.sh: #8271: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:28 UTC 2017
ssl.sh: #8272: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:29 UTC 2017
ssl.sh: #8273: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 20502 >/dev/null 2>/dev/null
selfserv_9590 with PID 20502 found at Tue May  2 15:57:29 UTC 2017
ssl.sh: #8274: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20502 at Tue May  2 15:57:29 UTC 2017
kill -USR1 20502
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20502 killed at Tue May  2 15:57:29 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:57:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:57:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:29 UTC 2017
selfserv_9590 with PID 21926 started at Tue May  2 15:57:29 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:30 UTC 2017
ssl.sh: #8275: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:30 UTC 2017
ssl.sh: #8276: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:30 UTC 2017
ssl.sh: #8277: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:30 UTC 2017
ssl.sh: #8278: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:31 UTC 2017
ssl.sh: #8279: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:31 UTC 2017
ssl.sh: #8280: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:31 UTC 2017
ssl.sh: #8281: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:32 UTC 2017
ssl.sh: #8282: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:32 UTC 2017
ssl.sh: #8283: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:32 UTC 2017
ssl.sh: #8284: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:32 UTC 2017
ssl.sh: #8285: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:33 UTC 2017
ssl.sh: #8286: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:33 UTC 2017
ssl.sh: #8287: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8288: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:34 UTC 2017
ssl.sh: #8289: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:34 UTC 2017
ssl.sh: #8290: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:34 UTC 2017
ssl.sh: #8291: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:34 UTC 2017
ssl.sh: #8292: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:35 UTC 2017
ssl.sh: #8293: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:35 UTC 2017
ssl.sh: #8294: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:35 UTC 2017
ssl.sh: #8295: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:35 UTC 2017
ssl.sh: #8296: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:36 UTC 2017
ssl.sh: #8297: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:36 UTC 2017
ssl.sh: #8298: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:36 UTC 2017
ssl.sh: #8299: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:37 UTC 2017
ssl.sh: #8300: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:37 UTC 2017
ssl.sh: #8301: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8302: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:37 UTC 2017
ssl.sh: #8303: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:38 UTC 2017
ssl.sh: #8304: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:38 UTC 2017
ssl.sh: #8305: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:38 UTC 2017
ssl.sh: #8306: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:39 UTC 2017
ssl.sh: #8307: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:39 UTC 2017
ssl.sh: #8308: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:39 UTC 2017
ssl.sh: #8309: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:39 UTC 2017
ssl.sh: #8310: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:40 UTC 2017
ssl.sh: #8311: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:40 UTC 2017
ssl.sh: #8312: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:40 UTC 2017
ssl.sh: #8313: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:40 UTC 2017
ssl.sh: #8314: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 21926 >/dev/null 2>/dev/null
selfserv_9590 with PID 21926 found at Tue May  2 15:57:41 UTC 2017
ssl.sh: #8315: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21926 at Tue May  2 15:57:41 UTC 2017
kill -USR1 21926
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21926 killed at Tue May  2 15:57:41 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:57:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:57:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:41 UTC 2017
selfserv_9590 with PID 23348 started at Tue May  2 15:57:41 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:41 UTC 2017
ssl.sh: #8316: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:42 UTC 2017
ssl.sh: #8317: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:42 UTC 2017
ssl.sh: #8318: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:42 UTC 2017
ssl.sh: #8319: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:43 UTC 2017
ssl.sh: #8320: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:43 UTC 2017
ssl.sh: #8321: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:43 UTC 2017
ssl.sh: #8322: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:44 UTC 2017
ssl.sh: #8323: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:44 UTC 2017
ssl.sh: #8324: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:44 UTC 2017
ssl.sh: #8325: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:45 UTC 2017
ssl.sh: #8326: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:45 UTC 2017
ssl.sh: #8327: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:45 UTC 2017
ssl.sh: #8328: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8329: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:46 UTC 2017
ssl.sh: #8330: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:46 UTC 2017
ssl.sh: #8331: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:47 UTC 2017
ssl.sh: #8332: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:47 UTC 2017
ssl.sh: #8333: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:47 UTC 2017
ssl.sh: #8334: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:48 UTC 2017
ssl.sh: #8335: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:48 UTC 2017
ssl.sh: #8336: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:48 UTC 2017
ssl.sh: #8337: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:49 UTC 2017
ssl.sh: #8338: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:49 UTC 2017
ssl.sh: #8339: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:49 UTC 2017
ssl.sh: #8340: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:50 UTC 2017
ssl.sh: #8341: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:50 UTC 2017
ssl.sh: #8342: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:50 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8343: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:51 UTC 2017
ssl.sh: #8344: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:51 UTC 2017
ssl.sh: #8345: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:51 UTC 2017
ssl.sh: #8346: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:52 UTC 2017
ssl.sh: #8347: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:52 UTC 2017
ssl.sh: #8348: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:52 UTC 2017
ssl.sh: #8349: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:53 UTC 2017
ssl.sh: #8350: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:53 UTC 2017
ssl.sh: #8351: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:53 UTC 2017
ssl.sh: #8352: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:54 UTC 2017
ssl.sh: #8353: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:54 UTC 2017
ssl.sh: #8354: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:54 UTC 2017
ssl.sh: #8355: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 23348 >/dev/null 2>/dev/null
selfserv_9590 with PID 23348 found at Tue May  2 15:57:55 UTC 2017
ssl.sh: #8356: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 23348 at Tue May  2 15:57:55 UTC 2017
kill -USR1 23348
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 23348 killed at Tue May  2 15:57:55 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:57:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:57:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:55 UTC 2017
selfserv_9590 with PID 24770 started at Tue May  2 15:57:55 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:55 UTC 2017
ssl.sh: #8357: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:56 UTC 2017
ssl.sh: #8358: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:56 UTC 2017
ssl.sh: #8359: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:56 UTC 2017
ssl.sh: #8360: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:57 UTC 2017
ssl.sh: #8361: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:57 UTC 2017
ssl.sh: #8362: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:57 UTC 2017
ssl.sh: #8363: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:58 UTC 2017
ssl.sh: #8364: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:58 UTC 2017
ssl.sh: #8365: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:58 UTC 2017
ssl.sh: #8366: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:59 UTC 2017
ssl.sh: #8367: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:59 UTC 2017
ssl.sh: #8368: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:57:59 UTC 2017
ssl.sh: #8369: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8370: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:00 UTC 2017
ssl.sh: #8371: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:01 UTC 2017
ssl.sh: #8372: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:01 UTC 2017
ssl.sh: #8373: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:01 UTC 2017
ssl.sh: #8374: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:02 UTC 2017
ssl.sh: #8375: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:02 UTC 2017
ssl.sh: #8376: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:02 UTC 2017
ssl.sh: #8377: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:03 UTC 2017
ssl.sh: #8378: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:03 UTC 2017
ssl.sh: #8379: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:03 UTC 2017
ssl.sh: #8380: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:04 UTC 2017
ssl.sh: #8381: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:04 UTC 2017
ssl.sh: #8382: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:04 UTC 2017
ssl.sh: #8383: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8384: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:05 UTC 2017
ssl.sh: #8385: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:05 UTC 2017
ssl.sh: #8386: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:06 UTC 2017
ssl.sh: #8387: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:06 UTC 2017
ssl.sh: #8388: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:06 UTC 2017
ssl.sh: #8389: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:07 UTC 2017
ssl.sh: #8390: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:07 UTC 2017
ssl.sh: #8391: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:07 UTC 2017
ssl.sh: #8392: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:08 UTC 2017
ssl.sh: #8393: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:08 UTC 2017
ssl.sh: #8394: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:08 UTC 2017
ssl.sh: #8395: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:09 UTC 2017
ssl.sh: #8396: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24770 >/dev/null 2>/dev/null
selfserv_9590 with PID 24770 found at Tue May  2 15:58:09 UTC 2017
ssl.sh: #8397: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 24770 at Tue May  2 15:58:09 UTC 2017
kill -USR1 24770
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 24770 killed at Tue May  2 15:58:09 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:58:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:58:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:09 UTC 2017
selfserv_9590 with PID 26193 started at Tue May  2 15:58:09 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:10 UTC 2017
ssl.sh: #8398: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:10 UTC 2017
ssl.sh: #8399: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:10 UTC 2017
ssl.sh: #8400: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:10 UTC 2017
ssl.sh: #8401: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:11 UTC 2017
ssl.sh: #8402: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:11 UTC 2017
ssl.sh: #8403: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:11 UTC 2017
ssl.sh: #8404: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:12 UTC 2017
ssl.sh: #8405: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:12 UTC 2017
ssl.sh: #8406: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:12 UTC 2017
ssl.sh: #8407: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:13 UTC 2017
ssl.sh: #8408: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:13 UTC 2017
ssl.sh: #8409: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:13 UTC 2017
ssl.sh: #8410: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:14 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8411: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:14 UTC 2017
ssl.sh: #8412: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:14 UTC 2017
ssl.sh: #8413: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:14 UTC 2017
ssl.sh: #8414: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:15 UTC 2017
ssl.sh: #8415: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:15 UTC 2017
ssl.sh: #8416: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:15 UTC 2017
ssl.sh: #8417: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:16 UTC 2017
ssl.sh: #8418: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:16 UTC 2017
ssl.sh: #8419: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:16 UTC 2017
ssl.sh: #8420: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:16 UTC 2017
ssl.sh: #8421: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:17 UTC 2017
ssl.sh: #8422: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:17 UTC 2017
ssl.sh: #8423: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:17 UTC 2017
ssl.sh: #8424: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8425: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:18 UTC 2017
ssl.sh: #8426: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:18 UTC 2017
ssl.sh: #8427: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:19 UTC 2017
ssl.sh: #8428: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:19 UTC 2017
ssl.sh: #8429: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:19 UTC 2017
ssl.sh: #8430: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:19 UTC 2017
ssl.sh: #8431: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:20 UTC 2017
ssl.sh: #8432: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:20 UTC 2017
ssl.sh: #8433: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:20 UTC 2017
ssl.sh: #8434: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:21 UTC 2017
ssl.sh: #8435: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:21 UTC 2017
ssl.sh: #8436: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:21 UTC 2017
ssl.sh: #8437: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 26193 >/dev/null 2>/dev/null
selfserv_9590 with PID 26193 found at Tue May  2 15:58:21 UTC 2017
ssl.sh: #8438: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 26193 at Tue May  2 15:58:21 UTC 2017
kill -USR1 26193
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 26193 killed at Tue May  2 15:58:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:58:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:58:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27616 >/dev/null 2>/dev/null
selfserv_9590 with PID 27616 found at Tue May  2 15:58:22 UTC 2017
selfserv_9590 with PID 27616 started at Tue May  2 15:58:22 UTC 2017
trying to kill selfserv_9590 with PID 27616 at Tue May  2 15:58:22 UTC 2017
kill -USR1 27616
./ssl.sh: line 183: 27616 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27616 killed at Tue May  2 15:58:22 UTC 2017
selfserv_9590 starting at Tue May  2 15:58:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:58:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:22 UTC 2017
selfserv_9590 with PID 27650 started at Tue May  2 15:58:22 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:22 UTC 2017
ssl.sh: #8439: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:22 UTC 2017
ssl.sh: #8440: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:23 UTC 2017
ssl.sh: #8441: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:23 UTC 2017
ssl.sh: #8442: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:23 UTC 2017
ssl.sh: #8443: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:24 UTC 2017
ssl.sh: #8444: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:24 UTC 2017
ssl.sh: #8445: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:24 UTC 2017
ssl.sh: #8446: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:25 UTC 2017
ssl.sh: #8447: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:25 UTC 2017
ssl.sh: #8448: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:25 UTC 2017
ssl.sh: #8449: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:26 UTC 2017
ssl.sh: #8450: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:26 UTC 2017
ssl.sh: #8451: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:26 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8452: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:27 UTC 2017
ssl.sh: #8453: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:27 UTC 2017
ssl.sh: #8454: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:27 UTC 2017
ssl.sh: #8455: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:28 UTC 2017
ssl.sh: #8456: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:28 UTC 2017
ssl.sh: #8457: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:28 UTC 2017
ssl.sh: #8458: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:29 UTC 2017
ssl.sh: #8459: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:29 UTC 2017
ssl.sh: #8460: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:29 UTC 2017
ssl.sh: #8461: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:29 UTC 2017
ssl.sh: #8462: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:30 UTC 2017
ssl.sh: #8463: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:30 UTC 2017
ssl.sh: #8464: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:30 UTC 2017
ssl.sh: #8465: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:31 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8466: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:31 UTC 2017
ssl.sh: #8467: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:31 UTC 2017
ssl.sh: #8468: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:32 UTC 2017
ssl.sh: #8469: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:32 UTC 2017
ssl.sh: #8470: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:32 UTC 2017
ssl.sh: #8471: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:33 UTC 2017
ssl.sh: #8472: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:33 UTC 2017
ssl.sh: #8473: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:33 UTC 2017
ssl.sh: #8474: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:34 UTC 2017
ssl.sh: #8475: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:34 UTC 2017
ssl.sh: #8476: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:34 UTC 2017
ssl.sh: #8477: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:35 UTC 2017
ssl.sh: #8478: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27650 >/dev/null 2>/dev/null
selfserv_9590 with PID 27650 found at Tue May  2 15:58:35 UTC 2017
ssl.sh: #8479: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 27650 at Tue May  2 15:58:35 UTC 2017
kill -USR1 27650
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27650 killed at Tue May  2 15:58:35 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:58:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:58:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:35 UTC 2017
selfserv_9590 with PID 29074 started at Tue May  2 15:58:35 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:36 UTC 2017
ssl.sh: #8480: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:36 UTC 2017
ssl.sh: #8481: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:36 UTC 2017
ssl.sh: #8482: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:37 UTC 2017
ssl.sh: #8483: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:37 UTC 2017
ssl.sh: #8484: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:37 UTC 2017
ssl.sh: #8485: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:38 UTC 2017
ssl.sh: #8486: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:38 UTC 2017
ssl.sh: #8487: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:38 UTC 2017
ssl.sh: #8488: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:39 UTC 2017
ssl.sh: #8489: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:39 UTC 2017
ssl.sh: #8490: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:39 UTC 2017
ssl.sh: #8491: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:40 UTC 2017
ssl.sh: #8492: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:40 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8493: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:40 UTC 2017
ssl.sh: #8494: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:41 UTC 2017
ssl.sh: #8495: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:41 UTC 2017
ssl.sh: #8496: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:41 UTC 2017
ssl.sh: #8497: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:42 UTC 2017
ssl.sh: #8498: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:42 UTC 2017
ssl.sh: #8499: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:42 UTC 2017
ssl.sh: #8500: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:43 UTC 2017
ssl.sh: #8501: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:43 UTC 2017
ssl.sh: #8502: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:43 UTC 2017
ssl.sh: #8503: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:44 UTC 2017
ssl.sh: #8504: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:44 UTC 2017
ssl.sh: #8505: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:44 UTC 2017
ssl.sh: #8506: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:45 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8507: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:45 UTC 2017
ssl.sh: #8508: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:45 UTC 2017
ssl.sh: #8509: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:46 UTC 2017
ssl.sh: #8510: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:46 UTC 2017
ssl.sh: #8511: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:46 UTC 2017
ssl.sh: #8512: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:46 UTC 2017
ssl.sh: #8513: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:47 UTC 2017
ssl.sh: #8514: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:47 UTC 2017
ssl.sh: #8515: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:47 UTC 2017
ssl.sh: #8516: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:48 UTC 2017
ssl.sh: #8517: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:48 UTC 2017
ssl.sh: #8518: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:48 UTC 2017
ssl.sh: #8519: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 29074 >/dev/null 2>/dev/null
selfserv_9590 with PID 29074 found at Tue May  2 15:58:49 UTC 2017
ssl.sh: #8520: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 29074 at Tue May  2 15:58:49 UTC 2017
kill -USR1 29074
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 29074 killed at Tue May  2 15:58:49 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:58:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:58:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:49 UTC 2017
selfserv_9590 with PID 30498 started at Tue May  2 15:58:49 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:49 UTC 2017
ssl.sh: #8521: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:50 UTC 2017
ssl.sh: #8522: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:50 UTC 2017
ssl.sh: #8523: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:50 UTC 2017
ssl.sh: #8524: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:50 UTC 2017
ssl.sh: #8525: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:51 UTC 2017
ssl.sh: #8526: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:51 UTC 2017
ssl.sh: #8527: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:51 UTC 2017
ssl.sh: #8528: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:52 UTC 2017
ssl.sh: #8529: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:52 UTC 2017
ssl.sh: #8530: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:52 UTC 2017
ssl.sh: #8531: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:52 UTC 2017
ssl.sh: #8532: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:53 UTC 2017
ssl.sh: #8533: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8534: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:53 UTC 2017
ssl.sh: #8535: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:54 UTC 2017
ssl.sh: #8536: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:54 UTC 2017
ssl.sh: #8537: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:54 UTC 2017
ssl.sh: #8538: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:54 UTC 2017
ssl.sh: #8539: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:55 UTC 2017
ssl.sh: #8540: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:55 UTC 2017
ssl.sh: #8541: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:55 UTC 2017
ssl.sh: #8542: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:56 UTC 2017
ssl.sh: #8543: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:56 UTC 2017
ssl.sh: #8544: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:56 UTC 2017
ssl.sh: #8545: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:56 UTC 2017
ssl.sh: #8546: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:57 UTC 2017
ssl.sh: #8547: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8548: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:57 UTC 2017
ssl.sh: #8549: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:58 UTC 2017
ssl.sh: #8550: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:58 UTC 2017
ssl.sh: #8551: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:58 UTC 2017
ssl.sh: #8552: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:58 UTC 2017
ssl.sh: #8553: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:59 UTC 2017
ssl.sh: #8554: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:59 UTC 2017
ssl.sh: #8555: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:59 UTC 2017
ssl.sh: #8556: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:58:59 UTC 2017
ssl.sh: #8557: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:59:00 UTC 2017
ssl.sh: #8558: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:59:00 UTC 2017
ssl.sh: #8559: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:59:00 UTC 2017
ssl.sh: #8560: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30498 >/dev/null 2>/dev/null
selfserv_9590 with PID 30498 found at Tue May  2 15:59:01 UTC 2017
ssl.sh: #8561: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30498 at Tue May  2 15:59:01 UTC 2017
kill -USR1 30498
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30498 killed at Tue May  2 15:59:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 15:59:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:59:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:01 UTC 2017
selfserv_9590 with PID 31920 started at Tue May  2 15:59:01 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:01 UTC 2017
ssl.sh: #8562: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:02 UTC 2017
ssl.sh: #8563: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:02 UTC 2017
ssl.sh: #8564: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:02 UTC 2017
ssl.sh: #8565: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:03 UTC 2017
ssl.sh: #8566: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:03 UTC 2017
ssl.sh: #8567: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:03 UTC 2017
ssl.sh: #8568: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:04 UTC 2017
ssl.sh: #8569: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:04 UTC 2017
ssl.sh: #8570: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:04 UTC 2017
ssl.sh: #8571: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:05 UTC 2017
ssl.sh: #8572: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:05 UTC 2017
ssl.sh: #8573: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:05 UTC 2017
ssl.sh: #8574: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:06 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8575: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:06 UTC 2017
ssl.sh: #8576: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:06 UTC 2017
ssl.sh: #8577: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:07 UTC 2017
ssl.sh: #8578: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:07 UTC 2017
ssl.sh: #8579: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:07 UTC 2017
ssl.sh: #8580: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:08 UTC 2017
ssl.sh: #8581: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:08 UTC 2017
ssl.sh: #8582: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:08 UTC 2017
ssl.sh: #8583: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:09 UTC 2017
ssl.sh: #8584: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:09 UTC 2017
ssl.sh: #8585: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:09 UTC 2017
ssl.sh: #8586: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:10 UTC 2017
ssl.sh: #8587: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:10 UTC 2017
ssl.sh: #8588: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:10 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8589: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:11 UTC 2017
ssl.sh: #8590: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:11 UTC 2017
ssl.sh: #8591: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:11 UTC 2017
ssl.sh: #8592: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:11 UTC 2017
ssl.sh: #8593: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:12 UTC 2017
ssl.sh: #8594: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:12 UTC 2017
ssl.sh: #8595: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:12 UTC 2017
ssl.sh: #8596: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:13 UTC 2017
ssl.sh: #8597: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:13 UTC 2017
ssl.sh: #8598: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:13 UTC 2017
ssl.sh: #8599: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:14 UTC 2017
ssl.sh: #8600: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:14 UTC 2017
ssl.sh: #8601: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31920 >/dev/null 2>/dev/null
selfserv_9590 with PID 31920 found at Tue May  2 15:59:14 UTC 2017
ssl.sh: #8602: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31920 at Tue May  2 15:59:14 UTC 2017
kill -USR1 31920
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31920 killed at Tue May  2 15:59:14 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:59:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:59:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:14 UTC 2017
selfserv_9590 with PID 965 started at Tue May  2 15:59:14 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:15 UTC 2017
ssl.sh: #8603: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:15 UTC 2017
ssl.sh: #8604: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:16 UTC 2017
ssl.sh: #8605: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:16 UTC 2017
ssl.sh: #8606: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:16 UTC 2017
ssl.sh: #8607: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:17 UTC 2017
ssl.sh: #8608: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:17 UTC 2017
ssl.sh: #8609: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:17 UTC 2017
ssl.sh: #8610: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:18 UTC 2017
ssl.sh: #8611: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:18 UTC 2017
ssl.sh: #8612: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:19 UTC 2017
ssl.sh: #8613: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:19 UTC 2017
ssl.sh: #8614: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:19 UTC 2017
ssl.sh: #8615: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8616: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:20 UTC 2017
ssl.sh: #8617: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:20 UTC 2017
ssl.sh: #8618: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:21 UTC 2017
ssl.sh: #8619: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:21 UTC 2017
ssl.sh: #8620: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:21 UTC 2017
ssl.sh: #8621: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:22 UTC 2017
ssl.sh: #8622: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:22 UTC 2017
ssl.sh: #8623: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:22 UTC 2017
ssl.sh: #8624: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:23 UTC 2017
ssl.sh: #8625: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:23 UTC 2017
ssl.sh: #8626: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:23 UTC 2017
ssl.sh: #8627: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:24 UTC 2017
ssl.sh: #8628: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:24 UTC 2017
ssl.sh: #8629: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:24 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8630: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:25 UTC 2017
ssl.sh: #8631: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:25 UTC 2017
ssl.sh: #8632: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:25 UTC 2017
ssl.sh: #8633: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:26 UTC 2017
ssl.sh: #8634: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:26 UTC 2017
ssl.sh: #8635: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:26 UTC 2017
ssl.sh: #8636: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:27 UTC 2017
ssl.sh: #8637: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:27 UTC 2017
ssl.sh: #8638: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:27 UTC 2017
ssl.sh: #8639: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:28 UTC 2017
ssl.sh: #8640: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:28 UTC 2017
ssl.sh: #8641: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:28 UTC 2017
ssl.sh: #8642: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 965 >/dev/null 2>/dev/null
selfserv_9590 with PID 965 found at Tue May  2 15:59:29 UTC 2017
ssl.sh: #8643: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 965 at Tue May  2 15:59:29 UTC 2017
kill -USR1 965
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 965 killed at Tue May  2 15:59:29 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:59:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:59:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:29 UTC 2017
selfserv_9590 with PID 2390 started at Tue May  2 15:59:29 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:29 UTC 2017
ssl.sh: #8644: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:30 UTC 2017
ssl.sh: #8645: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:30 UTC 2017
ssl.sh: #8646: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:30 UTC 2017
ssl.sh: #8647: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:31 UTC 2017
ssl.sh: #8648: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:31 UTC 2017
ssl.sh: #8649: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:31 UTC 2017
ssl.sh: #8650: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:31 UTC 2017
ssl.sh: #8651: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:32 UTC 2017
ssl.sh: #8652: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:32 UTC 2017
ssl.sh: #8653: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:32 UTC 2017
ssl.sh: #8654: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:33 UTC 2017
ssl.sh: #8655: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:33 UTC 2017
ssl.sh: #8656: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8657: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:34 UTC 2017
ssl.sh: #8658: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:34 UTC 2017
ssl.sh: #8659: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:34 UTC 2017
ssl.sh: #8660: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:35 UTC 2017
ssl.sh: #8661: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:35 UTC 2017
ssl.sh: #8662: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:35 UTC 2017
ssl.sh: #8663: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:35 UTC 2017
ssl.sh: #8664: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:36 UTC 2017
ssl.sh: #8665: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:36 UTC 2017
ssl.sh: #8666: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:36 UTC 2017
ssl.sh: #8667: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:37 UTC 2017
ssl.sh: #8668: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:37 UTC 2017
ssl.sh: #8669: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:37 UTC 2017
ssl.sh: #8670: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:38 UTC 2017
================= CRL Reloaded =============
ssl.sh: #8671: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:38 UTC 2017
ssl.sh: #8672: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:38 UTC 2017
ssl.sh: #8673: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:38 UTC 2017
ssl.sh: #8674: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:39 UTC 2017
ssl.sh: #8675: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:39 UTC 2017
ssl.sh: #8676: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:39 UTC 2017
ssl.sh: #8677: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:40 UTC 2017
ssl.sh: #8678: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:40 UTC 2017
ssl.sh: #8679: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:40 UTC 2017
ssl.sh: #8680: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:40 UTC 2017
ssl.sh: #8681: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:41 UTC 2017
ssl.sh: #8682: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:41 UTC 2017
ssl.sh: #8683: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 2390 >/dev/null 2>/dev/null
selfserv_9590 with PID 2390 found at Tue May  2 15:59:41 UTC 2017
ssl.sh: #8684: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 2390 at Tue May  2 15:59:41 UTC 2017
kill -USR1 2390
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 2390 killed at Tue May  2 15:59:41 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 15:59:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 15:59:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3812 >/dev/null 2>/dev/null
selfserv_9590 with PID 3812 found at Tue May  2 15:59:41 UTC 2017
selfserv_9590 with PID 3812 started at Tue May  2 15:59:41 UTC 2017
trying to kill selfserv_9590 with PID 3812 at Tue May  2 15:59:41 UTC 2017
kill -USR1 3812
./ssl.sh: line 183:  3812 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3812 killed at Tue May  2 15:59:41 UTC 2017
TIMESTAMP ssl END: Tue May  2 15:59:41 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Tue May  2 15:59:41 UTC 2017
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.v3.17356 -t Test2 -f ../tests.pw
merge.sh: #8685: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id dave --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8686: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id server --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8687: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id ext_client --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8688: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict1 --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8689: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id conflict2 --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8690: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:19:20 2017
            Not After : Mon May 02 15:19:20 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:51:50:5c:4c:1d:d4:b7:e5:48:2f:ad:54:17:c9:f8:
                    af:72:3b:00:c3:39:05:d1:c2:eb:78:5e:ef:33:84:f2:
                    cb:7b:fd:e9:f9:86:06:b7:c8:a7:c0:f8:fa:10:fd:6d:
                    5c:b8:7a:c3:f3:07:38:61:ce:47:63:be:2a:16:01:fc:
                    02:fc:f9:b6:2c:13:80:7d:f4:6a:e3:fc:94:80:f7:43:
                    67:bf:de:85:fc:0d:d5:11:d0:9c:c9:c7:84:b1:35:c8:
                    aa:8d:84:f2:7a:f2:49:e4:f4:11:81:39:e3:20:4d:9a:
                    fe:21:32:14:ff:91:79:4d:55:dc:86:cd:b7:37:00:e0:
                    b9:20:91:47:cc:5f:cd:2d:31:8b:67:af:39:56:87:fa:
                    53:d8:3c:fc:27:7a:16:48:d3:5e:07:6a:59:98:aa:45:
                    d6:8c:96:f6:d2:79:6f:a9:3a:c3:98:7a:fd:02:21:db:
                    c8:19:21:e2:19:f4:f7:ef:79:92:ab:31:56:52:57:42:
                    ce:ab:ab:a7:73:fa:f2:56:60:25:e1:19:a5:e3:a6:d8:
                    ee:85:6a:b4:18:f9:cc:ba:83:bc:1a:57:36:7f:90:0e:
                    2a:11:cc:b9:2c:9b:85:d6:8d:55:75:d2:ad:9a:4b:37:
                    3d:42:f4:b9:fc:c5:a1:19:64:fb:89:6a:b3:4f:33:ed
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:aa:2e:0d:34:ab:14:a1:c0:c1:50:77:91:4f:66:58:
        b4:14:c2:f2:67:1d:11:73:04:ba:28:17:43:44:2a:eb:
        dc:fc:be:cf:97:ad:98:a1:14:85:a7:d1:b2:ab:17:ac:
        3b:3d:d5:1c:a5:f9:39:56:e9:54:50:e2:99:6c:6c:c4:
        7c:17:61:07:11:8e:b4:ef:ad:f5:43:7b:6a:2e:fe:39:
        10:7d:70:95:8f:f5:77:c6:1c:bb:ca:69:a5:fa:41:6e:
        b7:dc:c3:f9:e0:e9:9b:01:ea:62:54:3d:6f:0b:73:80:
        01:51:22:0c:cc:4a:97:db:f2:ae:29:ba:8e:89:21:5e:
        fc:c4:ca:d8:e5:38:7d:64:19:05:cc:38:f1:8c:03:48:
        88:93:e3:a1:14:67:3c:c2:48:7b:8b:1e:a9:f3:c2:8e:
        a5:55:54:05:0b:ca:d3:52:a3:52:90:8d:81:30:da:39:
        ca:c2:bc:66:41:07:77:9c:d6:c1:55:2a:e0:46:95:67:
        3e:be:89:0f:2e:cc:1e:df:38:44:39:90:de:c3:d7:50:
        d4:a0:fd:78:8a:b4:6e:24:d5:f8:84:f8:d3:7f:8a:43:
        f7:fe:7c:1d:be:43:87:7b:ff:f6:00:d8:97:cc:eb:80:
        53:d2:a3:86:d0:2e:82:5c:ce:72:ab:83:0a:50:da:24
    Fingerprint (SHA-256):
        0A:70:5F:04:DC:08:18:CA:18:23:C3:B5:FA:C1:34:B1:19:44:F7:97:8B:46:E0:6D:15:6E:FF:77:6A:B1:90:0A
    Fingerprint (SHA1):
        8D:AF:D0:EA:45:94:71:44:C3:F2:0C:70:9F:7E:A7:54:D6:F4:97:27
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #8691: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:19:21 2017
            Not After : Mon May 02 15:19:21 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:13:14:92:16:43:1a:61:ea:f1:47:ee:8e:a4:73:1f:
                    d3:63:44:45:49:e5:4d:75:cf:d2:f2:26:5c:d9:2a:84:
                    d8:f0:ae:e9:19:7b:2f:a1:a7:e5:ed:3c:97:75:54:8c:
                    50:93:4c:6e:76:ec:7a:b0:f6:db:a0:b1:72:8a:e0:07:
                    c4:18:4d:a3:33:4d:3a:e1:82:29:81:5f:32:01:1d:76:
                    89:61:d2:cc:49:83:b1:58:05:fe:f3:77:b6:18:b0:e0:
                    24:d9:23:2e:e7:e6:28:6c:20:66:a5:d9:04:37:b9:70:
                    42:53:2c:57:5b:e4:cf:a4:25:e8:72:b8:57:d6:8e:0c:
                    d9:74:ca:60:f0:c6:82:e0:15:cf:f8:31:f8:62:98:bb:
                    4f:00:85:66:2a:ff:e5:c6:79:1f:73:bb:df:30:8f:db:
                    8f:cd:81:21:23:4c:49:62:6d:01:30:ac:61:62:9f:01:
                    53:3a:d6:e1:c5:5e:c2:6f:5b:64:0a:d1:a9:18:83:93:
                    e1:51:9c:ab:f0:00:02:b0:12:a9:a7:a7:a1:6b:40:7c:
                    09:6b:97:58:f8:60:71:52:62:f3:cc:f4:e4:f9:70:6e:
                    c8:6e:d2:e2:55:63:25:17:c0:0d:de:bd:7b:45:dd:24:
                    25:e5:4b:2e:e4:55:7f:94:a9:b7:7a:2c:b0:ee:31:55
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:1b:20:1e:24:c1:91:b7:12:a9:30:7f:4c:05:69:a3:
        b4:74:55:c8:f1:2b:30:82:3e:29:2b:04:e6:c1:9c:5e:
        2c:b5:5f:ef:43:2d:c4:9c:83:8c:c7:dd:3e:c6:11:bf:
        ab:64:e6:fc:91:89:e5:98:07:2e:82:e8:3f:bb:ec:31:
        50:8d:b4:67:ee:21:7d:ff:37:72:25:69:76:a5:32:f3:
        98:9e:96:d2:2b:04:c8:0e:ae:22:1c:38:0c:ee:79:0b:
        79:a3:af:52:1b:e3:21:54:f6:36:13:aa:3f:0c:b3:56:
        33:90:4a:3b:61:a5:42:1f:59:6f:5a:ec:39:7c:e6:70:
        d1:5b:e1:b9:db:95:45:63:eb:f7:b1:58:54:60:f9:be:
        7f:04:a2:0b:76:f6:9a:3b:fd:89:a6:7d:09:6c:79:4a:
        0e:b6:bf:aa:8f:6a:b6:75:72:ce:56:19:1f:70:73:67:
        b3:26:89:58:9d:8a:00:b1:8c:f3:2f:a4:bc:55:6c:28:
        a1:7b:5c:e0:b2:28:53:e7:44:96:25:c6:fe:2e:9d:57:
        42:df:1f:d4:f2:a4:e7:13:4b:a2:1f:b9:19:a5:95:3b:
        b6:b8:95:27:a0:ee:f5:3e:c2:5e:3c:35:e5:cc:2c:a0:
        6f:0d:62:a4:1d:97:03:2e:2d:3e:ab:86:e4:66:89:c9
    Fingerprint (SHA-256):
        E8:01:68:5D:5F:43:06:A7:4B:DA:26:96:24:FF:D6:60:63:60:76:E6:58:96:FD:FE:41:0B:49:2D:AD:4C:11:A0
    Fingerprint (SHA1):
        D0:97:7D:5B:2C:F1:97:A6:0C:C6:C4:FB:3F:C3:5C:9A:76:1A:9B:52
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #8692: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --upgrade-merge --upgrade-token-name OldDB --upgrade-id sdr --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
upgrade complete!
merge.sh: #8693: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA-dsa                                                   CT,C,C
Alice                                                        u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
TestCA                                                       CT,C,C
TestCA-ec                                                    CT,C,C
Alice-dsa                                                    u,u,u
Alice-ecmixed                                                u,u,u
Dave-dsamixed                                                u,u,u
Dave-dsa                                                     u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
clientCA-ec                                                  T,C,C
chain-2-clientCA-ec                                          ,,   
clientCA                                                     T,C,C
chain-2-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
chain-1-clientCA-ec                                          ,,   
chain-2-clientCA-dsa                                         ,,   
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
Alice #1                                                     ,,   
Alice #2                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #100                                                   ,,   
Alice #4                                                     ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.v3.17356 -t Test2 -f ../tests.pw
merge.sh: #8694: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/tests.v1.17356 -t Test1 -f ../tests.pw
merge.sh: #8695: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #8696: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #8697: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #8698: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Tue May 02 15:19:36 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:18:37 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Tue May 02 15:19:32 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #8699: Verifying TestCA CRL  - PASSED
TEST_MODE=UPGRADE_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Tue May  2 15:59:45 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 15:59:45 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 15:59:45 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #8700: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 15:59:45 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 15:59:45 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8701: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8702: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8703: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #8704: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #8705: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #8706: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 15:59:46 UTC 2017
TIMESTAMP ec END: Tue May  2 15:59:46 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 15:59:46 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (9 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (2 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (12 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #8707: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/upgradedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #8708: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #8709: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #8710: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #8711: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #8712: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #8713: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #8714: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #8715: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #8716: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #8717: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #8718: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #8719: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #8720: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #8721: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #8722: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #8723: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #8724: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #8725: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 15:59:47 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 15:59:47 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #8726: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8727: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8728: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8729: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8730: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8731: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8732: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8733: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8734: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8735: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8736: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8737: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8738: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8739: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #8740: create certificate: sign  - PASSED
ssl_gtest.sh: #8741: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 15:59:52 UTC 2017
ssl_gtests.sh: Testing with shared library ===============================
Running tests for cert
TIMESTAMP cert BEGIN: Tue May  2 15:59:52 UTC 2017
cert.sh: Certutil and Crlutil Tests with ECC ===============================
cert.sh: #8742: Looking for root certs module. - PASSED
cert.sh: Creating a CA Certificate TestCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -f ../tests.pw
cert.sh: #8743: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8744: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert TestCA  --------------------------
certutil -s "CN=NSS Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8745: Creating CA Cert TestCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n TestCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #8746: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -f ../tests.pw
cert.sh: #8747: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8748: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert serverCA  --------------------------
certutil -s "CN=NSS Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA -t Cu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8749: Creating CA Cert serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8750: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-1-serverCA  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA -t u,u,u -v 600 -c serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8751: Creating CA Cert chain-1-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8752: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-serverCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating CA Cert chain-2-serverCA  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA -t u,u,u -v 600 -c chain-1-serverCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8753: Creating CA Cert chain-2-serverCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-serverCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -o root.cert
cert.sh: #8754: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -f ../tests.pw
cert.sh: #8755: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8756: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert clientCA  --------------------------
certutil -s "CN=NSS Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA -t Tu,Cu,Cu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8757: Creating CA Cert clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8758: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-1-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-1-clientCA  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA -t u,u,u -v 600 -c clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8759: Creating CA Cert chain-1-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-1-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8760: Exporting Root Cert - PASSED
cert.sh: Creating a CA Certificate chain-2-clientCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating CA Cert chain-2-clientCA  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA, O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA -t u,u,u -v 600 -c chain-1-clientCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8761: Creating CA Cert chain-2-clientCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n chain-2-clientCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -o root.cert
cert.sh: #8762: Exporting Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate TestCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating DSA CA Cert TestCA-dsa  --------------------------
certutil -s "CN=NSS Test CA (DSA), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-dsa -k dsa -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8763: Creating DSA CA Cert TestCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n TestCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8764: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert serverCA-dsa  --------------------------
certutil -s "CN=NSS Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-dsa -k dsa -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8765: Creating DSA CA Cert serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8766: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-1-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-dsa -k dsa -t u,u,u -v 600 -c serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8767: Creating DSA CA Cert chain-1-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8768: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-serverCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating DSA CA Cert chain-2-serverCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-serverCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8769: Creating DSA CA Cert chain-2-serverCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-serverCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8770: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert clientCA-dsa  --------------------------
certutil -s "CN=NSS Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-dsa -k dsa -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8771: Creating DSA CA Cert clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8772: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-1-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-1-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-dsa -k dsa -t u,u,u -v 600 -c clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8773: Creating DSA CA Cert chain-1-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-1-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8774: Exporting DSA Root Cert - PASSED
cert.sh: Creating an DSA CA Certificate chain-2-clientCA-dsa ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating DSA CA Cert chain-2-clientCA-dsa  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (DSA), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-dsa -k dsa -t u,u,u -v 600 -c chain-1-clientCA-dsa -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8775: Creating DSA CA Cert chain-2-clientCA-dsa  - PASSED
cert.sh: Exporting DSA Root Cert --------------------------
certutil -L -n chain-2-clientCA-dsa -r -d . -o dsaroot.cert
cert.sh: #8776: Exporting DSA Root Cert - PASSED
cert.sh: Creating an EC CA Certificate TestCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating EC CA Cert TestCA-ec  --------------------------
certutil -s "CN=NSS Test CA (ECC), O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n TestCA-ec -k ec -q secp521r1 -t CTu,CTu,CTu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8777: Creating EC CA Cert TestCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n TestCA-ec -r -d . -o ecroot.cert
cert.sh: #8778: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert serverCA-ec  --------------------------
certutil -s "CN=NSS Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n serverCA-ec -k ec -q secp521r1 -t Cu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8779: Creating EC CA Cert serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8780: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-1-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 3
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8781: Creating EC CA Cert chain-1-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8782: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-serverCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA
cert.sh: Creating EC CA Cert chain-2-serverCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Server Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-serverCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-serverCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 4
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8783: Creating EC CA Cert chain-2-serverCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-serverCA-ec -r -d . -o ecroot.cert
cert.sh: #8784: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert clientCA-ec  --------------------------
certutil -s "CN=NSS Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n clientCA-ec -k ec -q secp521r1 -t Tu,Cu,Cu -v 600 -x -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 5
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8785: Creating EC CA Cert clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n clientCA-ec -r -d . -o ecroot.cert
cert.sh: #8786: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-1-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-1-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain1 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-1-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 6
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8787: Creating EC CA Cert chain-1-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-1-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #8788: Exporting EC Root Cert - PASSED
cert.sh: Creating an EC CA Certificate chain-2-clientCA-ec ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA
cert.sh: Creating EC CA Cert chain-2-clientCA-ec  --------------------------
certutil -s "CN=NSS Chain2 Client Test CA (ECC), O=BOGUS NSS, L=Santa Clara, ST=California, C=US" -S -n chain-2-clientCA-ec -k ec -q secp521r1 -t u,u,u -v 600 -c chain-1-clientCA-ec -d . -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 7
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #8789: Creating EC CA Cert chain-2-clientCA-ec  - PASSED
cert.sh: Exporting EC Root Cert --------------------------
certutil -L -n chain-2-clientCA-ec -r -d . -o ecroot.cert
cert.sh: #8790: Exporting EC Root Cert - PASSED
cert.sh: Creating Certificates, issued by the last ===============
     of a chain of CA's which are not in the same database============
Server Cert
cert.sh: Initializing localhost.localdomain's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw
cert.sh: #8791: Initializing localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8792: Loading root cert module to localhost.localdomain's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8793: Generate Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain.cert -f ../tests.pw
cert.sh: #8794: Sign localhost.localdomain's Request (ext) - PASSED
cert.sh: Import localhost.localdomain's Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8795: Import localhost.localdomain's Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #8796: Import Client Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8797: Generate DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA-dsa -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw
cert.sh: #8798: Sign localhost.localdomain's DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8799: Import localhost.localdomain's DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #8800: Import Client DSA Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8801: Generate mixed DSA Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 202 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw
cert.sh: #8802: Sign localhost.localdomain's mixed DSA Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8803: Import localhost.localdomain's mixed DSA Cert  -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8804: Generate EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA-ec -m 200 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ec.cert -f ../tests.pw
cert.sh: #8805: Sign localhost.localdomain's EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8806: Import localhost.localdomain's EC Cert  -t u,u,u (ext) - PASSED
cert.sh: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) --------------------------
certutil -A -n clientCA-ec -t T,, -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #8807: Import Client EC Root CA -t T,, for localhost.localdomain (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for localhost.localdomain (ext) --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8808: Generate mixed EC Cert Request for localhost.localdomain (ext) - PASSED
cert.sh: Sign localhost.localdomain's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-serverCA -m 201 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw
cert.sh: #8809: Sign localhost.localdomain's mixed EC Request (ext) - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8810: Import localhost.localdomain's mixed EC Cert  -t u,u,u (ext) - PASSED
Importing all the server's own CA chain into the servers DB
cert.sh: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8811: Import chain-2-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8812: Import chain-1-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #8813: Import serverCA-dsa CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8814: Import chain-2-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #8815: Import serverCA CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8816: Import chain-1-serverCA-dsa CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-2-serverCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-2-serverCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8817: Import chain-2-serverCA CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
cert.sh: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #8818: Import serverCA-ec CA -t C,C,C for localhost.localdomain (ext.)  - PASSED
cert.sh: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  --------------------------
certutil -A -n chain-1-serverCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_server -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/chain-1-serverCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8819: Import chain-1-serverCA-ec CA -t u,u,u for localhost.localdomain (ext.)  - PASSED
Client Cert
cert.sh: Initializing ExtendedSSLUser's Cert DB (ext.) --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw
cert.sh: #8820: Initializing ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8821: Loading root cert module to ExtendedSSLUser's Cert DB (ext.) - PASSED
cert.sh: Generate Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8822: Generate Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser.cert -f ../tests.pw
cert.sh: #8823: Sign ExtendedSSLUser's Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8824: Import ExtendedSSLUser's Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA.ca.cert
cert.sh: #8825: Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8826: Generate DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA-dsa -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsa.cert -f ../tests.pw
cert.sh: #8827: Sign ExtendedSSLUser's DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8828: Import ExtendedSSLUser's DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-dsa -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-dsa.ca.cert
cert.sh: #8829: Import Server DSA Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k dsa -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8830: Generate mixed DSA Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed DSA Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 302 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-dsamixed.cert -f ../tests.pw
cert.sh: #8831: Sign ExtendedSSLUser's mixed DSA Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8832: Import ExtendedSSLUser's mixed DSA Cert -t u,u,u (ext) - PASSED
cert.sh: Generate EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8833: Generate EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA-ec -m 300 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ec.cert -f ../tests.pw
cert.sh: #8834: Sign ExtendedSSLUser's EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8835: Import ExtendedSSLUser's EC Cert -t u,u,u (ext) - PASSED
cert.sh: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n serverCA-ec -t C,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA/serverCA-ec.ca.cert
cert.sh: #8836: Import Server EC Root CA -t C,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Generate mixed EC Cert Request for ExtendedSSLUser (ext) --------------------------
certutil -s "CN=ExtendedSSLUser, E=ExtendedSSLUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -k ec -q secp256r1 -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8837: Generate mixed EC Cert Request for ExtendedSSLUser (ext) - PASSED
cert.sh: Sign ExtendedSSLUser's mixed EC Request (ext) --------------------------
certutil -C -c chain-2-clientCA -m 301 -v 60 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA -i req -o ExtendedSSLUser-ecmixed.cert -f ../tests.pw
cert.sh: #8838: Sign ExtendedSSLUser's mixed EC Request (ext) - PASSED
cert.sh: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) --------------------------
certutil -A -n ExtendedSSLUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -f ../tests.pw -i ExtendedSSLUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8839: Import ExtendedSSLUser's mixed EC Cert -t u,u,u (ext) - PASSED
Importing all the client's own CA chain into the servers DB
cert.sh: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-ec -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-ec.ca.cert
cert.sh: #8840: Import clientCA-ec CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8841: Import chain-2-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-ec -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-ec.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8842: Import chain-1-clientCA-ec CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8843: Import chain-2-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8844: Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA-dsa -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA-dsa.ca.cert
cert.sh: #8845: Import clientCA-dsa CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) --------------------------
certutil -A -n clientCA -t T,C,C -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/clientCA.ca.cert
cert.sh: #8846: Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-2-clientCA -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-2-clientCA.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8847: Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) --------------------------
certutil -A -n chain-1-clientCA-dsa -t u,u,u -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ext_client -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/clientCA/chain-1-clientCA-dsa.ca.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8848: Import chain-1-clientCA-dsa CA -t u,u,u for ExtendedSSLUser (ext.) - PASSED
cert.sh SUCCESS: EXT passed
cert.sh: Creating Client CA Issued Certificates ===============
cert.sh: Initializing TestUser's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw
cert.sh: #8849: Initializing TestUser's Cert DB - PASSED
cert.sh: Loading root cert module to TestUser's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8850: Loading root cert module to TestUser's Cert DB - PASSED
cert.sh: Import Root CA for TestUser --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA.ca.cert
cert.sh: #8851: Import Root CA for TestUser - PASSED
cert.sh: Import DSA Root CA for TestUser --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8852: Import DSA Root CA for TestUser - PASSED
cert.sh: Import EC Root CA for TestUser --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -i ../CA/TestCA-ec.ca.cert
cert.sh: #8853: Import EC Root CA for TestUser - PASSED
cert.sh: Generate Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8854: Generate Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's Request --------------------------
certutil -C -c TestCA -m 70 -v 60 -d ../CA -i req -o TestUser.cert -f ../tests.pw 
cert.sh: #8855: Sign TestUser's Request - PASSED
cert.sh: Import TestUser's Cert --------------------------
certutil -A -n TestUser -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8856: Import TestUser's Cert - PASSED
cert.sh SUCCESS: TestUser's Cert Created
cert.sh: Generate DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8857: Generate DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 70 -v 60 -d ../CA -i req -o TestUser-dsa.cert -f ../tests.pw 
cert.sh: #8858: Sign TestUser's DSA Request - PASSED
cert.sh: Import TestUser's DSA Cert --------------------------
certutil -A -n TestUser-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8859: Import TestUser's DSA Cert - PASSED
cert.sh SUCCESS: TestUser's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8860: Generate mixed DSA Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20070 -v 60 -d ../CA -i req -o TestUser-dsamixed.cert -f ../tests.pw 
cert.sh: #8861: Sign TestUser's DSA Request with RSA - PASSED
cert.sh: Import TestUser's mixed DSA Cert --------------------------
certutil -A -n TestUser-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8862: Import TestUser's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8863: Generate EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request --------------------------
certutil -C -c TestCA-ec -m 70 -v 60 -d ../CA -i req -o TestUser-ec.cert -f ../tests.pw 
cert.sh: #8864: Sign TestUser's EC Request - PASSED
cert.sh: Import TestUser's EC Cert --------------------------
certutil -A -n TestUser-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8865: Import TestUser's EC Cert - PASSED
cert.sh SUCCESS: TestUser's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser --------------------------
certutil -s "CN=TestUser, E=TestUser-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8866: Generate mixed EC Cert Request for TestUser - PASSED
cert.sh: Sign TestUser's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10070 -v 60 -d ../CA -i req -o TestUser-ecmixed.cert -f ../tests.pw 
cert.sh: #8867: Sign TestUser's EC Request with RSA - PASSED
cert.sh: Import TestUser's mixed EC Cert --------------------------
certutil -A -n TestUser-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8868: Import TestUser's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain ------------------------------------
cert.sh: Initializing localhost.localdomain's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8869: Initializing localhost.localdomain's Cert DB - PASSED
cert.sh: Loading root cert module to localhost.localdomain's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8870: Loading root cert module to localhost.localdomain's Cert DB - PASSED
cert.sh: Import Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA.ca.cert
cert.sh: #8871: Import Root CA for localhost.localdomain - PASSED
cert.sh: Import DSA Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8872: Import DSA Root CA for localhost.localdomain - PASSED
cert.sh: Import EC Root CA for localhost.localdomain --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -i ../CA/TestCA-ec.ca.cert
cert.sh: #8873: Import EC Root CA for localhost.localdomain - PASSED
cert.sh: Generate Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8874: Generate Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's Request --------------------------
certutil -C -c TestCA -m 100 -v 60 -d ../CA -i req -o localhost.localdomain.cert -f ../tests.pw 
cert.sh: #8875: Sign localhost.localdomain's Request - PASSED
cert.sh: Import localhost.localdomain's Cert --------------------------
certutil -A -n localhost.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8876: Import localhost.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8877: Generate DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #8878: Sign localhost.localdomain's DSA Request - PASSED
cert.sh: Import localhost.localdomain's DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8879: Import localhost.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8880: Generate mixed DSA Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20100 -v 60 -d ../CA -i req -o localhost.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #8881: Sign localhost.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8882: Import localhost.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8883: Generate EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 100 -v 60 -d ../CA -i req -o localhost.localdomain-ec.cert -f ../tests.pw 
cert.sh: #8884: Sign localhost.localdomain's EC Request - PASSED
cert.sh: Import localhost.localdomain's EC Cert --------------------------
certutil -A -n localhost.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8885: Import localhost.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost.localdomain --------------------------
certutil -s "CN=localhost.localdomain, E=localhost.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8886: Generate mixed EC Cert Request for localhost.localdomain - PASSED
cert.sh: Sign localhost.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10100 -v 60 -d ../CA -i req -o localhost.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #8887: Sign localhost.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8888: Import localhost.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost.localdomain's mixed EC Cert Created
cert.sh: Creating Server CA Issued Certificate for \
             localhost.localdomain-sni --------------------------------
cert.sh: Generate Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8889: Generate Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's Request --------------------------
certutil -C -c TestCA -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain.cert -f ../tests.pw 
cert.sh: #8890: Sign localhost-sni.localdomain's Request - PASSED
cert.sh: Import localhost-sni.localdomain's Cert --------------------------
certutil -A -n localhost-sni.localdomain -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8891: Import localhost-sni.localdomain's Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's Cert Created
cert.sh: Generate DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8892: Generate DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsa.cert -f ../tests.pw 
cert.sh: #8893: Sign localhost-sni.localdomain's DSA Request - PASSED
cert.sh: Import localhost-sni.localdomain's DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8894: Import localhost-sni.localdomain's DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8895: Generate mixed DSA Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-dsamixed.cert -f ../tests.pw 
cert.sh: #8896: Sign localhost-sni.localdomain's DSA Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed DSA Cert --------------------------
certutil -A -n localhost-sni.localdomain-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8897: Import localhost-sni.localdomain's mixed DSA Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8898: Generate EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request --------------------------
certutil -C -c TestCA-ec -m 101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ec.cert -f ../tests.pw 
cert.sh: #8899: Sign localhost-sni.localdomain's EC Request - PASSED
cert.sh: Import localhost-sni.localdomain's EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8900: Import localhost-sni.localdomain's EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's EC Cert Created
cert.sh: Generate mixed EC Cert Request for localhost-sni.localdomain --------------------------
certutil -s "CN=localhost-sni.localdomain, E=localhost-sni.localdomain-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8901: Generate mixed EC Cert Request for localhost-sni.localdomain - PASSED
cert.sh: Sign localhost-sni.localdomain's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10101 -v 60 -d ../CA -i req -o localhost-sni.localdomain-ecmixed.cert -f ../tests.pw 
cert.sh: #8902: Sign localhost-sni.localdomain's EC Request with RSA - PASSED
cert.sh: Import localhost-sni.localdomain's mixed EC Cert --------------------------
certutil -A -n localhost-sni.localdomain-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw -i localhost-sni.localdomain-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8903: Import localhost-sni.localdomain's mixed EC Cert - PASSED
cert.sh SUCCESS: localhost-sni.localdomain's mixed EC Cert Created
cert.sh: Modify trust attributes of Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8904: Modify trust attributes of Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of DSA Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-dsa -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8905: Modify trust attributes of DSA Root CA -t TC,TC,TC - PASSED
cert.sh: Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
certutil -M -n TestCA-ec -t TC,TC,TC -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server -f ../tests.pw
cert.sh: #8906: Modify trust attributes of EC Root CA -t TC,TC,TC - PASSED
cert.sh SUCCESS: SSL passed
cert.sh: Creating database for OCSP stapling tests  ===============
cp -r /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/stapling
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -o ../stapling/ca.p12 -n TestCA -k ../tests.pw -w ../tests.pw -d ../CA
pk12util: PKCS12 EXPORT SUCCESSFUL
Modify trust attributes of EC Root CA -t TC,TC,TC --------------------------
pk12util -i ../stapling/ca.p12 -k ../tests.pw -w ../tests.pw -d ../stapling
pk12util: PKCS12 IMPORT SUCCESSFUL
cert.sh: Creating Client CA Issued Certificates ==============
cert.sh: Initializing Alice's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw
cert.sh: #8907: Initializing Alice's Cert DB - PASSED
cert.sh: Loading root cert module to Alice's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8908: Loading root cert module to Alice's Cert DB - PASSED
cert.sh: Import Root CA for Alice --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA.ca.cert
cert.sh: #8909: Import Root CA for Alice - PASSED
cert.sh: Import DSA Root CA for Alice --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8910: Import DSA Root CA for Alice - PASSED
cert.sh: Import EC Root CA for Alice --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -i ../CA/TestCA-ec.ca.cert
cert.sh: #8911: Import EC Root CA for Alice - PASSED
cert.sh: Generate Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8912: Generate Cert Request for Alice - PASSED
cert.sh: Sign Alice's Request --------------------------
certutil -C -c TestCA -m 30 -v 60 -d ../CA -i req -o Alice.cert -f ../tests.pw 
cert.sh: #8913: Sign Alice's Request - PASSED
cert.sh: Import Alice's Cert --------------------------
certutil -A -n Alice -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8914: Import Alice's Cert - PASSED
cert.sh SUCCESS: Alice's Cert Created
cert.sh: Generate DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8915: Generate DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 30 -v 60 -d ../CA -i req -o Alice-dsa.cert -f ../tests.pw 
cert.sh: #8916: Sign Alice's DSA Request - PASSED
cert.sh: Import Alice's DSA Cert --------------------------
certutil -A -n Alice-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8917: Import Alice's DSA Cert - PASSED
cert.sh SUCCESS: Alice's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8918: Generate mixed DSA Cert Request for Alice - PASSED
cert.sh: Sign Alice's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20030 -v 60 -d ../CA -i req -o Alice-dsamixed.cert -f ../tests.pw 
cert.sh: #8919: Sign Alice's DSA Request with RSA - PASSED
cert.sh: Import Alice's mixed DSA Cert --------------------------
certutil -A -n Alice-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8920: Import Alice's mixed DSA Cert - PASSED
cert.sh SUCCESS: Alice's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8921: Generate EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request --------------------------
certutil -C -c TestCA-ec -m 30 -v 60 -d ../CA -i req -o Alice-ec.cert -f ../tests.pw 
cert.sh: #8922: Sign Alice's EC Request - PASSED
cert.sh: Import Alice's EC Cert --------------------------
certutil -A -n Alice-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8923: Import Alice's EC Cert - PASSED
cert.sh SUCCESS: Alice's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Alice --------------------------
certutil -s "CN=Alice, E=Alice-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8924: Generate mixed EC Cert Request for Alice - PASSED
cert.sh: Sign Alice's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10030 -v 60 -d ../CA -i req -o Alice-ecmixed.cert -f ../tests.pw 
cert.sh: #8925: Sign Alice's EC Request with RSA - PASSED
cert.sh: Import Alice's mixed EC Cert --------------------------
certutil -A -n Alice-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/alicedir -f ../tests.pw -i Alice-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8926: Import Alice's mixed EC Cert - PASSED
cert.sh SUCCESS: Alice's mixed EC Cert Created
cert.sh: Initializing Bob's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw
cert.sh: #8927: Initializing Bob's Cert DB - PASSED
cert.sh: Loading root cert module to Bob's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8928: Loading root cert module to Bob's Cert DB - PASSED
cert.sh: Import Root CA for Bob --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA.ca.cert
cert.sh: #8929: Import Root CA for Bob - PASSED
cert.sh: Import DSA Root CA for Bob --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8930: Import DSA Root CA for Bob - PASSED
cert.sh: Import EC Root CA for Bob --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -i ../CA/TestCA-ec.ca.cert
cert.sh: #8931: Import EC Root CA for Bob - PASSED
cert.sh: Generate Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8932: Generate Cert Request for Bob - PASSED
cert.sh: Sign Bob's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o Bob.cert -f ../tests.pw 
cert.sh: #8933: Sign Bob's Request - PASSED
cert.sh: Import Bob's Cert --------------------------
certutil -A -n Bob -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8934: Import Bob's Cert - PASSED
cert.sh SUCCESS: Bob's Cert Created
cert.sh: Generate DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8935: Generate DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o Bob-dsa.cert -f ../tests.pw 
cert.sh: #8936: Sign Bob's DSA Request - PASSED
cert.sh: Import Bob's DSA Cert --------------------------
certutil -A -n Bob-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8937: Import Bob's DSA Cert - PASSED
cert.sh SUCCESS: Bob's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8938: Generate mixed DSA Cert Request for Bob - PASSED
cert.sh: Sign Bob's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o Bob-dsamixed.cert -f ../tests.pw 
cert.sh: #8939: Sign Bob's DSA Request with RSA - PASSED
cert.sh: Import Bob's mixed DSA Cert --------------------------
certutil -A -n Bob-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8940: Import Bob's mixed DSA Cert - PASSED
cert.sh SUCCESS: Bob's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8941: Generate EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o Bob-ec.cert -f ../tests.pw 
cert.sh: #8942: Sign Bob's EC Request - PASSED
cert.sh: Import Bob's EC Cert --------------------------
certutil -A -n Bob-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8943: Import Bob's EC Cert - PASSED
cert.sh SUCCESS: Bob's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Bob --------------------------
certutil -s "CN=Bob, E=Bob-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8944: Generate mixed EC Cert Request for Bob - PASSED
cert.sh: Sign Bob's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o Bob-ecmixed.cert -f ../tests.pw 
cert.sh: #8945: Sign Bob's EC Request with RSA - PASSED
cert.sh: Import Bob's mixed EC Cert --------------------------
certutil -A -n Bob-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/bobdir -f ../tests.pw -i Bob-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8946: Import Bob's mixed EC Cert - PASSED
cert.sh SUCCESS: Bob's mixed EC Cert Created
cert.sh: Creating Dave's Certificate -------------------------
cert.sh: Initializing Dave's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw
cert.sh: #8947: Initializing Dave's Cert DB - PASSED
cert.sh: Loading root cert module to Dave's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8948: Loading root cert module to Dave's Cert DB - PASSED
cert.sh: Import Root CA for Dave --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA.ca.cert
cert.sh: #8949: Import Root CA for Dave - PASSED
cert.sh: Import DSA Root CA for Dave --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8950: Import DSA Root CA for Dave - PASSED
cert.sh: Import EC Root CA for Dave --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -i ../CA/TestCA-ec.ca.cert
cert.sh: #8951: Import EC Root CA for Dave - PASSED
cert.sh: Generate Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8952: Generate Cert Request for Dave - PASSED
cert.sh: Sign Dave's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o Dave.cert -f ../tests.pw 
cert.sh: #8953: Sign Dave's Request - PASSED
cert.sh: Import Dave's Cert --------------------------
certutil -A -n Dave -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8954: Import Dave's Cert - PASSED
cert.sh SUCCESS: Dave's Cert Created
cert.sh: Generate DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8955: Generate DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o Dave-dsa.cert -f ../tests.pw 
cert.sh: #8956: Sign Dave's DSA Request - PASSED
cert.sh: Import Dave's DSA Cert --------------------------
certutil -A -n Dave-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8957: Import Dave's DSA Cert - PASSED
cert.sh SUCCESS: Dave's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8958: Generate mixed DSA Cert Request for Dave - PASSED
cert.sh: Sign Dave's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o Dave-dsamixed.cert -f ../tests.pw 
cert.sh: #8959: Sign Dave's DSA Request with RSA - PASSED
cert.sh: Import Dave's mixed DSA Cert --------------------------
certutil -A -n Dave-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8960: Import Dave's mixed DSA Cert - PASSED
cert.sh SUCCESS: Dave's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8961: Generate EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o Dave-ec.cert -f ../tests.pw 
cert.sh: #8962: Sign Dave's EC Request - PASSED
cert.sh: Import Dave's EC Cert --------------------------
certutil -A -n Dave-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8963: Import Dave's EC Cert - PASSED
cert.sh SUCCESS: Dave's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Dave --------------------------
certutil -s "CN=Dave, E=Dave-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8964: Generate mixed EC Cert Request for Dave - PASSED
cert.sh: Sign Dave's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o Dave-ecmixed.cert -f ../tests.pw 
cert.sh: #8965: Sign Dave's EC Request with RSA - PASSED
cert.sh: Import Dave's mixed EC Cert --------------------------
certutil -A -n Dave-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dave -f ../tests.pw -i Dave-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8966: Import Dave's mixed EC Cert - PASSED
cert.sh SUCCESS: Dave's mixed EC Cert Created
cert.sh: Creating multiEmail's Certificate --------------------
cert.sh: Initializing Eve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw
cert.sh: #8967: Initializing Eve's Cert DB - PASSED
cert.sh: Loading root cert module to Eve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8968: Loading root cert module to Eve's Cert DB - PASSED
cert.sh: Import Root CA for Eve --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA.ca.cert
cert.sh: #8969: Import Root CA for Eve - PASSED
cert.sh: Import DSA Root CA for Eve --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-dsa.ca.cert
cert.sh: #8970: Import DSA Root CA for Eve - PASSED
cert.sh: Import EC Root CA for Eve --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -i ../CA/TestCA-ec.ca.cert
cert.sh: #8971: Import EC Root CA for Eve - PASSED
cert.sh: Generate Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8972: Generate Cert Request for Eve - PASSED
cert.sh: Sign Eve's Request --------------------------
certutil -C -c TestCA -m 60 -v 60 -d ../CA -i req -o Eve.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8973: Sign Eve's Request - PASSED
cert.sh: Import Eve's Cert --------------------------
certutil -A -n Eve -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8974: Import Eve's Cert - PASSED
cert.sh SUCCESS: Eve's Cert Created
cert.sh: Generate DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8975: Generate DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 60 -v 60 -d ../CA -i req -o Eve-dsa.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8976: Sign Eve's DSA Request - PASSED
cert.sh: Import Eve's DSA Cert --------------------------
certutil -A -n Eve-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8977: Import Eve's DSA Cert - PASSED
cert.sh SUCCESS: Eve's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8978: Generate mixed DSA Cert Request for Eve - PASSED
cert.sh: Sign Eve's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20060 -v 60 -d ../CA -i req -o Eve-dsamixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8979: Sign Eve's DSA Request with RSA - PASSED
cert.sh: Import Eve's mixed DSA Cert --------------------------
certutil -A -n Eve-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8980: Import Eve's mixed DSA Cert - PASSED
cert.sh SUCCESS: Eve's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8981: Generate EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request --------------------------
certutil -C -c TestCA-ec -m 60 -v 60 -d ../CA -i req -o Eve-ec.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8982: Sign Eve's EC Request - PASSED
cert.sh: Import Eve's EC Cert --------------------------
certutil -A -n Eve-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8983: Import Eve's EC Cert - PASSED
cert.sh SUCCESS: Eve's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Eve --------------------------
certutil -s "CN=Eve, E=Eve-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #8984: Generate mixed EC Cert Request for Eve - PASSED
cert.sh: Sign Eve's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10060 -v 60 -d ../CA -i req -o Eve-ecmixed.cert -f ../tests.pw -7 eve@bogus.net,eve@bogus.cc,beve@bogus.com
cert.sh: #8985: Sign Eve's EC Request with RSA - PASSED
cert.sh: Import Eve's mixed EC Cert --------------------------
certutil -A -n Eve-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eve -f ../tests.pw -i Eve-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8986: Import Eve's mixed EC Cert - PASSED
cert.sh SUCCESS: Eve's mixed EC Cert Created
cert.sh: Importing Certificates ==============================
cert.sh: Import Bob's cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob.cert
cert.sh: #8987: Import Bob's cert into Alice's db - PASSED
cert.sh: Import Dave's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #8988: Import Dave's cert into Alice's DB - PASSED
cert.sh: Import Dave's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave.cert
cert.sh: #8989: Import Dave's cert into Bob's DB - PASSED
cert.sh: Import Eve's cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #8990: Import Eve's cert into Alice's DB - PASSED
cert.sh: Import Eve's cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../eve/Eve.cert
cert.sh: #8991: Import Eve's cert into Bob's DB - PASSED
cert.sh: Importing EC Certificates ==============================
cert.sh: Import Bob's EC cert into Alice's db --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../bobdir/Bob-ec.cert
cert.sh: #8992: Import Bob's EC cert into Alice's db - PASSED
cert.sh: Import Dave's EC cert into Alice's DB --------------------------
certutil -E -t ,, -d ../alicedir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #8993: Import Dave's EC cert into Alice's DB - PASSED
cert.sh: Import Dave's EC cert into Bob's DB --------------------------
certutil -E -t ,, -d ../bobdir -f ../tests.pw -i ../dave/Dave-ec.cert
cert.sh: #8994: Import Dave's EC cert into Bob's DB - PASSED
cert.sh SUCCESS: SMIME passed
cert.sh: Creating FIPS 140 DSA Certificates ==============
cert.sh: Initializing FIPS PUB 140 Test Certificate's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw
cert.sh: #8995: Initializing FIPS PUB 140 Test Certificate's Cert DB - PASSED
cert.sh: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #8996: Loading root cert module to FIPS PUB 140 Test Certificate's Cert DB (ext.) - PASSED
cert.sh: Enable FIPS mode on database -----------------------
modutil -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips -fips true 
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
FIPS mode enabled.
cert.sh: #8997: Enable FIPS mode on database for FIPS PUB 140 Test Certificate - PASSED
cert.sh: Generate Certificate for FIPS PUB 140 Test Certificate --------------------------
certutil -s "CN=FIPS PUB 140 Test Certificate, E=fips@bogus.com, O=BOGUS NSS, OU=FIPS PUB 140, L=Mountain View, ST=California, C=US" -S -n FIPS_PUB_140_Test_Certificate -x -t Cu,Cu,Cu -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips -f ../tests.fipspw -k dsa -v 600 -m 500 -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #8998: Generate Certificate for FIPS PUB 140 Test Certificate - PASSED
cert.sh SUCCESS: FIPS passed
cert.sh: Creating Server CA Issued Certificate for 
             EC Curves Test Certificates ------------------------------------
cert.sh: Initializing EC Curve's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw
cert.sh: #8999: Initializing EC Curve's Cert DB - PASSED
cert.sh: Loading root cert module to EC Curve's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9000: Loading root cert module to EC Curve's Cert DB - PASSED
cert.sh: Import EC Root CA for EC Curves Test Certificates --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -i ../CA/TestCA-ec.ca.cert
cert.sh: #9001: Import EC Root CA for EC Curves Test Certificates - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp256 --------------------------
certutil -s "CN=Curve-nistp256, E=Curve-nistp256-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp256 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9002: Generate EC Cert Request for Curve-nistp256 - PASSED
cert.sh: Sign Curve-nistp256's EC Request --------------------------
certutil -C -c TestCA-ec -m 2001 -v 60 -d ../CA -i req -o Curve-nistp256-ec.cert -f ../tests.pw 
cert.sh: #9003: Sign Curve-nistp256's EC Request - PASSED
cert.sh: Import Curve-nistp256's EC Cert --------------------------
certutil -A -n Curve-nistp256-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp256-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9004: Import Curve-nistp256's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp384 --------------------------
certutil -s "CN=Curve-nistp384, E=Curve-nistp384-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp384 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9005: Generate EC Cert Request for Curve-nistp384 - PASSED
cert.sh: Sign Curve-nistp384's EC Request --------------------------
certutil -C -c TestCA-ec -m 2002 -v 60 -d ../CA -i req -o Curve-nistp384-ec.cert -f ../tests.pw 
cert.sh: #9006: Sign Curve-nistp384's EC Request - PASSED
cert.sh: Import Curve-nistp384's EC Cert --------------------------
certutil -A -n Curve-nistp384-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp384-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9007: Import Curve-nistp384's EC Cert - PASSED
cert.sh: Generate EC Cert Request for Curve-nistp521 --------------------------
certutil -s "CN=Curve-nistp521, E=Curve-nistp521-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q nistp521 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9008: Generate EC Cert Request for Curve-nistp521 - PASSED
cert.sh: Sign Curve-nistp521's EC Request --------------------------
certutil -C -c TestCA-ec -m 2003 -v 60 -d ../CA -i req -o Curve-nistp521-ec.cert -f ../tests.pw 
cert.sh: #9009: Sign Curve-nistp521's EC Request - PASSED
cert.sh: Import Curve-nistp521's EC Cert --------------------------
certutil -A -n Curve-nistp521-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/eccurves -f ../tests.pw -i Curve-nistp521-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9010: Import Curve-nistp521's EC Cert - PASSED
cert.sh: Initializing TestExt's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw
cert.sh: #9011: Initializing TestExt's Cert DB - PASSED
cert.sh: Loading root cert module to TestExt's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9012: Loading root cert module to TestExt's Cert DB - PASSED
cert.sh: Import Root CA for TestExt --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA.ca.cert
cert.sh: #9013: Import Root CA for TestExt - PASSED
cert.sh: Import DSA Root CA for TestExt --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9014: Import DSA Root CA for TestExt - PASSED
cert.sh: Import EC Root CA for TestExt --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -i ../CA/TestCA-ec.ca.cert
cert.sh: #9015: Import EC Root CA for TestExt - PASSED
cert.sh: Generate Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9016: Generate Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's Request --------------------------
certutil -C -c TestCA -m 90 -v 60 -d ../CA -i req -o TestExt.cert -f ../tests.pw 
cert.sh: #9017: Sign TestExt's Request - PASSED
cert.sh: Import TestExt's Cert --------------------------
certutil -A -n TestExt -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9018: Import TestExt's Cert - PASSED
cert.sh SUCCESS: TestExt's Cert Created
cert.sh: Generate DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9019: Generate DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 90 -v 60 -d ../CA -i req -o TestExt-dsa.cert -f ../tests.pw 
cert.sh: #9020: Sign TestExt's DSA Request - PASSED
cert.sh: Import TestExt's DSA Cert --------------------------
certutil -A -n TestExt-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9021: Import TestExt's DSA Cert - PASSED
cert.sh SUCCESS: TestExt's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9022: Generate mixed DSA Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20090 -v 60 -d ../CA -i req -o TestExt-dsamixed.cert -f ../tests.pw 
cert.sh: #9023: Sign TestExt's DSA Request with RSA - PASSED
cert.sh: Import TestExt's mixed DSA Cert --------------------------
certutil -A -n TestExt-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9024: Import TestExt's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestExt's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9025: Generate EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request --------------------------
certutil -C -c TestCA-ec -m 90 -v 60 -d ../CA -i req -o TestExt-ec.cert -f ../tests.pw 
cert.sh: #9026: Sign TestExt's EC Request - PASSED
cert.sh: Import TestExt's EC Cert --------------------------
certutil -A -n TestExt-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9027: Import TestExt's EC Cert - PASSED
cert.sh SUCCESS: TestExt's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestExt --------------------------
certutil -s "CN=TestExt, E=TestExt-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9028: Generate mixed EC Cert Request for TestExt - PASSED
cert.sh: Sign TestExt's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10090 -v 60 -d ../CA -i req -o TestExt-ecmixed.cert -f ../tests.pw 
cert.sh: #9029: Sign TestExt's EC Request with RSA - PASSED
cert.sh: Import TestExt's mixed EC Cert --------------------------
certutil -A -n TestExt-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -i TestExt-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9030: Import TestExt's mixed EC Cert - PASSED
cert.sh SUCCESS: TestExt's mixed EC Cert Created
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt1 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt1, E=TestExt1@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt1
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:af
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:02 2017
            Not After : Wed Aug 02 16:01:02 2017
        Subject: "CN=TestExt1,E=TestExt1@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:e6:14:80:90:94:64:fc:23:5c:73:4f:1c:f8:5f:82:
                    9c:b0:7b:95:6e:f4:52:b9:d9:ea:5f:c4:79:3a:ee:e2:
                    fd:28:72:a3:09:1a:a7:90:3d:13:9b:2d:29:19:20:df:
                    4d:8d:4b:63:33:20:c5:41:b9:af:33:6b:07:a9:a2:b8:
                    b5:8d:23:78:58:29:58:9a:3d:e0:ee:cf:ea:a4:21:cd:
                    a1:b5:9b:c9:1a:6b:02:f2:c8:f4:fe:20:67:dd:94:ba:
                    62:fa:2f:85:e6:0f:8a:51:fa:e0:f1:5e:dd:9a:7f:25:
                    0c:01:43:2e:42:2c:91:7e:4d:25:4c:ef:8c:c7:73:30:
                    3d:8e:ee:0d:e2:0c:55:96:c7:7e:ab:0d:86:13:b3:41:
                    41:45:de:82:0c:32:c8:7b:23:89:20:71:0c:a9:b1:2a:
                    8e:15:62:22:93:90:8a:71:1e:68:1d:c4:6d:d5:84:60:
                    4b:f4:a0:16:7c:55:99:4e:b8:d3:26:b8:b6:78:82:5d:
                    0b:f1:92:a8:b5:7f:c5:01:4a:48:1a:36:f4:6d:13:01:
                    02:3b:f6:02:61:5b:e3:0a:21:03:52:c5:7b:5a:8d:0d:
                    a7:ea:6c:cc:1a:b0:c5:97:49:6f:36:9e:e5:40:58:98:
                    9a:9e:da:19:9a:da:29:84:db:3b:b1:15:8b:5a:83:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:70:aa:ac:63:f7:07:82:63:36:66:78:ae:07:98:2f:
        96:06:c9:b2:87:47:b6:24:34:1c:4d:f4:e3:af:43:0b:
        1c:59:cd:75:10:28:c7:cb:13:fb:ae:8e:6c:41:69:ab:
        4c:af:be:b4:8d:98:2f:e6:25:cf:aa:fc:5a:58:c0:f2:
        8c:aa:11:4b:f7:e3:7d:6d:66:60:a6:88:00:c1:2b:e8:
        4a:f9:f3:15:72:af:e5:78:43:b0:7d:93:06:cd:b8:1d:
        cc:e2:d7:0e:b7:45:af:57:b2:8e:8e:7d:06:9c:af:c7:
        9e:ed:3c:a1:e5:1e:8a:0b:24:64:d7:26:14:e1:cf:ac:
        ce:99:45:e7:70:26:69:93:1f:aa:c6:1b:26:38:0b:1a:
        88:44:23:a6:69:da:75:fa:6d:9d:6e:74:7a:cc:d4:0f:
        54:66:57:da:e3:53:7d:b6:79:d5:c9:ba:5e:80:18:04:
        3f:bd:e1:45:ae:4e:b6:15:20:6e:8b:1b:b3:30:2f:d9:
        62:da:fa:d2:6e:ba:d7:82:66:09:40:38:96:bd:b8:bb:
        12:d6:04:d8:40:28:eb:11:66:fe:c3:2c:95:ed:b9:f0:
        74:52:65:b1:4d:e7:78:0b:2c:f4:62:ea:ac:65:3b:82:
        42:cb:a1:12:01:e3:ab:c3:83:b4:d4:bb:a8:f0:4b:33
    Fingerprint (SHA-256):
        64:10:31:58:60:57:D5:23:F9:B6:15:68:05:E3:71:20:87:47:2A:19:74:9F:8F:7C:9F:26:7E:AC:C0:96:7C:9F
    Fingerprint (SHA1):
        2F:68:28:75:4A:C2:96:9C:F0:2B:1B:65:97:56:11:82:15:1F:15:BF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9031: Certificate Key Usage Extension (1) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt2 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt2, E=TestExt2@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:b1
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:04 2017
            Not After : Wed Aug 02 16:01:04 2017
        Subject: "CN=TestExt2,E=TestExt2@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d5:5d:b3:9c:9b:35:08:8c:eb:93:3f:9c:49:a9:7c:db:
                    fd:06:b9:0c:3b:3e:a0:dd:de:2b:ec:b5:06:97:73:8b:
                    30:c4:3a:92:06:db:22:08:b1:b1:01:2f:83:38:b7:e6:
                    52:50:cd:02:c7:3d:7e:c0:eb:f0:d1:fe:a1:a7:e4:e1:
                    64:26:56:89:68:1e:29:98:9f:ac:c5:65:06:2c:fc:a8:
                    93:f2:d9:5f:ad:b6:5c:48:fa:db:f8:42:21:93:5a:0b:
                    e7:6b:fe:68:35:a9:bc:22:97:f3:47:94:c5:28:a7:dc:
                    61:37:c9:4b:1b:ee:f3:98:9f:5d:30:8b:e6:5b:9a:c1:
                    4e:ea:d0:a6:0d:1c:ea:99:af:1d:7f:66:fe:55:ce:c9:
                    fe:d5:49:d8:5b:1e:bf:0e:7d:2e:26:8c:32:66:0f:b2:
                    b7:a6:b5:73:1d:e7:03:43:30:7e:c5:ed:d0:7b:52:5d:
                    52:d2:02:f6:ba:78:eb:0f:4f:58:a5:50:63:a8:17:0b:
                    a8:e7:b7:7e:51:1e:14:66:06:0b:1e:4b:7f:ef:39:6e:
                    d8:19:eb:18:1a:9c:3a:a2:59:a1:2d:5c:2c:4f:a2:19:
                    09:a5:b1:c2:f2:e9:cc:20:06:a9:2a:c3:06:d4:fe:44:
                    ea:35:9e:44:b6:73:ba:e0:8b:3e:b7:21:cd:26:1f:55
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        65:1b:19:ea:f3:9c:90:f1:4d:e0:8d:77:4f:a5:57:15:
        de:ea:e7:fc:62:75:b4:c2:fc:d1:5e:ac:b9:e0:c2:8a:
        9f:68:65:25:bc:85:5b:c0:47:4f:0c:dd:d8:1a:40:9c:
        9a:7d:40:c5:de:bc:4d:37:f5:aa:81:f0:47:99:4e:ff:
        8f:b5:82:29:bc:82:75:23:70:60:92:2d:62:b5:ac:1f:
        16:1c:3b:49:ca:86:83:1b:92:98:e4:62:46:ad:51:e4:
        1b:27:8a:35:08:05:a6:f3:72:fd:da:18:59:5b:52:34:
        0d:61:56:32:20:ff:bc:b8:48:59:e5:54:20:e8:fd:12:
        94:65:e8:50:83:9c:70:3b:53:ed:16:e2:cf:8c:51:22:
        15:e2:d4:13:c7:61:53:c0:66:b2:97:67:53:85:57:82:
        58:02:9f:99:5b:5a:11:6b:a7:8a:cb:2e:e9:03:b7:9b:
        7f:3e:66:0b:9a:96:41:93:73:ff:00:e6:74:a4:76:84:
        f0:7a:b0:de:ea:55:61:33:ec:e8:d0:93:31:a3:3c:1a:
        f5:b4:e2:d2:98:1a:a9:f5:c5:f7:11:ce:f0:a3:e5:74:
        d4:9b:e2:e9:1b:76:f5:4e:7a:81:bf:0e:2d:bb:37:77:
        62:64:8e:5d:25:9f:fe:5e:57:53:b3:70:de:1c:89:1c
    Fingerprint (SHA-256):
        EB:AB:EA:BB:D3:0E:F0:AC:D9:67:4A:54:08:01:9F:46:13:82:19:E4:ED:4C:AE:43:72:36:84:E2:0F:43:06:B4
    Fingerprint (SHA1):
        C8:7F:96:B6:EE:F4:3B:E4:F2:1D:B2:CD:12:2C:F9:51:FC:BB:CA:8D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9032: Certificate Key Usage Extension (2) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt3 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt3, E=TestExt3@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
-1
n
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:b3
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:05 2017
            Not After : Wed Aug 02 16:01:05 2017
        Subject: "CN=TestExt3,E=TestExt3@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:39:b3:65:01:95:6f:51:35:5f:9e:9b:32:3d:54:da:
                    34:db:27:a1:0a:92:25:a0:67:f4:dd:cd:00:e9:5c:02:
                    0d:e5:f9:3d:18:71:c2:e7:39:fa:6c:29:b7:04:5b:e0:
                    17:88:28:2e:e9:b6:35:50:6f:77:5c:a6:f3:f6:3c:72:
                    f3:0a:a7:d3:05:59:70:59:17:b1:d3:c4:01:89:25:3d:
                    6a:54:c1:f3:90:a8:d8:17:82:f1:48:4d:34:a9:12:a3:
                    9b:50:44:e5:55:e8:8e:a0:d0:fb:c8:a7:6f:fc:22:c8:
                    ac:46:53:47:06:68:cc:66:6f:6a:ee:b3:64:36:49:d9:
                    e3:01:a8:5f:11:b5:14:a4:fe:a8:61:16:ef:71:aa:c2:
                    c7:df:3f:06:8a:01:b0:08:8a:e5:50:01:ed:5d:fe:f7:
                    46:5e:e7:ec:86:f2:cc:68:5a:0c:67:96:6b:bc:e1:bf:
                    a4:b3:2d:ca:99:e8:93:79:d1:00:7d:de:9d:f4:45:bc:
                    4e:d1:ef:d1:ce:5e:53:70:07:4c:6a:f1:f6:39:89:dd:
                    2d:30:da:8c:f1:58:29:27:c7:56:8d:ca:dc:22:9c:ef:
                    72:14:9c:bc:04:ea:a4:11:14:0c:fa:d0:e7:ba:6c:71:
                    5f:79:41:83:63:10:b9:f0:2e:22:42:bd:95:1e:8b:c9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        70:f9:ce:b8:23:7e:e1:fb:32:86:9f:40:f8:5d:3b:4e:
        73:c9:ac:72:66:ba:22:bf:fe:ff:33:6d:91:55:f5:e7:
        64:b8:4b:60:69:53:0e:b0:8a:f9:2d:4d:a0:dc:ec:dc:
        63:9b:a2:51:4a:0c:32:f9:75:e3:ee:ec:a4:99:41:33:
        72:f1:9f:f5:13:f5:4e:72:06:dd:65:6f:47:fb:ec:af:
        ea:b9:19:97:f4:ba:0f:4e:3a:6b:d1:64:f3:26:6f:2a:
        ac:b8:20:4b:b4:ca:c7:21:a2:0c:ba:47:9f:a9:de:76:
        c1:b1:57:f5:6b:b8:af:9a:cd:7a:8d:50:df:36:09:af:
        f2:f4:8f:60:28:b9:b3:88:c0:e6:80:dd:71:e6:24:fd:
        16:91:99:db:3c:2b:60:ac:f4:20:97:cc:33:0c:35:5e:
        a1:dc:24:c6:d8:c8:1d:1f:ea:78:28:96:9d:c1:ab:03:
        d4:07:5e:ff:b5:dc:57:e1:96:6a:61:16:03:70:30:8a:
        5f:4d:06:55:85:4c:0b:70:b8:00:94:ee:97:4d:09:c8:
        20:39:bb:df:6c:fe:b9:f1:5d:ce:9c:82:ca:bd:9f:53:
        78:d3:c3:8e:ab:bf:45:2d:ce:05:31:ea:a7:7e:b4:42:
        bf:11:a6:52:89:bb:77:a3:78:8a:51:db:11:b1:6d:bd
    Fingerprint (SHA-256):
        4D:55:F9:CC:93:5D:FC:28:8A:24:7E:C5:A5:34:EF:3C:E2:E7:67:7F:2C:C6:FE:D7:A9:64:A6:E9:1F:27:47:F7
    Fingerprint (SHA1):
        14:24:E3:37:8E:71:F3:1A:5F:A0:75:C3:5B:A7:1E:7D:16:BB:7F:C9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9033: Certificate Basic Constraints Extension (3) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt4 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt4, E=TestExt4@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -2 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
n
-1
y
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt4
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:b5
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:06 2017
            Not After : Wed Aug 02 16:01:06 2017
        Subject: "CN=TestExt4,E=TestExt4@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:d2:71:42:12:9f:3f:40:ea:50:c7:09:78:e9:6e:69:
                    2b:49:e9:5a:2a:43:64:96:7a:ac:af:32:0e:83:69:92:
                    e0:9a:ce:42:6b:72:f1:77:f7:70:25:81:84:c2:5e:7d:
                    43:f8:5a:fe:d0:68:37:9b:e4:f5:2c:58:03:01:a1:7f:
                    b4:8e:12:90:e1:b6:c7:39:83:61:bd:93:f7:ac:09:ac:
                    77:f6:62:43:50:7b:8c:0b:f1:e6:ee:18:ed:35:c7:2b:
                    4b:89:fb:40:af:e9:11:3a:63:60:0a:62:c1:4e:fc:a4:
                    77:f3:26:e3:34:d8:8c:5d:88:43:fb:f8:21:a7:17:6d:
                    04:4b:fa:e3:d6:d7:1c:24:c8:c7:a3:8c:d7:09:07:97:
                    a9:d6:3a:f8:16:16:71:ce:44:41:06:d8:1d:22:6c:de:
                    11:4b:95:89:04:26:a2:f2:1f:9f:a6:76:ab:b2:e2:d1:
                    6b:cf:88:f1:40:45:5e:5b:d6:02:3a:64:dd:c2:97:ef:
                    57:ac:b9:73:bb:34:7d:47:cf:51:e5:70:1e:38:da:19:
                    18:83:a8:8b:04:5d:99:bc:4b:07:4b:0e:68:09:f3:50:
                    c5:f9:56:ba:64:5c:29:93:38:4b:6f:78:0e:69:5b:20:
                    c7:31:4f:59:0f:6c:8a:f9:59:07:0b:27:fc:ca:a1:0f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is not a CA.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b3:af:c2:1b:27:ca:80:b5:49:f3:d3:4d:72:d4:bb:c3:
        17:53:62:c2:3c:dd:b3:0a:67:70:ce:4f:b5:eb:13:01:
        d2:5a:42:18:02:98:a5:e8:d8:db:87:f8:54:81:85:0e:
        43:0f:75:97:91:a8:f8:4f:29:07:ca:6d:d1:64:30:fa:
        ff:fd:91:0d:70:40:53:de:21:f0:8c:32:ab:b4:ef:a3:
        22:77:b8:01:b9:7b:af:23:5a:08:8d:79:e2:6c:ac:b0:
        7d:d9:a1:f5:9f:f1:4e:2d:ad:db:dd:48:ae:47:a6:ab:
        0e:ba:9d:97:25:2d:d4:a3:75:1c:01:aa:bb:04:72:0e:
        8f:69:9a:53:a1:f5:12:44:60:0c:20:b9:19:d8:52:b6:
        aa:9b:ab:eb:4d:de:db:6e:95:60:e4:99:ec:f4:0d:b9:
        20:c3:4b:d6:7a:3a:9d:b3:9d:0c:37:4e:f0:b4:15:6e:
        3f:b2:78:d3:01:d2:5d:50:92:09:d4:49:6e:88:15:d6:
        03:b4:be:91:95:f6:78:af:37:49:aa:02:c4:1a:b6:b7:
        1a:cf:fa:70:1c:1c:e1:d5:01:9e:92:07:91:cb:28:cb:
        83:37:1c:76:b6:59:be:2f:43:d4:ad:19:8a:7a:28:8e:
        06:1b:ee:7e:72:70:df:be:bf:84:9c:5f:7c:3e:ee:ba
    Fingerprint (SHA-256):
        67:83:0D:BB:A4:F0:6A:2F:B5:4E:90:1A:3B:1E:52:F9:C6:40:54:91:F5:A7:34:73:F4:CC:93:E5:AA:65:F0:84
    Fingerprint (SHA1):
        97:ED:4B:68:B2:6E:6F:40:79:1D:83:D9:0E:2E:F0:0E:F3:E1:37:80
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9034: Certificate Basic Constraints Extension (4) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt5 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt5, E=TestExt5@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
12341235123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:b8
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:07 2017
            Not After : Wed Aug 02 16:01:07 2017
        Subject: "CN=TestExt5,E=TestExt5@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:4d:46:99:66:cd:60:88:1b:6c:59:ae:bb:26:90:2d:
                    27:aa:90:dc:6e:56:24:02:4c:f9:7f:30:34:9d:7c:bf:
                    4b:df:ff:e8:4e:01:8f:f6:bc:dd:e5:39:4f:9f:7e:43:
                    90:0b:58:7d:b7:19:76:20:1d:28:3c:59:90:f0:9f:c1:
                    40:7a:45:cf:e9:1a:ca:f2:ef:4d:44:23:f3:d9:82:d3:
                    7c:18:21:3b:d0:31:b4:fe:84:58:d2:52:5c:16:09:2f:
                    95:64:d1:85:1d:b7:32:53:66:9d:ac:3d:cd:c6:d1:2d:
                    56:40:99:6a:8c:88:d7:ad:34:92:3c:73:58:27:2a:f3:
                    91:21:c9:09:46:70:90:5f:40:71:82:96:a1:64:de:1a:
                    e6:dc:7a:2f:25:5c:32:29:3a:27:d2:15:93:03:fe:e6:
                    24:e0:4e:56:4d:0c:6c:49:ea:20:07:3b:fe:b2:38:53:
                    59:a8:1e:1b:94:ac:d2:74:7b:98:80:96:2f:13:f4:a1:
                    10:30:86:7f:c9:20:72:90:47:a2:0a:42:dc:4b:66:92:
                    01:fa:ca:e9:f1:9c:2c:55:03:d7:a5:3e:1d:25:9e:ca:
                    c8:f3:01:2e:d0:ec:ed:b5:7a:ed:ef:15:44:6d:4a:ab:
                    6c:49:50:bc:ac:75:09:11:48:37:46:85:3c:58:0b:09
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Key ID:
                12341235123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        01:06:a0:5a:b1:5b:aa:6e:76:75:a3:50:f2:e6:d7:1f:
        75:3d:be:ae:a9:20:38:5c:6d:41:45:90:f6:34:dd:b3:
        ab:74:63:0b:a7:d1:c1:7a:9e:73:d2:30:59:38:4e:a4:
        1f:02:9c:5e:02:b2:94:5f:4d:17:5e:83:eb:82:74:99:
        40:21:9b:53:f9:da:9b:ea:c3:c6:39:21:6a:7f:75:74:
        f1:8d:7e:4d:97:5c:16:b0:c2:6f:5f:29:a8:46:c1:af:
        03:00:e1:8e:43:6e:24:8f:1e:4b:e7:27:e8:b0:3e:f6:
        0f:cb:64:2f:d7:99:bb:19:d9:d1:85:d3:9e:4b:99:4b:
        3a:85:96:7b:71:5b:98:49:05:a1:97:b5:47:00:45:5c:
        e3:6d:91:67:98:bc:8c:e7:1e:4e:8c:4e:14:e8:29:1a:
        1e:6f:30:60:99:c0:ea:99:c1:13:5b:8b:d2:a3:d1:1a:
        eb:5f:33:1d:02:ad:95:4a:a3:be:fb:e6:ab:ee:56:9f:
        e0:25:3b:8a:7e:c9:bf:a5:1e:ae:31:b9:a2:2f:0b:c8:
        06:05:b7:10:00:6f:3a:3d:f4:15:90:ef:40:0c:31:97:
        27:c5:d2:02:0c:92:12:2a:8b:2b:26:5f:2f:2c:db:af:
        24:66:02:1e:f1:91:e8:20:63:15:25:5f:0e:cf:95:aa
    Fingerprint (SHA-256):
        CD:46:1B:91:16:66:E6:52:15:EA:B6:B9:B8:54:8B:AF:BE:83:A5:34:C3:C3:D0:79:96:49:FE:A9:90:DC:E7:8F
    Fingerprint (SHA1):
        93:41:2A:B2:FA:24:5F:E0:9C:DB:81:BF:DB:02:3A:BE:9B:72:DE:A4
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9035: Certificate Authority Key Identifier Extension (5) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt6 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt6, E=TestExt6@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -3 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
y
3
test.com
214123
y
Generating key.  This may take a few moments...
Enter value for the authKeyID extension [y/N]?
Enter value for the key identifier fields,enter to omit:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter value for the authCertSerial field, enter to omit:
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:ba
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:09 2017
            Not After : Wed Aug 02 16:01:09 2017
        Subject: "CN=TestExt6,E=TestExt6@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e6:41:3c:a6:a2:91:52:2f:16:18:71:eb:55:00:75:67:
                    90:bf:de:a8:98:04:ca:72:7d:46:db:af:7e:ad:91:21:
                    55:2a:06:57:f4:76:34:89:6b:6c:74:f2:e5:9e:c4:f5:
                    b6:e1:82:0d:87:05:06:98:33:ea:8c:1c:8f:a7:5d:88:
                    c6:79:c5:b6:9a:d9:57:27:39:25:be:36:f6:3e:90:cc:
                    b7:55:e8:62:1e:f9:b7:6b:5d:f8:bc:ae:47:44:d5:25:
                    0b:19:a3:48:98:0b:03:8c:05:64:91:6a:6a:8e:6e:c6:
                    09:32:d7:e6:99:62:9f:a2:cc:1d:f1:4a:d4:39:d7:a7:
                    ab:2e:21:a6:a4:a8:1e:62:f5:58:1b:f1:bd:71:62:55:
                    51:95:b9:6d:27:f8:76:ef:50:c6:ee:66:1c:08:e8:01:
                    e6:90:0b:e0:68:62:eb:ce:6e:ea:7a:3f:bb:e9:6e:66:
                    ba:00:6b:35:53:70:f0:1a:a2:22:3f:d7:be:15:d5:1c:
                    3f:99:15:06:af:cc:e4:78:77:68:32:95:d5:19:8e:17:
                    9e:7c:7e:36:a8:32:65:d6:84:7f:27:19:74:1c:12:cb:
                    8e:f3:6c:be:8c:56:b5:04:90:fb:8c:a4:68:89:a8:94:
                    22:ba:5f:32:2d:6c:8c:bc:86:0b:fc:de:bd:91:21:39
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Critical: True
            Issuer: 
                DNS name: "test.com"
            Serial Number:
                214123
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0a:1d:33:88:cc:64:bc:93:98:22:34:de:de:5b:0e:1e:
        ad:fb:9b:39:89:5c:bb:82:c8:5b:35:5f:a6:cf:47:b5:
        f8:86:18:24:a5:ec:4a:13:26:30:a1:2c:a4:79:ad:ad:
        28:8e:06:97:86:7b:88:35:e0:5f:f6:c2:ea:49:a3:89:
        77:12:bf:5a:f9:25:81:53:ba:03:38:9a:b7:27:dd:90:
        32:4a:b5:24:1f:c3:09:9d:72:b4:49:7c:ae:5f:67:03:
        59:b7:63:5c:2f:68:89:fe:7f:70:8d:66:bd:0b:8c:9a:
        60:0d:48:f5:eb:e8:bf:37:ee:3a:3f:78:2f:a2:72:26:
        f1:ff:62:64:9c:3b:d4:ec:f3:4b:d3:31:ec:ff:d1:1b:
        74:7d:94:a8:c8:94:16:6b:35:ec:a4:d1:ff:1e:11:67:
        d4:b6:3d:a3:3b:41:24:69:1b:75:c9:71:02:af:de:5f:
        fd:50:68:f1:13:be:fb:1f:ba:ec:00:95:a0:b7:8f:99:
        ae:be:87:db:7d:9c:a1:a6:8a:90:66:8f:a2:5d:c0:9c:
        45:f3:14:96:8c:77:e7:53:93:ff:4f:db:81:bd:be:95:
        d6:1b:19:05:e8:24:2b:8b:91:a3:bc:1e:78:ca:3d:d9:
        28:8f:94:f0:72:ef:99:c4:49:01:bb:c1:c9:10:9f:cf
    Fingerprint (SHA-256):
        2C:9B:78:8F:87:B8:8A:8A:A2:24:0D:39:91:6B:61:A5:16:A7:90:91:68:1C:B7:DA:C1:C1:C2:0C:36:0A:C9:2E
    Fingerprint (SHA1):
        E5:6B:E8:04:3C:26:55:31:5D:28:B6:21:49:71:BB:FE:61:9B:49:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9036: Certificate Authority Key Identifier Extension (6) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt7 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt7, E=TestExt7@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
rfc822@name.tld
3
test.com
8
1.2.3.4
9
OID.0.2.213
10
0
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:bd
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:09 2017
            Not After : Wed Aug 02 16:01:09 2017
        Subject: "CN=TestExt7,E=TestExt7@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bf:55:57:34:00:e0:3b:56:53:ff:49:da:3b:00:c0:9e:
                    30:c3:98:b8:12:8c:c4:f6:3e:79:dd:e3:74:68:63:dd:
                    1b:f5:4c:70:aa:1e:e4:14:c0:2b:8f:ca:41:b7:02:45:
                    23:35:f3:a9:2b:8a:b9:6e:d0:a1:74:98:4c:7f:b8:93:
                    10:82:56:08:b0:66:da:84:54:d1:1a:70:93:9a:c1:04:
                    08:ba:bb:f8:98:15:c5:23:fa:c1:65:f6:b7:50:3c:1d:
                    0a:cc:dd:2b:38:51:2f:f5:f3:c3:1e:34:3e:90:cf:cf:
                    00:41:60:63:8a:02:3c:99:7f:de:d7:84:cc:62:dc:13:
                    22:c9:9c:c2:7d:da:7d:d4:77:4b:24:6d:c7:0e:36:87:
                    72:8a:a0:5d:a0:d4:05:6e:ff:7b:1d:fa:cc:35:c9:a9:
                    1d:ec:c1:2f:19:e8:34:3c:d0:7b:5a:67:fd:8b:78:c5:
                    7e:5d:67:89:d7:df:a9:15:60:79:c6:1c:6a:41:e3:8c:
                    7e:5e:6c:b6:fe:9d:20:c3:e4:fa:78:5e:14:54:04:08:
                    37:ca:19:9b:b0:5a:58:04:5f:34:6d:1c:28:89:87:99:
                    d1:6f:e8:81:ec:1f:c2:75:ca:1c:3e:84:29:78:cf:db:
                    9b:dd:2b:8f:df:a6:55:91:47:9d:04:cf:46:bc:b5:a5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RFC822 Name: "rfc822@name.tld"
                DNS name: "test.com"
                IP Address:
                    87:07:31:2e:32:2e:33:2e:34
                Registered ID: OID.2.955.79.73.68.46.48.46.50.46.50.49.51
                Reasons:
                    80
                    (7 least significant bits unused)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:f8:f2:e4:28:85:b3:2a:71:9c:a6:b9:db:14:ac:f5:
        71:36:6f:54:1a:e8:95:a8:e2:5b:9c:e1:0a:b7:fa:81:
        20:6d:34:41:a2:eb:49:3e:4d:43:df:11:a5:8f:52:74:
        2f:ef:7e:b7:09:c5:15:b4:64:7c:b3:a5:58:ee:f0:97:
        00:45:71:0b:72:41:63:bb:7a:ca:88:3b:e0:19:fa:69:
        64:ab:e6:00:3f:ee:11:f8:4c:49:29:65:6d:c6:3c:90:
        ca:cd:44:12:cb:74:d9:98:c6:53:a4:b0:68:c4:68:ea:
        4d:69:62:4a:8a:68:47:14:81:9d:d8:41:f8:82:c6:75:
        53:96:84:45:53:41:9a:49:95:40:cb:90:d3:9c:6f:c6:
        d0:6f:a1:20:03:7e:97:61:39:c5:c3:ca:71:1b:45:7c:
        bb:20:9b:61:3f:c2:1b:c7:13:20:22:99:73:13:c2:f5:
        37:bc:a7:53:f6:f8:de:4a:df:39:6a:c0:02:63:f3:a9:
        1f:1e:85:c0:de:ef:69:be:d9:d5:d5:fd:aa:24:c4:2b:
        f1:29:ab:ad:71:02:92:0e:64:04:d5:a7:48:3c:75:a9:
        f1:43:c9:25:92:90:4b:f9:96:57:bf:a0:5f:65:18:36:
        c6:0b:a9:ea:4a:a6:8e:35:d8:b2:eb:d8:97:77:37:a2
    Fingerprint (SHA-256):
        F9:A7:2A:20:08:82:B1:E1:CB:E5:B5:2D:E6:61:C4:66:9B:16:57:94:D1:07:3A:37:08:18:81:07:56:FA:E5:46
    Fingerprint (SHA1):
        24:6D:71:0A:C1:18:95:5A:87:53:72:ED:9C:B6:D8:17:E4:04:4A:5B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9037: CRL Distribution Points Extension (7) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt8 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt8, E=TestExt8@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
2
SN=asdfsdf
4
3
test.com
10
n
n
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > Enter the relative name: 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Notice: Trust flag u is set automatically if the private key is present.
Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt8
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:be
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:11 2017
            Not After : Wed Aug 02 16:01:11 2017
        Subject: "CN=TestExt8,E=TestExt8@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c7:4b:5d:7c:2d:ee:7a:40:53:91:25:ce:b3:51:54:1c:
                    f2:96:ba:a2:45:1c:cb:a2:48:fb:ee:86:f6:89:9c:51:
                    f2:90:00:bd:15:a0:06:18:5e:ca:36:88:c2:bf:08:7a:
                    7e:c2:46:12:f6:4e:2e:41:39:be:d7:86:b6:98:50:ec:
                    af:80:06:5c:52:be:c9:8e:54:1b:3e:9f:68:1c:65:75:
                    8e:b4:89:fb:2e:b4:7c:d4:77:bb:2e:a5:30:c1:35:c2:
                    17:a1:e4:ed:db:3c:48:2a:be:ed:8a:8f:5c:cd:63:a8:
                    1b:80:a1:3d:01:54:9a:16:9d:ff:3c:c6:d0:21:bc:7a:
                    6d:3c:ca:ce:cd:90:8b:dd:84:6d:7d:a5:8c:29:30:c7:
                    40:87:03:64:2e:cd:37:b0:07:cc:ca:fd:84:10:28:86:
                    7d:54:b7:31:17:4a:cc:0b:c2:28:9d:52:b3:8b:f4:16:
                    8a:93:b0:14:08:49:58:da:20:29:66:93:13:61:c7:e9:
                    51:f1:b9:2c:ee:8c:f8:3a:5f:36:5c:5a:f1:d8:31:65:
                    e5:3c:50:a7:83:cf:67:21:09:00:d2:1c:57:b0:ba:52:
                    1f:10:4a:68:8e:15:f8:57:a7:94:af:d4:62:11:70:cb:
                    7d:3f:02:51:69:35:1e:a9:c8:4a:d2:9a:54:6c:9e:53
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: CRL Distribution Points
            Distribution point:
                RDN: "SN=asdfsdf"
                Reasons:
                    08
                    (7 least significant bits unused)
                CRL issuer: 
                    DNS name: "test.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:d3:4e:6e:39:56:f7:4b:6f:68:e9:05:08:d0:c4:7c:
        60:74:2e:33:e5:0b:94:9b:9c:63:34:84:4f:91:33:7a:
        dc:f3:4e:f6:69:a1:0b:b7:cb:4e:33:3c:53:65:ee:0a:
        37:bd:f0:44:24:5e:87:41:85:cd:97:1e:69:0c:88:82:
        0d:45:75:e6:5d:04:7e:16:09:a8:95:c3:6b:5a:bc:44:
        0b:f5:2f:56:4b:b0:ff:a9:05:4a:a5:60:40:d0:33:b0:
        57:68:85:7f:17:29:4a:46:65:bc:03:23:07:d8:2b:2c:
        f5:91:b0:1b:18:8f:62:e5:0b:a1:00:14:18:69:2c:17:
        8f:d1:77:77:f9:23:08:c2:db:e7:b6:e3:c4:11:73:cb:
        01:fa:68:c0:f2:3b:20:e9:ac:fd:68:b2:97:2b:3f:4f:
        29:4e:7c:e6:e9:3f:f3:6b:9f:16:ef:15:26:a4:61:0b:
        3e:8d:e4:50:cc:de:d1:ee:fd:71:cb:44:77:a2:5f:ed:
        07:a4:0f:50:62:1c:9a:b9:e7:5a:02:0d:2e:28:06:35:
        b6:fc:10:30:67:12:a0:23:08:4d:eb:05:e5:bb:e1:6e:
        9c:ca:20:4e:7b:c9:91:db:5f:cd:04:69:ac:2e:92:c7:
        3a:9b:75:b9:66:93:6d:23:c2:38:3e:fc:6d:2c:24:33
    Fingerprint (SHA-256):
        11:C5:9E:D4:6A:15:7A:96:F0:8B:9E:4F:72:E6:6C:06:FA:3B:E7:2C:8F:C4:EE:1C:3F:D2:D8:8D:BB:04:64:A5
    Fingerprint (SHA1):
        66:44:7F:43:92:30:43:B5:87:C2:0B:AD:3A:CA:AF:3E:D5:07:94:59
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9038: CRL Distribution Points Extension (8) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt9 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt9, E=TestExt9@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -5 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
10
n
Generating key.  This may take a few moments...
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt9
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:c1
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain View
            ,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:12 2017
            Not After : Wed Aug 02 16:01:12 2017
        Subject: "CN=TestExt9,E=TestExt9@bogus.com,O=BOGUS NSS,L=Mountain Vie
            w,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:30:1a:40:55:5d:8b:be:38:02:61:b0:78:62:1e:75:
                    d7:dc:c9:7d:a7:a3:8e:fc:0b:b3:cc:ae:f9:08:9f:be:
                    c3:9a:ec:34:e2:87:40:41:ba:dc:ce:21:d7:fd:3b:02:
                    22:bd:b2:48:e8:50:7e:ac:aa:65:18:87:37:bc:a5:d6:
                    d9:40:e1:60:ec:65:a7:bc:31:70:f0:0b:29:f6:31:e4:
                    70:73:7f:34:b7:62:c9:40:39:cb:1c:14:dc:8c:a5:7a:
                    14:97:13:95:ce:8d:18:bd:39:e8:db:e1:28:9f:86:06:
                    ab:5a:02:f6:87:9e:fe:82:5d:22:c9:8f:ce:67:78:59:
                    c1:3f:20:a0:6e:75:c3:31:7f:0a:6d:79:b9:71:c9:32:
                    3b:ce:6b:28:54:a0:9f:dc:0c:05:62:bb:ae:4b:56:48:
                    76:14:14:e7:db:50:92:22:ab:17:53:9d:64:20:f8:9f:
                    ba:97:3c:47:85:6b:4c:8a:05:a2:7a:37:d6:6e:1b:7e:
                    8b:eb:a1:81:67:f7:21:f4:ca:78:f1:19:64:65:a5:a2:
                    94:4f:35:73:06:3d:ed:82:8b:81:60:a6:3c:66:22:82:
                    9c:d4:0f:b3:88:3b:4c:11:51:82:05:8b:01:6f:35:65:
                    78:cf:5f:c9:ca:f3:f2:99:d6:08:d7:d0:45:9c:03:43
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL Client,SSL Server,S/MIME>
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:e1:98:64:62:7c:4d:47:69:5c:20:63:82:b8:cc:8e:
        63:7d:7b:c5:81:d8:3d:38:c2:e0:7d:7d:3f:cb:4a:46:
        c5:f7:9b:2d:7a:83:66:b7:f2:3e:1d:9b:5e:c3:e4:d0:
        19:e1:68:e4:c9:bc:72:9c:ef:1d:29:d4:82:e2:dc:af:
        5f:f7:65:a3:89:aa:8a:cc:ef:9e:61:f1:56:1b:e8:6f:
        8e:e6:d0:64:20:04:40:8b:56:5e:a8:62:3d:46:cd:62:
        b6:bf:4e:00:f5:52:b1:dc:70:cb:2c:5b:96:3e:ba:33:
        83:83:2f:34:c9:e2:4f:76:4d:91:82:ba:78:ce:8d:82:
        38:cf:cc:f2:f2:6c:cc:e4:f6:ad:72:af:79:b1:a7:81:
        2a:1f:8e:3c:2d:e7:9d:18:a3:29:f2:8e:a3:31:89:51:
        97:05:7e:cb:96:d0:74:04:03:71:f7:ad:8a:f7:99:d7:
        bf:f2:11:bb:75:10:ea:f8:c4:92:7f:74:24:b7:79:91:
        89:57:5d:bb:1f:95:1b:0f:67:f6:e4:e6:db:00:cc:2c:
        7a:7c:70:ce:af:64:70:f6:1a:9a:74:36:8c:9b:7d:28:
        7e:6c:42:ab:bd:85:a2:e9:26:aa:c7:e5:9b:a0:4a:55:
        ff:44:ed:db:60:85:ba:ef:2d:d2:b0:d3:0e:4f:c0:b5
    Fingerprint (SHA-256):
        01:78:3D:9B:E3:67:A4:5C:9B:C8:41:BA:D2:34:FE:5C:C4:D3:E8:43:8D:CE:99:58:24:64:B9:32:FB:AB:8A:72
    Fingerprint (SHA1):
        78:70:44:D2:42:52:5D:F3:07:6F:77:D3:19:C9:C2:3A:6C:89:C5:DE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9039: Certificate Type Extension (9) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt10 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt10, E=TestExt10@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -6 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
0
1
2
3
4
5
6
10
y
Generating key.  This may take a few moments...
		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > 		0 - Server Auth
		1 - Client Auth
		2 - Code Signing
		3 - Email Protection
		4 - Timestamp
		5 - OCSP Responder
		6 - Step-up
		7 - Microsoft Trust List Signing
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt10
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:c3
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:13 2017
            Not After : Wed Aug 02 16:01:13 2017
        Subject: "CN=TestExt10,E=TestExt10@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:6b:a5:3f:e7:2c:1e:08:76:e1:02:43:e4:a8:e1:80:
                    c8:4a:1b:f6:51:cd:5f:1b:58:03:c3:ce:87:69:5f:b1:
                    ac:a9:5e:c8:58:de:ec:dd:55:b8:62:9c:81:ec:45:2f:
                    1b:5c:58:03:a5:05:b6:e8:ef:e2:49:75:08:f6:b7:20:
                    24:b2:ff:79:97:33:8e:d4:cd:fb:7d:ac:62:e4:cf:96:
                    3f:9a:5e:8e:fa:35:0c:61:51:54:25:55:97:f3:0d:d8:
                    11:0b:26:aa:02:03:55:41:5c:ba:24:77:83:0c:9c:ac:
                    e7:12:b7:db:c5:ab:a9:13:5d:30:cf:39:1a:aa:6e:5d:
                    5c:69:d8:30:68:a2:18:1a:bc:cf:14:d9:8a:94:eb:ee:
                    77:77:cc:20:b1:f6:c8:69:ab:c3:eb:c8:ba:71:72:1a:
                    e1:61:5c:35:a8:96:95:e7:03:f7:e3:d0:8b:d3:46:5a:
                    bc:d0:e6:16:fa:5a:28:28:31:ca:bb:38:56:62:0e:9e:
                    b8:dd:d0:b6:32:de:28:5c:2f:90:6a:4e:26:26:f7:8b:
                    94:9a:ac:b8:ee:48:f7:aa:5d:60:60:42:4b:88:30:e8:
                    d3:fe:30:ce:f5:c5:9d:8b:e5:96:30:15:0e:a2:3d:bd:
                    99:36:5a:54:49:bd:19:12:e5:31:26:2b:d6:a2:65:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Extended Key Usage
            Critical: True
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate
                Code Signing Certificate
                E-Mail Protection Certificate
                Time Stamping Certifcate
                OCSP Responder Certificate
                Strong Crypto Export Approved
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4e:9d:22:55:2c:b3:24:1e:1e:3c:67:17:31:2d:88:65:
        ed:d6:2c:67:6a:7e:ad:77:7c:0a:00:26:18:c3:3e:d5:
        58:51:7c:c7:20:9c:c4:25:a3:e6:5d:f8:89:0c:62:0d:
        d1:7c:e5:a2:c7:8a:20:23:94:92:c8:a7:11:bb:f6:7a:
        25:7b:db:ab:c4:bf:49:99:c5:d7:1e:03:e2:6d:a5:be:
        a9:68:fc:15:ab:b1:d9:ca:df:fa:b9:23:9a:42:5c:87:
        87:61:c4:ad:c7:fe:fb:b8:09:2f:af:67:69:56:5b:89:
        e1:18:59:b0:d1:de:cb:4a:56:7e:56:30:e9:2a:a5:63:
        f3:f3:37:21:93:6b:34:de:ab:31:ad:ea:0a:5e:95:2d:
        01:43:e3:12:93:db:45:61:e4:11:10:f2:c3:1d:e8:f8:
        1c:97:16:75:95:f9:73:c3:ba:10:d0:3d:dd:39:eb:c7:
        55:a9:3c:83:44:b1:ec:e2:2b:7f:4e:20:48:6d:4b:88:
        ae:8b:3a:bd:e5:47:a3:1a:0a:ab:42:43:ed:78:d5:57:
        e9:97:28:40:ac:15:03:02:aa:2d:73:7d:1f:79:68:7f:
        21:2e:0d:a2:a7:76:42:93:fd:46:bf:60:ab:2f:7c:ef:
        75:c9:1e:50:82:e4:dd:c1:51:1c:3c:ac:e5:ab:10:5f
    Fingerprint (SHA-256):
        DC:E0:28:3F:FA:DB:AC:B1:D0:96:F2:31:C8:6E:9D:5A:EB:43:89:45:15:F9:9F:75:6F:F8:B0:D9:DB:AD:D2:10
    Fingerprint (SHA1):
        3E:E8:32:E9:A4:D3:19:F8:6E:DF:CF:D7:26:09:D8:61:64:94:ED:BE
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9040: Extended Key Usage Extension (10) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -S -n TestExt11 -t u,u,u -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/tempcert -s CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US -x -f ../tests.pw -z ../tests_noise -1 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/test.args
certutil options:
1
2
3
4
5
6
10
n
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -L -n TestExt11
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:c5
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain Vi
            ew,ST=California,C=US"
        Validity:
            Not Before: Tue May 02 16:01:14 2017
            Not After : Wed Aug 02 16:01:14 2017
        Subject: "CN=TestExt11,E=TestExt11@bogus.com,O=BOGUS NSS,L=Mountain V
            iew,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:c0:13:e3:18:28:27:6a:fc:2c:a8:4d:a9:23:90:71:
                    55:73:e5:7f:3f:d4:32:66:d9:16:49:bb:ef:e9:b5:9f:
                    bd:13:82:c8:c7:c7:7a:8b:5a:5a:62:f2:b5:cb:eb:52:
                    67:5d:f7:e1:bb:13:1f:68:15:ec:4a:7d:92:fb:44:4a:
                    61:16:57:ae:f6:78:fd:db:29:b9:df:7d:65:87:e7:a8:
                    3a:7c:d4:c9:a0:a9:64:4c:d2:e4:56:89:07:01:3d:dc:
                    55:ca:0b:59:3a:32:70:7a:26:c8:e5:b0:90:39:93:88:
                    2c:c5:5f:50:be:2d:cf:ef:61:cd:6b:1e:8d:aa:94:ea:
                    5f:ab:15:1b:5c:f7:36:b4:3b:bb:4e:1e:00:5d:fb:f9:
                    94:ed:ac:1a:5b:24:32:87:75:2c:cd:69:85:37:f0:98:
                    3e:d6:78:c2:45:69:16:53:18:5f:c4:43:a1:6d:5b:dd:
                    77:d9:c5:81:5f:5c:1b:73:c3:12:a2:b6:e5:2b:56:a6:
                    16:36:ef:09:be:de:f6:c1:fc:ff:b2:1f:3b:c2:cd:8c:
                    dc:85:b0:b4:a9:f8:8b:fa:30:6c:fb:77:53:d0:8d:19:
                    26:2a:9e:b3:e1:ab:d2:75:63:82:25:9b:33:5e:b8:3b:
                    ae:2f:49:2b:18:ac:bf:0e:c3:0c:3b:10:77:37:ab:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Usages: Non-Repudiation
                    Key Encipherment
                    Data Encipherment
                    Key Agreement
                    Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ae:7d:ad:5d:13:01:57:60:fb:fd:42:e1:23:fd:88:05:
        60:33:23:07:78:60:ac:f1:47:42:84:7b:5d:cf:90:92:
        59:30:84:6f:d6:74:4f:a7:bd:ee:92:3c:a1:97:00:38:
        b1:c8:e9:eb:bb:88:f4:00:69:73:90:a3:f1:54:49:64:
        d9:60:d5:8e:00:8f:52:71:03:d8:5a:3b:0c:11:5b:da:
        21:be:29:db:9d:2e:82:c6:cf:af:a8:e0:c5:36:85:58:
        5a:24:52:b3:58:67:f0:b3:e3:a5:17:8d:5d:82:2d:52:
        7d:35:98:08:ad:07:74:45:10:4e:bf:a6:0b:5b:09:03:
        8d:33:5b:a3:07:87:92:a3:d5:40:be:bf:d3:cc:ef:a5:
        0e:20:4d:67:64:69:b3:79:69:9a:d7:aa:08:c6:36:a9:
        5a:ae:0a:59:89:cf:40:49:80:45:d2:05:fd:ca:25:9a:
        8e:05:f0:0b:13:ba:47:12:9d:48:3e:08:ff:bb:da:d1:
        2b:df:02:62:c3:7e:c4:5c:f4:c2:51:f7:47:01:06:5f:
        91:4f:38:c4:d3:de:bb:d1:48:37:c3:d7:34:3d:62:81:
        ce:84:95:78:1a:24:67:2d:fc:67:8f:3b:e0:6d:a3:b7:
        db:e8:c8:00:e0:7e:8b:b1:61:86:8f:47:d9:c4:1a:54
    Fingerprint (SHA-256):
        C2:05:DC:AF:F7:A7:B1:C3:64:1D:D3:57:6C:9D:5C:64:0B:20:64:F9:91:32:D1:E1:A9:3E:52:A3:81:EB:24:D3
    Fingerprint (SHA1):
        82:63:73:EA:0A:4C:59:ED:9A:17:3B:38:BB:49:B1:D7:77:62:CE:0C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9041: Certificate Key Usage Extension (11) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #9042: create cert with invalid SAN parameter (12) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN example.com,dns:www.example.com
Generating key.  This may take a few moments...
certutil: Problem creating SubjectAltName extension: error 0: Success
certutil: unable to create cert (Success)
cert.sh: #9043: create cert with invalid SAN parameter (13) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extSAN dns:example.com,dns:www.example.com
Generating key.  This may take a few moments...
cert.sh: #9044: create cert with valid SAN parameter (14) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:cc
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 16:01:18 2017
            Not After : Wed Aug 02 16:01:18 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e4:df:fb:d0:57:76:99:5c:53:82:e1:c0:dc:4b:ba:8b:
                    dc:35:e1:cf:ba:75:95:f9:27:d1:d2:b8:69:9c:8b:0e:
                    a0:ee:71:15:d1:4f:45:cf:01:6e:3b:da:48:c6:16:ee:
                    ca:d0:79:b6:82:27:1d:af:0b:b1:7e:fd:e9:75:a8:64:
                    7a:5e:bf:a3:ca:16:79:27:a6:45:ea:4d:a4:2d:1f:ae:
                    b9:56:91:4f:a4:4b:b8:22:31:84:0c:45:d8:65:4f:61:
                    9e:4a:8e:f7:84:02:bb:ca:be:12:86:62:05:27:c1:f3:
                    51:95:0f:85:f9:89:e9:95:37:f3:36:06:69:6b:f8:b3:
                    41:87:f5:cb:d2:82:01:96:c1:ea:5e:84:a4:24:ef:d0:
                    b8:e6:d7:e7:79:1b:77:c6:f1:92:c6:80:2d:eb:53:6c:
                    ff:2f:c9:d2:68:12:29:a6:80:2c:20:98:fd:39:cc:d2:
                    3c:99:f9:53:75:d7:43:a1:6f:1b:b5:23:2f:b9:38:92:
                    57:ef:49:5f:e5:d7:2c:69:20:bc:5b:c1:b8:ac:24:c3:
                    59:a8:fb:96:ee:b8:6e:df:21:a5:2f:fe:85:33:02:4d:
                    21:3a:49:4d:53:91:47:f9:59:1b:34:e5:b4:40:d9:c7:
                    d1:6a:dc:7a:c0:af:37:5c:b2:6c:86:a4:7a:1a:b5:6b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a0:34:a5:18:e1:f6:bf:4a:7f:40:5a:ea:35:4a:de:54:
        e4:37:06:db:19:65:c2:88:b2:53:79:48:9f:91:17:0f:
        f8:13:e1:20:46:9a:cf:08:97:36:05:10:86:ab:c4:0e:
        f7:9e:c1:d1:f2:f2:6f:47:f0:a8:57:02:14:ca:bd:22:
        50:23:ed:57:99:41:69:1d:e9:07:4b:34:3f:cd:5f:0c:
        4a:08:ca:07:3a:67:2b:45:9b:3d:d8:87:0e:42:4c:82:
        31:17:ff:72:9f:61:06:35:fd:4d:c8:df:78:f8:b8:9f:
        78:0a:2d:5b:bc:fd:63:76:98:6b:31:cc:85:93:83:9b:
        01:39:a3:77:9c:cb:cf:f0:a6:13:74:48:e9:0e:fb:78:
        9d:86:d4:9a:51:69:c3:2f:89:d7:e6:dd:45:10:b7:7c:
        b4:43:05:f8:d9:2f:8e:c6:b5:9e:95:cb:a7:9b:d1:66:
        7e:46:8f:7e:80:3b:fe:aa:10:36:7b:b7:8f:b8:92:a8:
        35:2d:a5:89:65:84:fd:2a:0a:9a:e7:ea:6f:7d:eb:18:
        4f:36:2e:a4:40:78:a4:45:44:51:21:50:e2:1e:b6:e6:
        49:35:ca:3d:b7:77:1e:88:ba:76:2c:b5:9e:66:c4:1f:
        9d:83:b4:69:c8:0e:68:8a:96:77:50:1d:87:ca:fc:8d
    Fingerprint (SHA-256):
        93:B9:B3:3E:EC:35:91:50:B0:A8:03:CB:AF:8F:13:DA:97:52:47:7A:61:8B:37:BC:00:10:50:DF:1F:25:6B:6C
    Fingerprint (SHA1):
        41:9D:09:87:70:47:92:9B:D5:1C:86:16:98:40:B3:E4:58:AC:A4:FC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9045: create cert with valid SAN parameter (15) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN --dump-ext-val 2.5.29.17
writing output to /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
cert.sh: #9046: dump extension 2.5.29.17 to file /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der (16) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #9047: create cert with valid SAN parameter (17) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #9048: expect failure to list cert, because we deleted it (18) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9049: create cert with invalid generic ext parameter (19) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9050: create cert with invalid generic ext parameter (20) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
certutil: error parsing generic extension parameter not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der,2.5.29.17:critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der: error 0: Success
cert.sh: #9051: create cert with invalid generic ext parameter (21) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -s CN=example.com -S -t ,, -x -z ../tests_noise -n WithSAN --extGeneric 2.5.29.17:not-critical:/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions/sanext.der
Generating key.  This may take a few moments...
cert.sh: #9052: create cert with valid generic ext parameter (22) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            00:a9:d1:94:d3
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=example.com"
        Validity:
            Not Before: Tue May 02 16:01:21 2017
            Not After : Wed Aug 02 16:01:21 2017
        Subject: "CN=example.com"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9f:79:b4:65:4a:ce:07:a3:da:d1:a5:18:03:00:49:a2:
                    ed:48:e4:9f:e6:a2:ee:e9:38:9b:60:cf:22:11:a6:ec:
                    28:b7:31:68:9f:ed:8f:c9:25:d4:ff:62:92:86:40:d8:
                    ca:29:64:52:ef:89:f4:7a:2b:71:ce:54:58:ec:00:69:
                    22:f4:97:28:79:f9:47:9a:d0:4c:d3:b8:09:34:a0:2a:
                    a5:f1:d4:0f:86:60:03:f1:ab:84:96:11:f4:e7:1f:75:
                    23:0c:df:34:55:fd:ff:a0:35:d7:6c:fa:84:41:92:60:
                    44:fb:8e:07:3f:59:d4:c7:37:5f:10:b9:db:5c:07:11:
                    d5:90:81:be:6d:55:1b:d1:24:71:cb:08:a4:99:c3:cf:
                    ad:f1:28:08:21:41:3a:dd:64:03:7a:7d:ea:ea:59:74:
                    2f:36:cc:c9:43:11:57:cd:67:65:d5:09:2f:62:f7:5e:
                    c4:66:fc:26:db:69:30:b1:2f:60:df:5c:37:c2:f5:3e:
                    d0:73:d1:dc:c7:bb:e4:ba:fb:b1:e9:45:d7:c7:9e:56:
                    fb:a7:d6:d2:c4:27:89:07:d7:a3:64:52:c7:1a:1f:d3:
                    2e:d3:5c:ba:7f:56:bd:b9:30:0c:56:e8:3d:cf:d2:5e:
                    1d:4c:04:d3:43:7e:0e:7c:56:7b:62:0d:17:ef:92:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Subject Alt Name
            DNS name: "example.com"
            DNS name: "www.example.com"
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        59:32:89:58:05:18:49:0b:43:5f:82:15:fc:59:82:b1:
        63:79:b1:ca:24:3d:18:82:f9:e5:b3:b6:63:03:15:f6:
        22:f0:cb:a7:e1:56:74:f6:70:70:97:ec:e0:96:8f:f8:
        10:03:d2:d7:9f:ee:d2:77:4e:1a:1e:d5:18:66:d3:26:
        53:a9:41:5a:17:45:6a:c1:12:92:1a:37:90:20:03:2c:
        f7:8d:a5:0e:88:a3:23:f5:e6:84:46:49:2a:89:31:e1:
        ef:fa:e4:09:ae:44:84:a8:3c:31:19:3f:b1:22:c0:4b:
        d7:57:a3:9d:82:c7:8a:6e:c7:8a:7d:e5:f6:36:ae:2a:
        e9:3b:35:d2:c8:ce:01:00:35:46:99:2d:ed:d0:e2:ce:
        43:9e:f2:a1:4d:6e:45:1d:fe:3d:78:4d:f1:09:31:be:
        93:92:1f:e0:26:7c:4e:89:1f:bd:95:14:87:41:8c:01:
        29:cc:c6:6c:34:35:4f:96:54:cf:7a:30:ee:da:63:32:
        7a:4b:56:8e:6e:7d:9d:1d:d8:82:27:9d:6a:93:13:4c:
        eb:2c:72:fd:d2:92:bd:dc:2b:18:8b:d7:52:08:ea:7f:
        1d:54:05:ee:c1:15:70:48:3a:84:69:e9:71:b5:eb:1e:
        b4:49:63:dc:6a:69:42:bf:98:bd:ea:a2:dd:64:9e:90
    Fingerprint (SHA-256):
        32:ED:3E:74:03:E6:21:12:E5:33:1C:B3:EE:52:02:0A:C5:43:51:1B:7D:99:C0:CA:7E:60:7C:12:D6:DB:AC:FE
    Fingerprint (SHA1):
        D5:29:D6:B0:0C:BD:71:1C:10:E5:A8:26:4E:9E:1F:80:7D:A3:01:59
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            User
        Email Flags:
            User
        Object Signing Flags:
            User
cert.sh: #9053: create cert with valid generic ext parameter (23) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -D -n WithSAN
cert.sh: #9054: create cert with valid generic ext parameter (24) - PASSED
certutil -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cert_extensions -f ../tests.pw -L -n WithSAN
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
certutil: Could not find cert: WithSAN
: PR_FILE_NOT_FOUND_ERROR: File not found
cert.sh: #9055: expect failure to list cert, because we deleted it (25) - PASSED
cert.sh: Create A Password Test Cert  ==============
cert.sh: Create A Password Test Ca  --------
cert.sh: Creating a CA Certificate PasswordCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass
cert.sh: Creating CA Cert DB --------------------------
certutil -s "CN=TestExt11, E=TestExt11@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw
cert.sh: #9056: Creating CA Cert DB - PASSED
cert.sh: Loading root cert module to CA Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9057: Loading root cert module to CA Cert DB - PASSED
cert.sh: Certificate initialized ----------
cert.sh: Creating CA Cert PasswordCA  --------------------------
certutil -s "CN=NSS Password Test CA, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCA -t CTu,CTu,CTu -v 600 -x -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 1
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
cert.sh: #9058: Creating CA Cert PasswordCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n PasswordCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -o root.cert
cert.sh: #9059: Exporting Root Cert - PASSED
cert.sh: Changing password on Password Test Cert's Cert DB --------------------------
certutil -W -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.pw -@ ../tests.fipspw
Password changed successfully.
cert.sh: #9060: Changing password on Password Test Cert's Cert DB - PASSED
cert.sh: Generate Certificate for Password Test Cert with new password --------------------------
certutil -s "CN=Password Test Cert, E=password@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n PasswordCert -c PasswordCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw -z ../tests_noise
Generating key.  This may take a few moments...
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9061: Generate Certificate for Password Test Cert with new password - PASSED
cert.sh SUCCESS: PASSWORD passed
cert.sh: Verify Certificate for Password Test Cert with new password --------------------------
certutil -V -n PasswordCert -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/dbpass -f ../tests.fipspw
certutil: certificate is valid
cert.sh: #9062: Verify Certificate for Password Test Cert with new password - PASSED
cert.sh: Creating Distrusted Certificate
cert.sh: Initializing Distrusted's Cert DB --------------------------
certutil -N -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #9063: Initializing Distrusted's Cert DB - PASSED
cert.sh: Loading root cert module to Distrusted's Cert DB --------------------------
modutil -add RootCerts -libfile /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so -dbdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit browser before continuing this operation. Type 
'q <enter>' to abort, or <enter> to continue: 
Module "RootCerts" added to database.
cert.sh: #9064: Loading root cert module to Distrusted's Cert DB - PASSED
cert.sh: Import Root CA for Distrusted --------------------------
certutil -A -n TestCA -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA.ca.cert
cert.sh: #9065: Import Root CA for Distrusted - PASSED
cert.sh: Import DSA Root CA for Distrusted --------------------------
certutil -A -n TestCA-dsa -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-dsa.ca.cert
cert.sh: #9066: Import DSA Root CA for Distrusted - PASSED
cert.sh: Import EC Root CA for Distrusted --------------------------
certutil -A -n TestCA-ec -t TC,TC,TC -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/TestCA-ec.ca.cert
cert.sh: #9067: Import EC Root CA for Distrusted - PASSED
cert.sh: Generate Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9068: Generate Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's Request --------------------------
certutil -C -c TestCA -m 2000 -v 60 -d ../CA -i req -o Distrusted.cert -f ../tests.pw 
cert.sh: #9069: Sign Distrusted's Request - PASSED
cert.sh: Import Distrusted's Cert --------------------------
certutil -A -n Distrusted -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9070: Import Distrusted's Cert - PASSED
cert.sh SUCCESS: Distrusted's Cert Created
cert.sh: Generate DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9071: Generate DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 2000 -v 60 -d ../CA -i req -o Distrusted-dsa.cert -f ../tests.pw 
cert.sh: #9072: Sign Distrusted's DSA Request - PASSED
cert.sh: Import Distrusted's DSA Cert --------------------------
certutil -A -n Distrusted-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9073: Import Distrusted's DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9074: Generate mixed DSA Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 22000 -v 60 -d ../CA -i req -o Distrusted-dsamixed.cert -f ../tests.pw 
cert.sh: #9075: Sign Distrusted's DSA Request with RSA - PASSED
cert.sh: Import Distrusted's mixed DSA Cert --------------------------
certutil -A -n Distrusted-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9076: Import Distrusted's mixed DSA Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9077: Generate EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request --------------------------
certutil -C -c TestCA-ec -m 2000 -v 60 -d ../CA -i req -o Distrusted-ec.cert -f ../tests.pw 
cert.sh: #9078: Sign Distrusted's EC Request - PASSED
cert.sh: Import Distrusted's EC Cert --------------------------
certutil -A -n Distrusted-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9079: Import Distrusted's EC Cert - PASSED
cert.sh SUCCESS: Distrusted's EC Cert Created
cert.sh: Generate mixed EC Cert Request for Distrusted --------------------------
certutil -s "CN=Distrusted, E=Distrusted-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9080: Generate mixed EC Cert Request for Distrusted - PASSED
cert.sh: Sign Distrusted's EC Request with RSA --------------------------
certutil -C -c TestCA -m 12000 -v 60 -d ../CA -i req -o Distrusted-ecmixed.cert -f ../tests.pw 
cert.sh: #9081: Sign Distrusted's EC Request with RSA - PASSED
cert.sh: Import Distrusted's mixed EC Cert --------------------------
certutil -A -n Distrusted-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i Distrusted-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9082: Import Distrusted's mixed EC Cert - PASSED
cert.sh SUCCESS: Distrusted's mixed EC Cert Created
cert.sh: Mark CERT as unstrusted --------------------------
certutil -M -n Distrusted -t p,p,p -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
cert.sh: #9083: Mark CERT as unstrusted - PASSED
cert.sh: Creating Distrusted Intermediate
cert.sh: Creating a CA Certificate DistrustedCA ==========================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA
cert.sh: Creating CA Cert DistrustedCA  --------------------------
certutil -s "CN=DistrustedCA, E=DistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -S -n DistrustedCA -t ,, -v 600 -c TestCA -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -1 -2 -5 -f ../tests.pw -z ../tests_noise -m 2010
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Is this a critical extension [y/N]?
cert.sh: #9084: Creating CA Cert DistrustedCA  - PASSED
cert.sh: Exporting Root Cert --------------------------
certutil -L -n DistrustedCA -r -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -o root.cert
cert.sh: #9085: Exporting Root Cert - PASSED
cert.sh: Import Distrusted Intermediate --------------------------
certutil -A -n DistrustedCA -t p,p,p -f ../tests.pw -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -i ../CA/DistrustedCA.ca.cert
cert.sh: #9086: Import Distrusted Intermediate - PASSED
cert.sh: Generate Cert Request for Leaf Chained to Distrusted CA --------------------------
certutil -s "CN=LeafChainedToDistrustedCA, E=LeafChainedToDistrustedCA@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9087: Generate Cert Request for Leaf Chained to Distrusted CA - PASSED
cp: './req' and '/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA/req' are the same file
cert.sh: Sign LeafChainedToDistrustedCA's Request --------------------------
certutil -C -c DistrustedCA -m 100 -v 60 -d ../CA -i req -o LeafChainedToDistrustedCA.cert -f ../tests.pw
cert.sh: #9088: Sign LeafChainedToDistrustedCA's Request - PASSED
cert.sh: Import LeafChainedToDistrustedCA's Cert  -t u,u,u --------------------------
certutil -A -n LeafChainedToDistrustedCA -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw -i LeafChainedToDistrustedCA.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9089: Import LeafChainedToDistrustedCA's Cert  -t u,u,u - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Server --------------------------
certutil -V -n LeafChainedToDistrustedCA -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9090: Verify LeafChainedToDistrustedCA Cert for SSL Server - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for SSL Client --------------------------
certutil -V -n LeafChainedToDistrustedCA -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9091: Verify LeafChainedToDistrustedCA Cert for SSL Client - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9092: Verify LeafChainedToDistrustedCA Cert for Email signer - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Email recipient --------------------------
certutil -V -n LeafChainedToDistrustedCA -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate issuer has been marked as not trusted by the user.
cert.sh: #9093: Verify LeafChainedToDistrustedCA Cert for Email recipient - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for OCSP responder --------------------------
certutil -V -n LeafChainedToDistrustedCA -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9094: Verify LeafChainedToDistrustedCA Cert for OCSP responder - PASSED
cert.sh: Verify LeafChainedToDistrustedCA Cert for Object Signer --------------------------
certutil -V -n LeafChainedToDistrustedCA -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9095: Verify LeafChainedToDistrustedCA Cert for Object Signer - PASSED
cert.sh: Verify Distrusted Cert for SSL Server --------------------------
certutil -V -n Distrusted -u V -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9096: Verify Distrusted Cert for SSL Server - PASSED
cert.sh: Verify Distrusted Cert for SSL Client --------------------------
certutil -V -n Distrusted -u C -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9097: Verify Distrusted Cert for SSL Client - PASSED
cert.sh: Verify Distrusted Cert for Email signer --------------------------
certutil -V -n Distrusted -u S -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9098: Verify Distrusted Cert for Email signer - PASSED
cert.sh: Verify Distrusted Cert for Email recipient --------------------------
certutil -V -n Distrusted -u R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9099: Verify Distrusted Cert for Email recipient - PASSED
cert.sh: Verify Distrusted Cert for OCSP responder --------------------------
certutil -V -n Distrusted -u O -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Certificate type not approved for application.
cert.sh: #9100: Verify Distrusted Cert for OCSP responder - PASSED
cert.sh: Verify Distrusted Cert for Object Signer --------------------------
certutil -V -n Distrusted -u J -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/distrust -f ../tests.pw
certutil: certificate is invalid: Peer's certificate has been marked as not trusted by the user.
cert.sh: #9101: Verify Distrusted Cert for Object Signer - PASSED
cert.sh: OCSP response creation selftest
cert.sh: perform selftest --------------------------
ocspresp /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/serverCA serverCA chain-1-serverCA -f ../tests.pw
cert.sh: #9102: perform selftest - PASSED
cert.sh: Creating Client CA Issued Certificates Range 40 - 52 ===
cert.sh: Generate Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9103: Generate Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's Request --------------------------
certutil -C -c TestCA -m 40 -v 60 -d ../CA -i req -o TestUser40.cert -f ../tests.pw 
cert.sh: #9104: Sign TestUser40's Request - PASSED
cert.sh: Import TestUser40's Cert --------------------------
certutil -A -n TestUser40 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9105: Import TestUser40's Cert - PASSED
cert.sh SUCCESS: TestUser40's Cert Created
cert.sh: Generate DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9106: Generate DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 40 -v 60 -d ../CA -i req -o TestUser40-dsa.cert -f ../tests.pw 
cert.sh: #9107: Sign TestUser40's DSA Request - PASSED
cert.sh: Import TestUser40's DSA Cert --------------------------
certutil -A -n TestUser40-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9108: Import TestUser40's DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9109: Generate mixed DSA Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20040 -v 60 -d ../CA -i req -o TestUser40-dsamixed.cert -f ../tests.pw 
cert.sh: #9110: Sign TestUser40's DSA Request with RSA - PASSED
cert.sh: Import TestUser40's mixed DSA Cert --------------------------
certutil -A -n TestUser40-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9111: Import TestUser40's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9112: Generate EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request --------------------------
certutil -C -c TestCA-ec -m 40 -v 60 -d ../CA -i req -o TestUser40-ec.cert -f ../tests.pw 
cert.sh: #9113: Sign TestUser40's EC Request - PASSED
cert.sh: Import TestUser40's EC Cert --------------------------
certutil -A -n TestUser40-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9114: Import TestUser40's EC Cert - PASSED
cert.sh SUCCESS: TestUser40's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser40 --------------------------
certutil -s "CN=TestUser40, E=TestUser40-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9115: Generate mixed EC Cert Request for TestUser40 - PASSED
cert.sh: Sign TestUser40's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10040 -v 60 -d ../CA -i req -o TestUser40-ecmixed.cert -f ../tests.pw 
cert.sh: #9116: Sign TestUser40's EC Request with RSA - PASSED
cert.sh: Import TestUser40's mixed EC Cert --------------------------
certutil -A -n TestUser40-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser40-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9117: Import TestUser40's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser40's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9118: Generate Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's Request --------------------------
certutil -C -c TestCA -m 41 -v 60 -d ../CA -i req -o TestUser41.cert -f ../tests.pw 
cert.sh: #9119: Sign TestUser41's Request - PASSED
cert.sh: Import TestUser41's Cert --------------------------
certutil -A -n TestUser41 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9120: Import TestUser41's Cert - PASSED
cert.sh SUCCESS: TestUser41's Cert Created
cert.sh: Generate DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9121: Generate DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 41 -v 60 -d ../CA -i req -o TestUser41-dsa.cert -f ../tests.pw 
cert.sh: #9122: Sign TestUser41's DSA Request - PASSED
cert.sh: Import TestUser41's DSA Cert --------------------------
certutil -A -n TestUser41-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9123: Import TestUser41's DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9124: Generate mixed DSA Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20041 -v 60 -d ../CA -i req -o TestUser41-dsamixed.cert -f ../tests.pw 
cert.sh: #9125: Sign TestUser41's DSA Request with RSA - PASSED
cert.sh: Import TestUser41's mixed DSA Cert --------------------------
certutil -A -n TestUser41-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9126: Import TestUser41's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9127: Generate EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request --------------------------
certutil -C -c TestCA-ec -m 41 -v 60 -d ../CA -i req -o TestUser41-ec.cert -f ../tests.pw 
cert.sh: #9128: Sign TestUser41's EC Request - PASSED
cert.sh: Import TestUser41's EC Cert --------------------------
certutil -A -n TestUser41-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9129: Import TestUser41's EC Cert - PASSED
cert.sh SUCCESS: TestUser41's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser41 --------------------------
certutil -s "CN=TestUser41, E=TestUser41-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9130: Generate mixed EC Cert Request for TestUser41 - PASSED
cert.sh: Sign TestUser41's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10041 -v 60 -d ../CA -i req -o TestUser41-ecmixed.cert -f ../tests.pw 
cert.sh: #9131: Sign TestUser41's EC Request with RSA - PASSED
cert.sh: Import TestUser41's mixed EC Cert --------------------------
certutil -A -n TestUser41-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser41-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9132: Import TestUser41's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser41's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9133: Generate Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's Request --------------------------
certutil -C -c TestCA -m 42 -v 60 -d ../CA -i req -o TestUser42.cert -f ../tests.pw 
cert.sh: #9134: Sign TestUser42's Request - PASSED
cert.sh: Import TestUser42's Cert --------------------------
certutil -A -n TestUser42 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9135: Import TestUser42's Cert - PASSED
cert.sh SUCCESS: TestUser42's Cert Created
cert.sh: Generate DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9136: Generate DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 42 -v 60 -d ../CA -i req -o TestUser42-dsa.cert -f ../tests.pw 
cert.sh: #9137: Sign TestUser42's DSA Request - PASSED
cert.sh: Import TestUser42's DSA Cert --------------------------
certutil -A -n TestUser42-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9138: Import TestUser42's DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9139: Generate mixed DSA Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20042 -v 60 -d ../CA -i req -o TestUser42-dsamixed.cert -f ../tests.pw 
cert.sh: #9140: Sign TestUser42's DSA Request with RSA - PASSED
cert.sh: Import TestUser42's mixed DSA Cert --------------------------
certutil -A -n TestUser42-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9141: Import TestUser42's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9142: Generate EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request --------------------------
certutil -C -c TestCA-ec -m 42 -v 60 -d ../CA -i req -o TestUser42-ec.cert -f ../tests.pw 
cert.sh: #9143: Sign TestUser42's EC Request - PASSED
cert.sh: Import TestUser42's EC Cert --------------------------
certutil -A -n TestUser42-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9144: Import TestUser42's EC Cert - PASSED
cert.sh SUCCESS: TestUser42's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser42 --------------------------
certutil -s "CN=TestUser42, E=TestUser42-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9145: Generate mixed EC Cert Request for TestUser42 - PASSED
cert.sh: Sign TestUser42's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10042 -v 60 -d ../CA -i req -o TestUser42-ecmixed.cert -f ../tests.pw 
cert.sh: #9146: Sign TestUser42's EC Request with RSA - PASSED
cert.sh: Import TestUser42's mixed EC Cert --------------------------
certutil -A -n TestUser42-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser42-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9147: Import TestUser42's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser42's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9148: Generate Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's Request --------------------------
certutil -C -c TestCA -m 43 -v 60 -d ../CA -i req -o TestUser43.cert -f ../tests.pw 
cert.sh: #9149: Sign TestUser43's Request - PASSED
cert.sh: Import TestUser43's Cert --------------------------
certutil -A -n TestUser43 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9150: Import TestUser43's Cert - PASSED
cert.sh SUCCESS: TestUser43's Cert Created
cert.sh: Generate DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9151: Generate DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 43 -v 60 -d ../CA -i req -o TestUser43-dsa.cert -f ../tests.pw 
cert.sh: #9152: Sign TestUser43's DSA Request - PASSED
cert.sh: Import TestUser43's DSA Cert --------------------------
certutil -A -n TestUser43-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9153: Import TestUser43's DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9154: Generate mixed DSA Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20043 -v 60 -d ../CA -i req -o TestUser43-dsamixed.cert -f ../tests.pw 
cert.sh: #9155: Sign TestUser43's DSA Request with RSA - PASSED
cert.sh: Import TestUser43's mixed DSA Cert --------------------------
certutil -A -n TestUser43-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9156: Import TestUser43's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9157: Generate EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request --------------------------
certutil -C -c TestCA-ec -m 43 -v 60 -d ../CA -i req -o TestUser43-ec.cert -f ../tests.pw 
cert.sh: #9158: Sign TestUser43's EC Request - PASSED
cert.sh: Import TestUser43's EC Cert --------------------------
certutil -A -n TestUser43-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9159: Import TestUser43's EC Cert - PASSED
cert.sh SUCCESS: TestUser43's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser43 --------------------------
certutil -s "CN=TestUser43, E=TestUser43-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9160: Generate mixed EC Cert Request for TestUser43 - PASSED
cert.sh: Sign TestUser43's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10043 -v 60 -d ../CA -i req -o TestUser43-ecmixed.cert -f ../tests.pw 
cert.sh: #9161: Sign TestUser43's EC Request with RSA - PASSED
cert.sh: Import TestUser43's mixed EC Cert --------------------------
certutil -A -n TestUser43-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser43-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9162: Import TestUser43's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser43's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9163: Generate Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's Request --------------------------
certutil -C -c TestCA -m 44 -v 60 -d ../CA -i req -o TestUser44.cert -f ../tests.pw 
cert.sh: #9164: Sign TestUser44's Request - PASSED
cert.sh: Import TestUser44's Cert --------------------------
certutil -A -n TestUser44 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9165: Import TestUser44's Cert - PASSED
cert.sh SUCCESS: TestUser44's Cert Created
cert.sh: Generate DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9166: Generate DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 44 -v 60 -d ../CA -i req -o TestUser44-dsa.cert -f ../tests.pw 
cert.sh: #9167: Sign TestUser44's DSA Request - PASSED
cert.sh: Import TestUser44's DSA Cert --------------------------
certutil -A -n TestUser44-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9168: Import TestUser44's DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9169: Generate mixed DSA Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20044 -v 60 -d ../CA -i req -o TestUser44-dsamixed.cert -f ../tests.pw 
cert.sh: #9170: Sign TestUser44's DSA Request with RSA - PASSED
cert.sh: Import TestUser44's mixed DSA Cert --------------------------
certutil -A -n TestUser44-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9171: Import TestUser44's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9172: Generate EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request --------------------------
certutil -C -c TestCA-ec -m 44 -v 60 -d ../CA -i req -o TestUser44-ec.cert -f ../tests.pw 
cert.sh: #9173: Sign TestUser44's EC Request - PASSED
cert.sh: Import TestUser44's EC Cert --------------------------
certutil -A -n TestUser44-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9174: Import TestUser44's EC Cert - PASSED
cert.sh SUCCESS: TestUser44's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser44 --------------------------
certutil -s "CN=TestUser44, E=TestUser44-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9175: Generate mixed EC Cert Request for TestUser44 - PASSED
cert.sh: Sign TestUser44's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10044 -v 60 -d ../CA -i req -o TestUser44-ecmixed.cert -f ../tests.pw 
cert.sh: #9176: Sign TestUser44's EC Request with RSA - PASSED
cert.sh: Import TestUser44's mixed EC Cert --------------------------
certutil -A -n TestUser44-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser44-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9177: Import TestUser44's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser44's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9178: Generate Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's Request --------------------------
certutil -C -c TestCA -m 45 -v 60 -d ../CA -i req -o TestUser45.cert -f ../tests.pw 
cert.sh: #9179: Sign TestUser45's Request - PASSED
cert.sh: Import TestUser45's Cert --------------------------
certutil -A -n TestUser45 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9180: Import TestUser45's Cert - PASSED
cert.sh SUCCESS: TestUser45's Cert Created
cert.sh: Generate DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9181: Generate DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 45 -v 60 -d ../CA -i req -o TestUser45-dsa.cert -f ../tests.pw 
cert.sh: #9182: Sign TestUser45's DSA Request - PASSED
cert.sh: Import TestUser45's DSA Cert --------------------------
certutil -A -n TestUser45-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9183: Import TestUser45's DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9184: Generate mixed DSA Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20045 -v 60 -d ../CA -i req -o TestUser45-dsamixed.cert -f ../tests.pw 
cert.sh: #9185: Sign TestUser45's DSA Request with RSA - PASSED
cert.sh: Import TestUser45's mixed DSA Cert --------------------------
certutil -A -n TestUser45-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9186: Import TestUser45's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9187: Generate EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request --------------------------
certutil -C -c TestCA-ec -m 45 -v 60 -d ../CA -i req -o TestUser45-ec.cert -f ../tests.pw 
cert.sh: #9188: Sign TestUser45's EC Request - PASSED
cert.sh: Import TestUser45's EC Cert --------------------------
certutil -A -n TestUser45-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9189: Import TestUser45's EC Cert - PASSED
cert.sh SUCCESS: TestUser45's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser45 --------------------------
certutil -s "CN=TestUser45, E=TestUser45-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9190: Generate mixed EC Cert Request for TestUser45 - PASSED
cert.sh: Sign TestUser45's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10045 -v 60 -d ../CA -i req -o TestUser45-ecmixed.cert -f ../tests.pw 
cert.sh: #9191: Sign TestUser45's EC Request with RSA - PASSED
cert.sh: Import TestUser45's mixed EC Cert --------------------------
certutil -A -n TestUser45-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser45-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9192: Import TestUser45's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser45's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9193: Generate Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's Request --------------------------
certutil -C -c TestCA -m 46 -v 60 -d ../CA -i req -o TestUser46.cert -f ../tests.pw 
cert.sh: #9194: Sign TestUser46's Request - PASSED
cert.sh: Import TestUser46's Cert --------------------------
certutil -A -n TestUser46 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9195: Import TestUser46's Cert - PASSED
cert.sh SUCCESS: TestUser46's Cert Created
cert.sh: Generate DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9196: Generate DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 46 -v 60 -d ../CA -i req -o TestUser46-dsa.cert -f ../tests.pw 
cert.sh: #9197: Sign TestUser46's DSA Request - PASSED
cert.sh: Import TestUser46's DSA Cert --------------------------
certutil -A -n TestUser46-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9198: Import TestUser46's DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9199: Generate mixed DSA Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20046 -v 60 -d ../CA -i req -o TestUser46-dsamixed.cert -f ../tests.pw 
cert.sh: #9200: Sign TestUser46's DSA Request with RSA - PASSED
cert.sh: Import TestUser46's mixed DSA Cert --------------------------
certutil -A -n TestUser46-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9201: Import TestUser46's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9202: Generate EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request --------------------------
certutil -C -c TestCA-ec -m 46 -v 60 -d ../CA -i req -o TestUser46-ec.cert -f ../tests.pw 
cert.sh: #9203: Sign TestUser46's EC Request - PASSED
cert.sh: Import TestUser46's EC Cert --------------------------
certutil -A -n TestUser46-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9204: Import TestUser46's EC Cert - PASSED
cert.sh SUCCESS: TestUser46's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser46 --------------------------
certutil -s "CN=TestUser46, E=TestUser46-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9205: Generate mixed EC Cert Request for TestUser46 - PASSED
cert.sh: Sign TestUser46's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10046 -v 60 -d ../CA -i req -o TestUser46-ecmixed.cert -f ../tests.pw 
cert.sh: #9206: Sign TestUser46's EC Request with RSA - PASSED
cert.sh: Import TestUser46's mixed EC Cert --------------------------
certutil -A -n TestUser46-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser46-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9207: Import TestUser46's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser46's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9208: Generate Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's Request --------------------------
certutil -C -c TestCA -m 47 -v 60 -d ../CA -i req -o TestUser47.cert -f ../tests.pw 
cert.sh: #9209: Sign TestUser47's Request - PASSED
cert.sh: Import TestUser47's Cert --------------------------
certutil -A -n TestUser47 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9210: Import TestUser47's Cert - PASSED
cert.sh SUCCESS: TestUser47's Cert Created
cert.sh: Generate DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9211: Generate DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 47 -v 60 -d ../CA -i req -o TestUser47-dsa.cert -f ../tests.pw 
cert.sh: #9212: Sign TestUser47's DSA Request - PASSED
cert.sh: Import TestUser47's DSA Cert --------------------------
certutil -A -n TestUser47-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9213: Import TestUser47's DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9214: Generate mixed DSA Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20047 -v 60 -d ../CA -i req -o TestUser47-dsamixed.cert -f ../tests.pw 
cert.sh: #9215: Sign TestUser47's DSA Request with RSA - PASSED
cert.sh: Import TestUser47's mixed DSA Cert --------------------------
certutil -A -n TestUser47-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9216: Import TestUser47's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9217: Generate EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request --------------------------
certutil -C -c TestCA-ec -m 47 -v 60 -d ../CA -i req -o TestUser47-ec.cert -f ../tests.pw 
cert.sh: #9218: Sign TestUser47's EC Request - PASSED
cert.sh: Import TestUser47's EC Cert --------------------------
certutil -A -n TestUser47-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9219: Import TestUser47's EC Cert - PASSED
cert.sh SUCCESS: TestUser47's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser47 --------------------------
certutil -s "CN=TestUser47, E=TestUser47-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9220: Generate mixed EC Cert Request for TestUser47 - PASSED
cert.sh: Sign TestUser47's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10047 -v 60 -d ../CA -i req -o TestUser47-ecmixed.cert -f ../tests.pw 
cert.sh: #9221: Sign TestUser47's EC Request with RSA - PASSED
cert.sh: Import TestUser47's mixed EC Cert --------------------------
certutil -A -n TestUser47-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser47-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9222: Import TestUser47's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser47's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9223: Generate Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's Request --------------------------
certutil -C -c TestCA -m 48 -v 60 -d ../CA -i req -o TestUser48.cert -f ../tests.pw 
cert.sh: #9224: Sign TestUser48's Request - PASSED
cert.sh: Import TestUser48's Cert --------------------------
certutil -A -n TestUser48 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9225: Import TestUser48's Cert - PASSED
cert.sh SUCCESS: TestUser48's Cert Created
cert.sh: Generate DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9226: Generate DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 48 -v 60 -d ../CA -i req -o TestUser48-dsa.cert -f ../tests.pw 
cert.sh: #9227: Sign TestUser48's DSA Request - PASSED
cert.sh: Import TestUser48's DSA Cert --------------------------
certutil -A -n TestUser48-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9228: Import TestUser48's DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9229: Generate mixed DSA Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20048 -v 60 -d ../CA -i req -o TestUser48-dsamixed.cert -f ../tests.pw 
cert.sh: #9230: Sign TestUser48's DSA Request with RSA - PASSED
cert.sh: Import TestUser48's mixed DSA Cert --------------------------
certutil -A -n TestUser48-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9231: Import TestUser48's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9232: Generate EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request --------------------------
certutil -C -c TestCA-ec -m 48 -v 60 -d ../CA -i req -o TestUser48-ec.cert -f ../tests.pw 
cert.sh: #9233: Sign TestUser48's EC Request - PASSED
cert.sh: Import TestUser48's EC Cert --------------------------
certutil -A -n TestUser48-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9234: Import TestUser48's EC Cert - PASSED
cert.sh SUCCESS: TestUser48's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser48 --------------------------
certutil -s "CN=TestUser48, E=TestUser48-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9235: Generate mixed EC Cert Request for TestUser48 - PASSED
cert.sh: Sign TestUser48's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10048 -v 60 -d ../CA -i req -o TestUser48-ecmixed.cert -f ../tests.pw 
cert.sh: #9236: Sign TestUser48's EC Request with RSA - PASSED
cert.sh: Import TestUser48's mixed EC Cert --------------------------
certutil -A -n TestUser48-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser48-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9237: Import TestUser48's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser48's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9238: Generate Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's Request --------------------------
certutil -C -c TestCA -m 49 -v 60 -d ../CA -i req -o TestUser49.cert -f ../tests.pw 
cert.sh: #9239: Sign TestUser49's Request - PASSED
cert.sh: Import TestUser49's Cert --------------------------
certutil -A -n TestUser49 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9240: Import TestUser49's Cert - PASSED
cert.sh SUCCESS: TestUser49's Cert Created
cert.sh: Generate DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9241: Generate DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 49 -v 60 -d ../CA -i req -o TestUser49-dsa.cert -f ../tests.pw 
cert.sh: #9242: Sign TestUser49's DSA Request - PASSED
cert.sh: Import TestUser49's DSA Cert --------------------------
certutil -A -n TestUser49-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9243: Import TestUser49's DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9244: Generate mixed DSA Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20049 -v 60 -d ../CA -i req -o TestUser49-dsamixed.cert -f ../tests.pw 
cert.sh: #9245: Sign TestUser49's DSA Request with RSA - PASSED
cert.sh: Import TestUser49's mixed DSA Cert --------------------------
certutil -A -n TestUser49-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9246: Import TestUser49's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9247: Generate EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request --------------------------
certutil -C -c TestCA-ec -m 49 -v 60 -d ../CA -i req -o TestUser49-ec.cert -f ../tests.pw 
cert.sh: #9248: Sign TestUser49's EC Request - PASSED
cert.sh: Import TestUser49's EC Cert --------------------------
certutil -A -n TestUser49-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9249: Import TestUser49's EC Cert - PASSED
cert.sh SUCCESS: TestUser49's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser49 --------------------------
certutil -s "CN=TestUser49, E=TestUser49-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9250: Generate mixed EC Cert Request for TestUser49 - PASSED
cert.sh: Sign TestUser49's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10049 -v 60 -d ../CA -i req -o TestUser49-ecmixed.cert -f ../tests.pw 
cert.sh: #9251: Sign TestUser49's EC Request with RSA - PASSED
cert.sh: Import TestUser49's mixed EC Cert --------------------------
certutil -A -n TestUser49-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser49-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9252: Import TestUser49's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser49's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9253: Generate Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's Request --------------------------
certutil -C -c TestCA -m 50 -v 60 -d ../CA -i req -o TestUser50.cert -f ../tests.pw 
cert.sh: #9254: Sign TestUser50's Request - PASSED
cert.sh: Import TestUser50's Cert --------------------------
certutil -A -n TestUser50 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9255: Import TestUser50's Cert - PASSED
cert.sh SUCCESS: TestUser50's Cert Created
cert.sh: Generate DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9256: Generate DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 50 -v 60 -d ../CA -i req -o TestUser50-dsa.cert -f ../tests.pw 
cert.sh: #9257: Sign TestUser50's DSA Request - PASSED
cert.sh: Import TestUser50's DSA Cert --------------------------
certutil -A -n TestUser50-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9258: Import TestUser50's DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9259: Generate mixed DSA Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20050 -v 60 -d ../CA -i req -o TestUser50-dsamixed.cert -f ../tests.pw 
cert.sh: #9260: Sign TestUser50's DSA Request with RSA - PASSED
cert.sh: Import TestUser50's mixed DSA Cert --------------------------
certutil -A -n TestUser50-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9261: Import TestUser50's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9262: Generate EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request --------------------------
certutil -C -c TestCA-ec -m 50 -v 60 -d ../CA -i req -o TestUser50-ec.cert -f ../tests.pw 
cert.sh: #9263: Sign TestUser50's EC Request - PASSED
cert.sh: Import TestUser50's EC Cert --------------------------
certutil -A -n TestUser50-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9264: Import TestUser50's EC Cert - PASSED
cert.sh SUCCESS: TestUser50's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser50 --------------------------
certutil -s "CN=TestUser50, E=TestUser50-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9265: Generate mixed EC Cert Request for TestUser50 - PASSED
cert.sh: Sign TestUser50's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10050 -v 60 -d ../CA -i req -o TestUser50-ecmixed.cert -f ../tests.pw 
cert.sh: #9266: Sign TestUser50's EC Request with RSA - PASSED
cert.sh: Import TestUser50's mixed EC Cert --------------------------
certutil -A -n TestUser50-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser50-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9267: Import TestUser50's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser50's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9268: Generate Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's Request --------------------------
certutil -C -c TestCA -m 51 -v 60 -d ../CA -i req -o TestUser51.cert -f ../tests.pw 
cert.sh: #9269: Sign TestUser51's Request - PASSED
cert.sh: Import TestUser51's Cert --------------------------
certutil -A -n TestUser51 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9270: Import TestUser51's Cert - PASSED
cert.sh SUCCESS: TestUser51's Cert Created
cert.sh: Generate DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9271: Generate DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 51 -v 60 -d ../CA -i req -o TestUser51-dsa.cert -f ../tests.pw 
cert.sh: #9272: Sign TestUser51's DSA Request - PASSED
cert.sh: Import TestUser51's DSA Cert --------------------------
certutil -A -n TestUser51-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9273: Import TestUser51's DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9274: Generate mixed DSA Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20051 -v 60 -d ../CA -i req -o TestUser51-dsamixed.cert -f ../tests.pw 
cert.sh: #9275: Sign TestUser51's DSA Request with RSA - PASSED
cert.sh: Import TestUser51's mixed DSA Cert --------------------------
certutil -A -n TestUser51-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9276: Import TestUser51's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9277: Generate EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request --------------------------
certutil -C -c TestCA-ec -m 51 -v 60 -d ../CA -i req -o TestUser51-ec.cert -f ../tests.pw 
cert.sh: #9278: Sign TestUser51's EC Request - PASSED
cert.sh: Import TestUser51's EC Cert --------------------------
certutil -A -n TestUser51-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9279: Import TestUser51's EC Cert - PASSED
cert.sh SUCCESS: TestUser51's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser51 --------------------------
certutil -s "CN=TestUser51, E=TestUser51-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9280: Generate mixed EC Cert Request for TestUser51 - PASSED
cert.sh: Sign TestUser51's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10051 -v 60 -d ../CA -i req -o TestUser51-ecmixed.cert -f ../tests.pw 
cert.sh: #9281: Sign TestUser51's EC Request with RSA - PASSED
cert.sh: Import TestUser51's mixed EC Cert --------------------------
certutil -A -n TestUser51-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser51-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9282: Import TestUser51's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser51's mixed EC Cert Created
cert.sh: Generate Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9283: Generate Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's Request --------------------------
certutil -C -c TestCA -m 52 -v 60 -d ../CA -i req -o TestUser52.cert -f ../tests.pw 
cert.sh: #9284: Sign TestUser52's Request - PASSED
cert.sh: Import TestUser52's Cert --------------------------
certutil -A -n TestUser52 -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9285: Import TestUser52's Cert - PASSED
cert.sh SUCCESS: TestUser52's Cert Created
cert.sh: Generate DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsa@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9286: Generate DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request --------------------------
certutil -C -c TestCA-dsa -m 52 -v 60 -d ../CA -i req -o TestUser52-dsa.cert -f ../tests.pw 
cert.sh: #9287: Sign TestUser52's DSA Request - PASSED
cert.sh: Import TestUser52's DSA Cert --------------------------
certutil -A -n TestUser52-dsa -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsa.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9288: Import TestUser52's DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's DSA Cert Created
cert.sh: Generate mixed DSA Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-dsamixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k dsa -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9289: Generate mixed DSA Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's DSA Request with RSA --------------------------
certutil -C -c TestCA -m 20052 -v 60 -d ../CA -i req -o TestUser52-dsamixed.cert -f ../tests.pw 
cert.sh: #9290: Sign TestUser52's DSA Request with RSA - PASSED
cert.sh: Import TestUser52's mixed DSA Cert --------------------------
certutil -A -n TestUser52-dsamixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-dsamixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9291: Import TestUser52's mixed DSA Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed DSA Cert Created
cert.sh: Generate EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ec@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9292: Generate EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request --------------------------
certutil -C -c TestCA-ec -m 52 -v 60 -d ../CA -i req -o TestUser52-ec.cert -f ../tests.pw 
cert.sh: #9293: Sign TestUser52's EC Request - PASSED
cert.sh: Import TestUser52's EC Cert --------------------------
certutil -A -n TestUser52-ec -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ec.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9294: Import TestUser52's EC Cert - PASSED
cert.sh SUCCESS: TestUser52's EC Cert Created
cert.sh: Generate mixed EC Cert Request for TestUser52 --------------------------
certutil -s "CN=TestUser52, E=TestUser52-ecmixed@bogus.com, O=BOGUS NSS, L=Mountain View, ST=California, C=US" -R -k ec -q secp384r1 -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -z ../tests_noise -o req
Generating key.  This may take a few moments...
cert.sh: #9295: Generate mixed EC Cert Request for TestUser52 - PASSED
cert.sh: Sign TestUser52's EC Request with RSA --------------------------
certutil -C -c TestCA -m 10052 -v 60 -d ../CA -i req -o TestUser52-ecmixed.cert -f ../tests.pw 
cert.sh: #9296: Sign TestUser52's EC Request with RSA - PASSED
cert.sh: Import TestUser52's mixed EC Cert --------------------------
certutil -A -n TestUser52-ecmixed -t u,u,u -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/client -f ../tests.pw -i TestUser52-ecmixed.cert
Notice: Trust flag u is set automatically if the private key is present.
cert.sh: #9297: Import TestUser52's mixed EC Cert - PASSED
cert.sh SUCCESS: TestUser52's mixed EC Cert Created
cert.sh: Creating CA CRL =====================================
cert.sh: Generating CRL for range 40-42 TestCA authority --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -G -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or
cert.sh: #9298: Generating CRL for range 40-42 TestCA authority - PASSED
cert.sh: Generating CRL (DSA) for range 40-42 TestCA-dsa authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or-dsa
cert.sh: #9299: Generating CRL (DSA) for range 40-42 TestCA-dsa authority - PASSED
cert.sh: Generating CRL (ECC) for range 40-42 TestCA-ec authority --------------------------
crlutil -q -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -G -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or-ec
cert.sh: #9300: Generating CRL (ECC) for range 40-42 TestCA-ec authority - PASSED
cert.sh: Modifying CA CRL by adding one more cert ============
cert.sh: Modify CRL by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42_or1 -i ../server/root.crl_40-42_or
cert.sh: #9301: Modify CRL by adding one more cert - PASSED
cert.sh: Modify CRL (DSA) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42_or1-dsa -i ../server/root.crl_40-42_or-dsa
cert.sh: #9302: Modify CRL (DSA) by adding one more cert - PASSED
cert.sh: Modify CRL (ECC) by adding one more cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42_or1-ec -i ../server/root.crl_40-42_or-ec
cert.sh: #9303: Modify CRL (ECC) by adding one more cert - PASSED
cert.sh: Modifying CA CRL by removing one cert ===============
cert.sh: Modify CRL by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #9304: Modify CRL by removing one cert - PASSED
cert.sh: Modify CRL (DSA) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-dsa -f ../tests.pw -o ../server/root.crl_40-42 -i ../server/root.crl_40-42_or1
cert.sh: #9305: Modify CRL (DSA) by removing one cert - PASSED
cert.sh: Modify CRL (ECC) by removing one cert --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_40-42-ec -i ../server/root.crl_40-42_or1-ec
cert.sh: #9306: Modify CRL (ECC) by removing one cert - PASSED
cert.sh: Creating CA CRL for groups 1 and 2  ===============
cert.sh: Creating CRL for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_43-48 -i ../server/root.crl_40-42
cert.sh: #9307: Creating CRL for groups 1 and 2 - PASSED
cert.sh: Creating CRL (ECC) for groups 1 and 2 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_43-48-ec -i ../server/root.crl_40-42-ec
cert.sh: #9308: Creating CRL (ECC) for groups 1 and 2 - PASSED
cert.sh: Creating CA CRL for groups 1, 2 and 3  ===============
cert.sh: Creating CRL for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA -f ../tests.pw -o ../server/root.crl_49-52 -i ../server/root.crl_43-48
cert.sh: #9309: Creating CRL for groups 1, 2 and 3 - PASSED
cert.sh: Creating CRL (ECC) for groups 1, 2 and 3 --------------------------
crlutil -q -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/CA -M -n TestCA-ec -f ../tests.pw -o ../server/root.crl_49-52-ec -i ../server/root.crl_43-48-ec
cert.sh: #9310: Creating CRL (ECC) for groups 1, 2 and 3 - PASSED
cert.sh: Importing Server CA Issued CRL for certs  trough 52
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -D -n TestCA -f ../tests.pw -d ../server
crlutil: could not find TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #9311: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42 -n TestCA -f ../tests.pw -d ../server
cert.sh: #9312: Importing CRL for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -D -n TestCA-ec -f ../tests.pw -d ../server
crlutil: could not find TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
crlutil: could not find the issuer TestCA-ec's CRL: SEC_ERROR_CRL_NOT_FOUND: No matching CRL was found.
cert.sh: #9313: Importing CRL (ECC) for groups 1 - PASSED
cert.sh: Importing CRL (ECC) for groups 1 --------------------------
crlutil -q -I -i ../server/root.crl_40-42-ec -n TestCA-ec -f ../tests.pw -d ../server
cert.sh: #9314: Importing CRL (ECC) for groups 1 - PASSED
cert.sh SUCCESS: SSL CRL prep passed
cert.sh cert.sh: finished cert.sh
TIMESTAMP cert END: Tue May  2 16:02:34 UTC 2017
Running tests for dbtests
TIMESTAMP dbtests BEGIN: Tue May  2 16:02:34 UTC 2017
dbtests.sh: CERT and Key DB Tests ===============================
---------------------------------------------------------------
| test opening the database read/write in a nonexisting directory
---------------------------------------------------------------
certutil: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9315: Certutil didn't work in a nonexisting dir 255 - PASSED
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9316: Dbtest readonly didn't work in a nonexisting dir 46 - PASSED
---------------------------------------------------------------
| test force opening the database in a nonexisting directory
---------------------------------------------------------------
dbdir selected is ./non_existent_dir
ERROR: Directory "./non_existent_dir" does not exist.
dbtests.sh: #9317: Dbtest force succeeded in a nonexisting dir 0 - PASSED
---------------------------------------------------------------
| test opening the database readonly in an empty directory
---------------------------------------------------------------
tstclnt: unable to open cert database: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9318: Tstclnt didn't work in an empty dir 1 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_BAD_DATABASE: security library: bad database.
dbtests.sh: #9319: Dbtest readonly didn't work in an empty dir 46 - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #9320: Dbtest logout after empty DB Init has key - PASSED
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
dbtests.sh: #9321: Dbtest password DB Init maintains needlogin state - PASSED
certutil: could not find certificate named "xxxx": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #9322: Certutil didn't work in an empty dir 255 - PASSED
---------------------------------------------------------------
| test force opening the database  readonly in a empty directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/emptydir/key3.db" does not exist.
dbtests.sh: #9323: Dbtest force readonly succeeded in an empty dir 0 - PASSED
---------------------------------------------------------------
| test opening the database r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtest: function failed: SEC_ERROR_READ_ONLY: security library: read-only database.
dbtests.sh: #9324: Dbtest r/w didn't work in an readonly dir 46 - PASSED
certutil: could not find certificate named "TestUser": SEC_ERROR_UNRECOGNIZED_OID: Unrecognized Object Identifier.
dbtests.sh: #9325: Certutil didn't work in an readonly dir 255 - PASSED
---------------------------------------------------------------
| test opening the database ronly in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #9326: Dbtest readonly succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| test force opening the database  r/w in a readonly directory
---------------------------------------------------------------
dbdir selected is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
ERROR: Directory "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir" is not writeable.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/secmod.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert8.db" does not exist.
database checked is /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db
ERROR: File "/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key3.db" does not exist.
dbtests.sh: #9327: Dbtest force succeeded in a readonly dir 0 - PASSED
---------------------------------------------------------------
| ls -l /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
---------------------------------------------------------------
dr-xr-xr-x. 2 mockbuild mockbuild   4096 May  2 16:02 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir
-r--r-----. 1 mockbuild mockbuild   1221 May  2 16:02 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsa.cert
-r--r-----. 1 mockbuild mockbuild   1424 May  2 16:02 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-dsamixed.cert
-r--r-----. 1 mockbuild mockbuild    577 May  2 16:02 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ec.cert
-r--r-----. 1 mockbuild mockbuild    705 May  2 16:02 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser-ecmixed.cert
-r--r-----. 1 mockbuild mockbuild    870 May  2 16:02 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/TestUser.cert
-r--------. 1 mockbuild mockbuild 233472 May  2 16:02 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/cert9.db
-r--------. 1 mockbuild mockbuild 131072 May  2 16:02 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/key4.db
-r--------. 1 mockbuild mockbuild    630 May  2 16:02 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/pkcs11.txt
-r--r-----. 1 mockbuild mockbuild    393 May  2 16:02 /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/ronlydir/req
---------------------------------------------------------------
| test creating a new cert with a conflicting nickname
---------------------------------------------------------------
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/conflictdir
certutil: could not add certificate to token or database: SEC_ERROR_ADDING_CERT: Error adding certificate to database.
dbtests.sh: #9328: Nicknane conflict test, could not import conflict nickname 255 - PASSED
---------------------------------------------------------------
| test importing an old cert to a conflicting nickname
---------------------------------------------------------------
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:40 2017
            Not After : Mon May 02 16:00:40 2022
        Subject: "CN=Bob,E=Bob@bogus.com,O=BOGUS NSS,L=Mountain View,ST=Calif
            ornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:06:0f:b7:2e:32:47:02:eb:12:e6:1a:f6:87:90:7f:
                    03:15:d5:0e:8f:5f:bc:cf:52:7a:59:5a:c2:40:bc:a0:
                    5c:b7:91:8d:4b:fa:8f:10:77:75:1f:df:5a:e8:8b:fc:
                    b1:9b:a7:d3:09:d6:91:73:e5:0b:fd:db:37:68:58:d2:
                    2d:b2:59:bb:6b:12:dc:13:82:90:c8:77:4c:8a:ec:fc:
                    c1:80:9c:a9:99:d3:62:09:a3:15:fc:f5:70:db:05:6f:
                    32:a1:56:d9:ea:0a:68:12:20:90:2e:ab:af:af:4a:34:
                    0c:48:57:23:d5:d2:61:c7:d8:7d:fb:2a:02:3f:50:af:
                    00:86:73:32:a6:5b:b9:f1:b3:7f:b6:f3:8d:be:9f:a8:
                    c4:1c:00:db:7b:93:cf:d9:e5:86:99:e5:4d:59:34:d3:
                    08:e4:88:51:cd:ba:91:7f:96:3c:c3:52:c4:83:01:61:
                    c7:4e:62:9a:06:0e:fe:36:cc:05:4f:5c:dc:aa:a8:70:
                    e4:43:f7:3f:f8:1d:85:04:16:4d:e5:cc:d1:5b:2b:ec:
                    3c:13:ba:c7:dd:42:f7:78:b2:82:b9:24:c9:39:cb:5a:
                    a3:83:10:01:33:12:da:bd:14:9c:ab:81:cb:cd:dc:da:
                    68:3e:f7:04:d1:13:83:fa:2f:e7:b7:17:12:71:02:f9
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6c:cd:5e:90:cd:60:07:be:28:2f:10:0e:1d:fe:b0:19:
        67:34:d4:65:40:53:9c:07:b5:df:77:ea:de:00:9e:11:
        81:7e:22:d9:61:74:91:16:17:7f:e3:20:33:d3:5e:49:
        ce:fc:01:7f:38:a2:09:2b:e7:b7:c4:e4:f6:fc:df:c2:
        31:84:7d:36:da:73:11:6d:4e:0e:6f:ae:e7:de:d8:eb:
        06:f0:06:aa:3a:26:4c:c1:b1:84:b2:04:f3:d5:3f:f3:
        98:fa:c9:05:8c:f5:10:3a:16:26:03:0a:63:18:45:71:
        28:52:c3:f2:7d:5c:3c:49:78:d9:16:e7:1b:80:05:3d:
        8c:70:64:73:01:91:2c:bf:e9:0f:40:40:11:3f:58:96:
        c8:b6:a8:39:e0:d9:a6:7f:59:f2:76:e8:e2:73:8d:fc:
        86:49:76:6e:f7:54:84:b9:59:ce:b6:42:a9:96:6c:17:
        70:9a:d5:3d:b6:b6:11:a3:00:ca:5c:83:f1:c1:a4:95:
        ff:55:5d:26:85:b5:27:e0:1e:5c:91:2f:a4:6b:43:30:
        d0:a5:e2:2e:75:1b:a7:63:f4:80:47:51:25:e9:33:83:
        35:2a:aa:95:ec:e0:86:7c:2b:12:41:97:7a:01:e6:6f:
        f9:7e:89:af:4b:b6:61:5c:53:df:ef:e9:08:03:63:e3
    Fingerprint (SHA-256):
        C9:76:77:E4:06:57:DE:8A:FE:4F:95:45:3A:97:EB:98:0F:BA:C3:48:A2:50:A6:27:60:47:FE:CD:80:BC:A0:F3
    Fingerprint (SHA1):
        2A:B3:C6:B0:23:CC:88:8E:73:31:B3:B8:F8:B0:00:19:AA:4E:59:35
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
dbtests.sh: #9329: Nicknane conflict test-setting nickname conflict was correctly rejected - PASSED
TIMESTAMP dbtests END: Tue May  2 16:02:37 UTC 2017
Running tests for tools
TIMESTAMP tools BEGIN: Tue May  2 16:02:37 UTC 2017
tools.sh: Tools Tests with ECC ===============================
tools.sh: Exporting Alice's email cert & key - default ciphers
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9330: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                a9:23:ac:88:2e:a3:cc:11:61:ac:9a:b4:c5:c8:c8:f3
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9331: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9332: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's email EC cert & key---------------
pk12util -o Alice-ec.p12 -n "Alice-ec" -d ../alicedir -k ../tests.pw \
         -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9333: Exporting Alice's email EC cert & key (pk12util -o)  - PASSED
tools.sh: Importing Alice's email EC cert & key --------------
pk12util -i Alice-ec.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9334: Importing Alice's email EC cert & key (pk12util -i)  - PASSED
tools.sh: Listing Alice's pk12 EC file -----------------
pk12util -l Alice-ec.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice-ec
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                24:50:45:bf:15:dd:bd:70:bd:cc:23:0b:3b:48:31:80
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 16:00:05 2017
            Not After : Mon May 02 16:00:05 2067
        Subject: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Califor
            nia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:23
            EC Public Key:
                PublicValue:
                    04:00:da:65:ec:62:f7:6a:3a:de:b8:4d:d6:f6:a3:da:
                    af:b7:a0:f3:24:51:ad:9f:0d:0a:a3:4b:72:d3:67:44:
                    1c:98:9c:b3:e5:b5:bf:f0:52:7c:07:8c:8c:de:e7:96:
                    e9:45:ab:a7:72:02:55:27:77:fc:ca:d4:0a:cb:47:7a:
                    e4:d6:54:01:9d:39:6b:f3:29:00:b2:d6:1f:be:44:1c:
                    c4:0e:1f:bc:a7:9a:87:c8:76:bc:2f:7b:42:f8:dc:bf:
                    a2:7e:fc:2d:3f:f7:fd:d8:35:a4:91:6e:ed:fc:20:f8:
                    06:93:7a:22:0a:ae:36:71:10:17:89:c9:8e:9f:2a:79:
                    81:b4:be:38:15
                Curve: SECG elliptic curve secp521r1 (aka NIST P-521)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:88:02:42:01:42:df:1f:ae:7b:37:ea:b0:aa:ff:
        9a:e7:c2:ad:e7:67:2c:bd:85:11:a7:3a:07:93:de:cc:
        3e:15:2e:e6:82:b1:b5:b4:8e:ba:a6:e5:73:3b:bb:94:
        32:32:09:89:04:1a:ed:92:93:f3:2a:08:dc:a4:6f:bc:
        16:67:82:f7:70:02:6d:02:42:00:92:1b:66:d7:b6:70:
        99:b1:dd:f4:96:28:5d:30:3c:10:63:9c:0f:a1:33:2f:
        7c:bb:d6:fb:4b:ba:d6:20:76:80:40:6e:59:41:c6:bf:
        6a:f2:ce:54:3d:57:57:02:bb:cf:0a:e9:90:a2:be:fa:
        25:28:30:c2:2b:f1:4a:19:5e:99:26
    Fingerprint (SHA-256):
        21:26:D4:D1:55:FF:E3:85:79:20:04:EE:65:19:CC:C2:CC:21:87:D4:29:E6:52:ED:21:64:DF:60:2E:F1:A0:C0
    Fingerprint (SHA1):
        2E:18:01:19:43:40:FA:2E:78:CA:7C:58:2B:05:D5:8C:38:91:E8:0D
    Friendly Name: TestCA-ec
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: X9.62 ECDSA signature with SHA-1
        Issuer: "CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=Californ
            ia,C=US"
        Validity:
            Not Before: Tue May 02 16:00:38 2017
            Not After : Mon May 02 16:00:38 2022
        Subject: "CN=Alice,E=Alice-ec@bogus.com,O=BOGUS NSS,L=Mountain View,S
            T=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: X9.62 elliptic curve public key
                Args:
                    06:05:2b:81:04:00:22
            EC Public Key:
                PublicValue:
                    04:7e:71:7c:88:df:34:2d:59:8f:60:94:a2:85:fe:06:
                    ed:4e:6c:ff:6a:65:67:01:a3:c9:37:fa:9c:63:1e:58:
                    00:6a:a9:e1:06:2a:8b:ee:07:57:43:d9:5e:f9:c8:7b:
                    88:e1:fa:55:60:82:75:72:d0:b1:b6:d6:df:8a:df:69:
                    e1:b1:57:af:84:17:55:2d:bc:75:dc:8c:06:62:8c:0e:
                    c9:d5:30:63:66:13:78:20:8a:78:9d:d8:f1:13:85:49:
                    e4
                Curve: SECG elliptic curve secp384r1 (aka NIST P-384)
    Signature Algorithm: X9.62 ECDSA signature with SHA-1
    Signature:
        30:81:87:02:41:3f:3f:e7:a9:fa:68:36:ca:60:ad:15:
        b1:ce:40:60:35:89:60:2b:05:07:84:d4:01:ef:4b:bc:
        d1:68:9a:c7:6f:ec:b7:c5:6a:41:36:47:61:b3:2b:7c:
        f8:2b:0e:fc:56:95:f8:67:27:c6:43:e0:62:63:1d:b1:
        6b:c0:15:e8:a3:c8:02:42:01:35:56:48:ed:2c:9f:64:
        0b:fb:d6:b5:55:e6:13:eb:4f:ce:4e:48:da:36:4b:f5:
        45:ff:71:e3:4e:53:12:49:91:97:a3:3f:03:a1:60:2d:
        d6:6e:64:b7:f8:49:ec:53:df:eb:a6:06:5d:8e:53:9e:
        ca:42:a2:74:7b:94:98:76:10:be
    Fingerprint (SHA-256):
        71:44:6C:F7:EA:8C:93:CC:D8:0F:27:E2:A0:E3:A3:31:A6:86:EE:FD:E8:EE:3C:99:5D:FD:78:69:59:A3:7B:C6
    Fingerprint (SHA1):
        94:B2:53:41:66:B8:2C:4E:A8:38:33:9C:19:42:02:4B:CD:A4:29:91
    Friendly Name: Alice-ec
tools.sh: #9335: Listing Alice's pk12 EC file (pk12util -l)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9336: Exporting with [RC2-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                43:e7:ef:d2:63:f1:70:d7:8d:df:95:85:50:a6:56:0f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9337: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9338: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9339: Exporting with [RC2-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                11:a7:aa:ca:a6:0f:0d:67:b3:e2:5a:03:2d:bd:ae:44
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9340: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9341: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c RC2-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9342: Exporting with [RC2-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 128 Bit RC2 CBC
        Parameters:
            Salt:
                07:03:c8:db:a5:80:f6:bb:b8:47:de:cd:5a:6e:d8:b4
            Iteration Count: 2000 (0x7d0)
tools.sh: #9343: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9344: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9345: Exporting with [DES-EDE3-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                68:75:33:17:d9:81:88:df:ca:79:50:3d:e2:c6:a8:70
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9346: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9347: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9348: Exporting with [DES-EDE3-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                9a:dc:d5:b3:a3:0d:78:81:e9:f8:62:ec:60:f7:4a:9b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9349: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9350: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c DES-EDE3-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9351: Exporting with [DES-EDE3-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                ea:a1:80:21:41:31:c1:f8:28:11:b6:31:32:a4:68:97
            Iteration Count: 2000 (0x7d0)
tools.sh: #9352: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9353: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9354: Exporting with [AES-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        33:61:82:8c:56:fe:e0:76:49:37:eb:12:6b:13:04:fa
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:e8:ee:2a:5c:b2:07:be:64:43:0c:a8:68:29:5d:
                    86:33
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9355: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9356: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9357: Exporting with [AES-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        70:39:d5:13:f7:df:8f:27:86:92:4d:99:4e:9a:48:47
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:06:ca:e3:db:86:fd:2c:bc:9f:f1:db:2d:d4:3c:
                    31:7b
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9358: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9359: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9360: Exporting with [AES-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b1:5c:f9:52:75:27:42:cc:02:31:1d:d6:ec:b9:f8:0a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-128-CBC
                Args:
                    04:10:85:e2:20:e8:65:87:aa:a9:c3:11:1e:7b:e5:2e:
                    0e:15
tools.sh: #9361: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9362: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9363: Exporting with [AES-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        6a:98:2c:58:1e:46:1e:70:78:dc:c4:df:37:7b:f7:85
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:37:96:95:f0:32:0a:8e:bc:55:b5:92:f5:09:6c:
                    9f:d2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9364: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9365: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9366: Exporting with [AES-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        10:5c:35:07:cb:0f:21:c3:a9:75:ab:33:58:5a:c0:45
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:65:27:40:21:ef:02:ea:1a:9b:18:22:79:b5:f0:
                    0d:f3
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9367: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9368: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9369: Exporting with [AES-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9c:f1:2c:fa:bd:7d:e5:27:5d:29:ab:da:8c:81:0a:13
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-192-CBC
                Args:
                    04:10:02:2f:da:92:2f:83:e4:9a:53:55:ea:8d:f8:a4:
                    8f:f0
tools.sh: #9370: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9371: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9372: Exporting with [AES-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        9b:8d:47:c6:46:26:fd:c0:73:eb:04:48:c3:d8:65:b1
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:0f:1e:37:6c:e7:ca:38:82:ba:30:bb:c3:f8:cd:
                    57:d2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9373: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9374: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9375: Exporting with [AES-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        60:16:76:b1:0c:9f:71:55:b9:6c:4d:d5:8c:62:25:cf
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:aa:10:46:2c:34:48:23:e8:6b:5a:4d:c2:05:f2:
                    4a:c7
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9376: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9377: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c AES-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9378: Exporting with [AES-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        1d:9f:9a:70:a6:c9:f2:75:24:25:4b:98:77:42:ac:14
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: AES-256-CBC
                Args:
                    04:10:2c:21:08:f2:64:95:2a:98:c5:b9:9a:a6:27:5a:
                    79:45
tools.sh: #9379: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9380: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9381: Exporting with [CAMELLIA-128-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b7:f8:92:3f:e8:45:6b:78:f4:73:18:ff:80:6b:10:8b
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:7c:c0:e1:e5:c6:ca:51:fc:11:2d:8c:60:5f:17:
                    56:66
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9382: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9383: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9384: Exporting with [CAMELLIA-128-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        2a:3f:50:d5:36:4d:aa:a0:c9:ce:4c:07:d7:11:bb:f0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:65:77:bd:c4:f7:d6:94:a6:90:51:96:70:20:a6:
                    3c:c5
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9385: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9386: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-128-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9387: Exporting with [CAMELLIA-128-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        8c:c3:48:e2:2d:dc:2d:6e:78:6f:20:d6:ed:12:33:90
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-128-CBC
                Args:
                    04:10:de:ee:bd:2a:d5:47:75:8b:e3:47:34:c6:96:71:
                    2f:cb
tools.sh: #9388: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9389: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9390: Exporting with [CAMELLIA-192-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        36:43:b3:29:e4:7a:cb:95:8c:50:39:7a:0a:84:90:57
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:6f:f5:cb:f4:5c:c1:35:02:fb:dd:83:0c:9e:60:
                    65:fa
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9391: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9392: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9393: Exporting with [CAMELLIA-192-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        b8:18:9f:c4:fe:90:88:b6:3f:17:36:c2:d1:7a:1d:b5
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:a5:3b:f5:ab:11:52:57:3c:d5:9f:70:4e:f8:93:
                    08:f2
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9394: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9395: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-192-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9396: Exporting with [CAMELLIA-192-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        70:0a:75:49:0b:94:e1:a1:55:aa:e6:58:49:46:07:e0
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-192-CBC
                Args:
                    04:10:e0:9a:f2:b9:1e:9a:e8:c3:6a:84:fa:19:66:6e:
                    63:29
tools.sh: #9397: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9398: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C RC2-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9399: Exporting with [CAMELLIA-256-CBC:RC2-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        fe:8e:76:5b:9d:a6:f1:8e:13:a6:06:91:ab:01:80:ca
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:61:9c:e1:39:4e:06:d0:8e:09:81:33:8f:03:44:
                    31:d6
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9400: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9401: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C DES-EDE3-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9402: Exporting with [CAMELLIA-256-CBC:DES-EDE3-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        5b:c9:b4:be:ad:bc:8d:cc:8f:ed:71:eb:9e:30:65:8a
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:6a:2a:02:f0:bb:9d:01:fc:69:6f:59:f8:89:16:
                    c5:cb
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9403: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9404: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c CAMELLIA-256-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9405: Exporting with [CAMELLIA-256-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption v2 
        Encryption:
            KDF: PKCS #5 Password Based Key Dervive Function v2 
                Parameters:
                    Salt:
                        77:14:c5:01:3c:76:28:ef:8a:7e:94:cd:00:26:37:13
                    Iteration Count: 2000 (0x7d0)
                    Key Length: 32 (0x20)
                    KDF algorithm: HMAC SHA-1
            Cipher: CAMELLIA-256-CBC
                Args:
                    04:10:1d:41:99:35:8f:a4:3a:76:06:56:86:7a:ae:db:
                    af:64
tools.sh: #9406: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9407: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9408: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                a4:e0:9b:81:45:43:c7:30:1f:a6:b7:5e:36:62:72:2a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9409: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9410: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9411: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                36:93:77:05:b0:3d:52:04:8c:00:25:fb:6f:50:75:6b
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9412: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9413: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9414: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                08:cf:49:c6:4d:40:74:78:fc:d2:71:69:fe:15:fb:a0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9415: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9416: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9417: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                65:e7:99:5b:de:37:a2:9a:ea:ce:33:d7:fe:c3:bc:03
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9418: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9419: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD2 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9420: Exporting with [PKCS #5 Password Based Encryption with MD2 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD2 and DES-CBC
        Parameters:
            Salt:
                17:6a:d3:c1:1f:a1:f5:61:80:ad:7a:74:0f:19:0f:a4
            Iteration Count: 2000 (0x7d0)
tools.sh: #9421: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9422: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9423: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                4b:17:bc:9c:4c:ea:fc:bd:67:d4:0d:97:d5:77:6d:39
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9424: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9425: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9426: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                e8:ea:04:de:70:95:50:8e:da:86:7c:64:09:be:b3:3e
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9427: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9428: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9429: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                ea:8b:e3:3e:da:4f:46:6d:ec:af:df:d9:f8:72:75:08
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9430: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9431: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9432: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                80:fc:a3:c1:b9:51:cd:f8:5f:71:87:a3:24:ce:b1:6d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9433: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9434: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with MD5 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9435: Exporting with [PKCS #5 Password Based Encryption with MD5 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with MD5 and DES-CBC
        Parameters:
            Salt:
                f8:58:f5:82:0c:73:30:b8:55:ce:4c:1e:c2:97:ae:10
            Iteration Count: 2000 (0x7d0)
tools.sh: #9436: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9437: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9438: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                24:9e:71:54:c0:44:b9:42:e9:12:ca:b7:e9:bc:47:76
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9439: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9440: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9441: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                ad:d1:8b:83:eb:a9:d5:27:f4:d7:fa:97:d1:20:80:60
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9442: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9443: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9444: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                a7:2c:86:5f:be:a7:07:68:6f:b3:fa:1e:62:62:24:21
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9445: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9446: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9447: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                a9:4a:56:05:72:a8:cd:58:82:b1:e0:54:97:1e:95:0d
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9448: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9449: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c PKCS #5 Password Based Encryption with SHA-1 and DES-CBC -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9450: Exporting with [PKCS #5 Password Based Encryption with SHA-1 and DES-CBC:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
        Parameters:
            Salt:
                73:9b:db:7b:a2:c4:34:df:ad:a9:f0:d7:38:fe:c9:eb
            Iteration Count: 2000 (0x7d0)
tools.sh: #9451: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9452: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD2 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9453: Exporting with [default:PKCS #5 Password Based Encryption with MD2 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                68:4f:15:0a:fd:57:0f:58:1d:8e:6c:04:a6:45:f3:86
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9454: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9455: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with MD5 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9456: Exporting with [default:PKCS #5 Password Based Encryption with MD5 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                88:30:48:ed:05:e0:6d:39:1b:fb:2c:b3:68:77:af:12
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9457: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9458: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C PKCS #5 Password Based Encryption with SHA-1 and DES-CBC
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9459: Exporting with [default:PKCS #5 Password Based Encryption with SHA-1 and DES-CBC] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                3e:7c:a9:94:77:00:5c:e8:f5:bc:4b:4e:4d:5e:ff:8c
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9460: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9461: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9462: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fd:ed:aa:f9:ca:fe:d1:42:98:70:78:72:21:0c:d8:52
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9463: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9464: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting with [default:null]
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9465: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                2e:6c:c1:d4:d1:94:b3:59:2d:4e:de:02:af:f5:ee:cd
            Iteration Count: 2000 (0x7d0)
tools.sh: #9466: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9467: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9468: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                56:a2:bc:52:05:42:b1:27:b3:fc:5a:00:ec:6a:d3:8a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9469: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9470: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9471: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                d1:ee:ec:f9:e6:b5:9c:33:d6:c4:bb:a0:d3:ee:6d:32
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9472: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9473: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9474: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                fc:1c:75:e2:b8:f5:80:b4:6e:72:99:31:15:fc:24:6f
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9475: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9476: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9477: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                c9:2c:ab:68:d7:22:aa:38:08:13:e8:2e:95:38:c4:55
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9478: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9479: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9480: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                cf:d7:cb:8d:47:ab:f8:18:1b:d0:94:95:60:29:be:fb
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9481: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9482: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9483: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                cb:56:8e:a9:ee:a8:6c:96:59:50:c7:84:d2:1d:76:dd
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9484: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9485: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9486: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                5c:58:0f:42:73:ca:c7:57:47:dd:dd:c3:c7:91:ae:b0
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9487: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9488: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9489: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                7f:95:32:4d:ae:85:2f:54:98:a0:6e:57:df:25:8a:e1
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9490: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9491: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9492: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                af:2f:ed:ff:e2:eb:28:ad:40:1c:19:c6:93:71:09:98
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9493: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9494: Importing Alice.p12 (pk12util -i)  - PASSED
tools.sh: Exporting Alice's key & cert with [default:default] (pk12util -o)
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9495: Exporting Alices's key & cert with [default:default] (pk12util -o)  - PASSED
tools.sh: Listing Alice's pk12 file
pk12util -l Alice.p12 -w ../tests.pw
Key(shrouded):
    Friendly Name: Alice
    Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
        Parameters:
            Salt:
                4c:6c:e1:b0:2c:12:93:41:d2:63:6f:c8:4d:81:44:2a
            Iteration Count: 2000 (0x7d0)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 15:59:54 2017
            Not After : Mon May 02 15:59:54 2067
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a5:bf:fb:e7:25:07:e1:8e:a9:9d:3c:d9:fe:9f:9a:f0:
                    6b:4d:57:bc:95:cf:b0:d5:29:9d:2c:c0:62:61:b9:55:
                    56:3f:6a:19:b2:91:f1:dd:2f:7e:9b:77:85:03:d0:00:
                    28:99:8e:a9:4c:42:81:e4:31:ef:d9:d3:8d:1e:8d:08:
                    3c:a8:04:00:cd:bb:9a:01:45:a4:04:a9:03:b1:95:15:
                    dc:cd:35:60:40:0a:6a:ea:07:02:cb:bb:b9:1f:8d:80:
                    f6:e3:4a:a9:8e:3d:fd:95:75:9c:c7:c7:3c:69:c5:53:
                    f5:37:2a:5d:bb:30:d8:fe:62:3e:ee:24:40:d8:a6:43:
                    d1:52:2d:aa:bc:3c:a6:3a:46:2e:de:28:80:ad:bd:dc:
                    48:0b:a7:77:7b:61:f5:5b:17:2f:b1:bc:5a:49:39:2d:
                    fa:08:86:69:03:04:42:73:c1:3b:51:5c:f4:6a:c4:a9:
                    c1:16:32:b6:a9:d1:44:c4:ed:1a:57:b4:e1:ab:2b:44:
                    f9:ab:4c:50:31:35:47:83:05:d6:d6:fc:8c:2a:56:f1:
                    90:51:06:ed:4c:d8:be:de:1a:df:2c:2c:55:2f:61:c3:
                    4a:cb:7f:07:64:e4:77:f5:83:32:5f:c3:d0:1b:ad:ae:
                    bd:9c:76:66:19:3b:51:1d:3a:b0:04:d8:d9:94:a0:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:7a:fa:0c:0c:73:69:86:8d:5c:ee:c1:fe:5b:55:28:
        74:6f:88:c5:2e:f5:ba:dc:a7:38:5f:42:23:01:b1:20:
        f9:b8:12:99:1b:34:85:17:d7:95:5a:5d:f3:6c:df:e2:
        fb:f9:3d:b1:5d:d0:7b:f0:85:ef:d8:ad:a5:4b:3b:e5:
        77:f2:1e:03:fb:31:0c:c0:a5:77:cc:77:40:4c:5c:fd:
        1f:14:0c:8b:ef:8f:b0:71:92:e5:a9:cf:36:7e:ca:4a:
        0c:3e:80:d7:6c:c0:03:bf:9c:b1:6e:38:dd:2d:e6:9e:
        8e:3c:5b:65:df:2b:9d:e5:a2:77:cb:44:4c:ae:e1:8b:
        76:13:d6:74:65:d6:cd:eb:68:34:0d:14:92:5c:43:d5:
        5f:bf:2e:54:3d:ee:ac:18:d0:64:24:6b:9e:66:b9:d3:
        c8:ab:27:ce:37:d1:f9:46:0a:f7:55:7c:30:55:0b:cf:
        45:56:c0:21:4a:c2:5c:b2:a6:8e:f4:27:e3:c8:7b:8d:
        d4:06:26:57:a7:c4:f0:d5:8d:f0:16:ed:e0:fd:20:dd:
        07:48:9a:ca:ae:fb:0e:86:e2:48:75:bc:7f:a8:88:bd:
        3e:24:00:81:e5:6a:32:dc:a5:bc:7a:c6:ec:5d:5c:19:
        e6:c0:e4:1c:c4:4e:c6:d1:84:23:bb:e6:5c:e4:62:41
    Fingerprint (SHA-256):
        C2:B5:76:97:7A:CA:82:C9:3F:C3:14:7F:81:E6:4E:40:55:2B:D3:38:19:66:08:FE:4F:EA:40:C4:ED:DE:35:5F
    Fingerprint (SHA1):
        94:D2:AD:3D:BC:3E:09:96:AC:AC:9B:E9:28:9B:90:68:51:5B:7D:C8
    Friendly Name: TestCA
Certificate(has private key):
    Data:
        Version: 3 (0x2)
        Serial Number: 30 (0x1e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:00:36 2017
            Not After : Mon May 02 16:00:36 2022
        Subject: "CN=Alice,E=Alice@bogus.com,O=BOGUS NSS,L=Mountain View,ST=C
            alifornia,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d3:18:bd:72:91:60:41:45:98:d7:1a:bb:ea:dc:ed:e7:
                    5c:a2:49:7a:4e:dc:a7:92:70:80:f4:de:2e:8a:f8:f2:
                    80:e1:c9:bb:8b:0f:f6:8b:e5:d0:ab:17:03:8a:9b:4d:
                    47:d0:57:85:f9:b5:96:de:31:93:57:02:c9:90:be:9f:
                    03:7b:49:dc:3c:45:8e:a2:84:4d:2f:43:8d:1b:cb:37:
                    00:4f:02:b0:c9:52:5a:37:9e:c8:b6:c5:ee:e3:3b:cd:
                    9d:ca:3a:ce:8a:80:e5:a7:e0:7d:01:ad:05:57:7e:dc:
                    4c:6c:27:73:96:98:29:77:71:99:01:db:88:22:d4:e6:
                    e1:1d:59:62:29:4f:f4:36:58:54:5d:74:3d:a9:11:8c:
                    9e:d4:e4:9e:a1:cd:d7:aa:43:00:e4:28:9e:14:bb:aa:
                    44:00:95:cd:71:ae:56:4b:b0:ea:91:54:7a:f1:cf:f0:
                    64:aa:2d:f2:10:52:d4:40:c7:52:f5:b1:f3:23:72:f4:
                    89:fa:80:34:b7:e9:7b:81:e9:12:0c:5e:1a:be:7c:89:
                    84:61:1a:3a:36:ce:71:96:51:f0:4b:5c:6d:c0:8d:67:
                    2c:45:c3:30:8e:51:36:55:b1:f5:e4:b9:70:16:4d:c6:
                    dd:85:20:c8:5f:4c:0d:38:e4:dd:b0:82:eb:c5:33:9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        74:83:6d:9b:ef:ce:46:bf:04:cd:0a:9d:ee:b8:82:3b:
        32:32:a5:05:dd:23:f5:79:b8:bb:0f:33:68:db:ee:d2:
        8f:24:37:3b:5e:54:9a:6d:07:81:37:23:a8:b7:3f:70:
        2e:96:55:8b:4b:41:cd:10:8f:cc:63:0b:82:cc:29:6f:
        da:74:30:89:19:0f:8a:d1:3c:19:06:66:5b:9c:08:ee:
        a5:fd:35:ce:49:93:9a:17:71:02:64:66:87:2a:8c:6c:
        da:40:73:f9:08:30:be:ac:b7:8b:99:f6:0b:c5:4b:24:
        7f:dc:c9:bc:81:22:51:c7:80:4a:e0:88:d8:c6:1b:5d:
        31:e2:47:28:d9:7f:3e:4c:72:5c:e1:36:2a:eb:4f:cc:
        e5:5c:bf:d0:51:54:da:55:2b:e5:ec:50:2b:02:12:fc:
        bf:a0:f0:d6:1d:0c:d5:96:4d:53:a8:aa:09:75:0a:e1:
        81:43:21:25:7a:71:9a:7e:7c:16:31:fb:89:82:fc:c3:
        88:e0:05:5a:b6:c9:18:d1:c6:9c:7b:53:61:9b:c5:f7:
        86:f2:85:af:74:52:3c:fc:d3:48:b7:71:e8:91:41:7a:
        41:6c:32:6e:3a:32:19:2c:e3:57:0f:a6:4f:78:a9:b1:
        2b:0c:b0:23:31:ab:01:a9:a3:a2:c0:0b:1c:7a:2b:8a
    Fingerprint (SHA-256):
        35:25:FF:10:47:11:F5:51:89:92:FD:FD:8D:A1:9E:EF:5F:BF:57:24:A7:35:F4:A9:4F:1F:3E:17:80:54:AF:2F
    Fingerprint (SHA1):
        2D:0E:2E:D2:48:30:26:04:EC:B3:58:75:EE:16:74:DA:9F:0E:B3:2E
    Friendly Name: Alice
tools.sh: #9496: Listing Alice.p12 (pk12util -l)  - PASSED
tools.sh: Importing Alice's pk12 Alice.p12 file
pk12util -i Alice.p12 -d ../tools/copydir -k ../tests.pw -w ../tests.pw
pk12util: PKCS12 IMPORT SUCCESSFUL
tools.sh: #9497: Importing Alice.p12 (pk12util -i)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -c null
pk12util: Algorithm: "null": SEC_ERROR_INVALID_ALGORITHM: security library: invalid algorithm.
tools.sh: #9498: Exporting with [null:default] (pk12util -o)  - PASSED
pk12util -o Alice.p12 -n "Alice" -d ../alicedir \
         -k ../tests.pw -w ../tests.pw -C null
pk12util: PKCS12 EXPORT SUCCESSFUL
tools.sh: #9499: Exporting with [default:null] (pk12util -o)  - PASSED
tools.sh: Create objsign cert -------------------------------
signtool -G "objectsigner" -d ../tools/signdir -p "nss"
WARNING: Performing this operation while the browser is running could cause
corruption of your security databases. If the browser is currently running,
you should exit the browser before continuing this operation. Enter 
"y" to continue, or anything else to abort: 
Enter certificate information.  All fields are optional. Acceptable
characters are numbers, letters, spaces, and apostrophes.
certificate common name: organization: organization unit: state or province: country (must be exactly 2 characters): username: email address: generated public/private key pair
certificate request generated
certificate has been signed
certificate "objsigner" added to database
Exported certificate to x509.raw and x509.cacert.
tools.sh: #9500: Create objsign cert (signtool -G)  - PASSED
tools.sh: Signing a jar of files ----------------------------
signtool -Z nojs.jar -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
adding ../tools/html/signjs.html to nojs.jar...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.jar...(deflated 26%)
Generating zigbert.sf file..
adding ../tools/html/META-INF/manifest.mf to nojs.jar...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.jar...(deflated 36%)
adding ../tools/html/META-INF/zigbert.rsa to nojs.jar...(deflated 33%)
tree "../tools/html" signed successfully
tools.sh: #9501: Signing a jar of files (signtool -Z)  - PASSED
tools.sh: Listing signed files in jar ----------------------
signtool -v nojs.jar -d ../tools/signdir -p nss -k objsigner
archive "nojs.jar" has passed crypto verification.
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
found a RSA signature file: META-INF/zigbert.rsa
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #9502: Listing signed files in jar (signtool -v)  - PASSED
tools.sh: Show who signed jar ------------------------------
signtool -w nojs.jar -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9503: Show who signed jar (signtool -w)  - PASSED
tools.sh: Signing a xpi of files ----------------------------
signtool -Z nojs.xpi -X -d ../tools/signdir -p "nss" -k objsigner \
         ../tools/html
Generating ../tools/html/META-INF/manifest.mf file..
--> signjs.html
--> sign.html
Generating zigbert.sf file..
Creating XPI Compatible Archive 
adding ../tools/html/META-INF/zigbert.rsa to nojs.xpi...(deflated 33%)
--> signjs.html
adding ../tools/html/signjs.html to nojs.xpi...(deflated 28%)
--> sign.html
adding ../tools/html/sign.html to nojs.xpi...(deflated 26%)
adding ../tools/html/META-INF/manifest.mf to nojs.xpi...(deflated 29%)
adding ../tools/html/META-INF/zigbert.sf to nojs.xpi...(deflated 36%)
tree "../tools/html" signed successfully
tools.sh: #9504: Signing a xpi of files (signtool -Z -X)  - PASSED
tools.sh: Listing signed files in xpi ----------------------
signtool -v nojs.xpi -d ../tools/signdir -p nss -k objsigner
archive "nojs.xpi" has passed crypto verification.
found a RSA signature file: META-INF/zigbert.rsa
found a MF master manifest file: META-INF/manifest.mf
found a SF signature manifest file: META-INF/zigbert.sf
  md5 digest on global metainfo: match
  sha digest on global metainfo: match
          status   path
    ------------   -------------------
        verified   signjs.html
        verified   sign.html
tools.sh: #9505: Listing signed files in xpi (signtool -v)  - PASSED
tools.sh: Show who signed xpi ------------------------------
signtool -w nojs.xpi -d ../tools/signdir
Signer information:
nickname: objsigner
subject name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
issuer name: CN=TEST,O=MOZ,OU=NSS,ST=NY,C=US,UID=liz,E=liz@moz.org
tools.sh: #9506: Show who signed xpi (signtool -w)  - PASSED
TIMESTAMP tools END: Tue May  2 16:03:06 UTC 2017
Running tests for fips
TIMESTAMP fips BEGIN: Tue May  2 16:03:06 UTC 2017
fips.sh: FIPS 140 Compliance Tests ===============================
fips.sh: Verify this module is in FIPS mode  -----------------
modutil -dbdir ../fips -list
Listing of PKCS #11 Modules
-----------------------------------------------------------
  1. NSS Internal FIPS PKCS #11 Module
	 slots: 1 slot attached
	status: loaded
	 slot: NSS FIPS 140-2 User Private Key Services
	token: NSS FIPS 140-2 Certificate DB
  2. RootCerts
	library name: /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
	 slots: 1 slot attached
	status: loaded
	 slot: NSS Builtin Objects
	token: Builtin Object Token
-----------------------------------------------------------
FIPS mode enabled.
fips.sh: #9507: Verify this module is in FIPS mode (modutil -chkfips true) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9508: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys -------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      6ae335f45948dc6f04f90dde8fe02a19a1141293   NSS FIPS 140-2 Certificate DB:FIPS_PUB_140_Test_Certificate
fips.sh: #9509: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Attempt to list FIPS module keys with incorrect password
certutil -d ../fips -K -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.fipsbadpw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
Incorrect password/PIN entered.
certutil: could not authenticate to token NSS FIPS 140-2 Certificate DB.: SEC_ERROR_BAD_PASSWORD: The security password entered is incorrect.
fips.sh: #9510: Attempt to list FIPS module keys with incorrect password (certutil -K) . - PASSED
certutil -K returned 255
fips.sh: Validate the certificate --------------------------
certutil -d ../fips -V -n FIPS_PUB_140_Test_Certificate -u SR -e -f ../tests.fipspw
certutil: certificate is valid
fips.sh: #9511: Validate the certificate (certutil -V -e) . - PASSED
fips.sh: Export the certificate and key as a PKCS#12 file --
pk12util -d ../fips -o fips140.p12 -n FIPS_PUB_140_Test_Certificate -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 EXPORT SUCCESSFUL
fips.sh: #9512: Export the certificate and key as a PKCS#12 file (pk12util -o) . - PASSED
fips.sh: Export the certificate as a DER-encoded file ------
certutil -d ../fips -L -n FIPS_PUB_140_Test_Certificate -r -o fips140.crt
fips.sh: #9513: Export the certificate as a DER (certutil -L -r) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                Cu,Cu,Cu
fips.sh: #9514: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Delete the certificate and key from the FIPS module
certutil -d ../fips -F -n FIPS_PUB_140_Test_Certificate -f ../tests.fipspw
fips.sh: #9515: Delete the certificate and key from the FIPS module (certutil -F) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9516: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys.
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
certutil: no keys found
fips.sh: #9517: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9518: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9519: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      6ae335f45948dc6f04f90dde8fe02a19a1141293   FIPS_PUB_140_Test_Certificate
fips.sh: #9520: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Delete the certificate from the FIPS module
certutil -d ../fips -D -n FIPS_PUB_140_Test_Certificate
fips.sh: #9521: Delete the certificate from the FIPS module (certutil -D) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
fips.sh: #9522: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: Import the certificate and key from the PKCS#12 file
pk12util -d ../fips -i fips140.p12 -w ../tests.fipsp12pw -k ../tests.fipspw
pk12util: PKCS12 IMPORT SUCCESSFUL
fips.sh: #9523: Import the certificate and key from the PKCS#12 file (pk12util -i) . - PASSED
fips.sh: List the FIPS module certificates -----------------
certutil -d ../fips -L
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
FIPS_PUB_140_Test_Certificate                                u,u,u
fips.sh: #9524: List the FIPS module certificates (certutil -L) . - PASSED
fips.sh: List the FIPS module keys --------------------------
certutil -d ../fips -K -f ../tests.fipspw
certutil: Checking token "NSS FIPS 140-2 Certificate DB" in slot "NSS FIPS 140-2 User Private Key Services"
< 0> dsa      6ae335f45948dc6f04f90dde8fe02a19a1141293   FIPS_PUB_140_Test_Certificate
fips.sh: #9525: List the FIPS module keys (certutil -K) . - PASSED
fips.sh: Run PK11MODE in FIPSMODE  -----------------
pk11mode -d ../fips -p fips- -f ../tests.fipspw
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
Loaded FC_GetFunctionList for FIPS MODE; slotID 0 
**** Total number of TESTS ran in FIPS MODE is 106. ****
**** ALL TESTS PASSED ****
fips.sh: #9526: Run PK11MODE in FIPS mode (pk11mode) . - PASSED
fips.sh: Run PK11MODE in Non FIPSMODE  -----------------
pk11mode -d ../fips -p nonfips- -f ../tests.fipspw -n
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
loaded C_GetFunctionList for NON FIPS MODE; slotID 1 
**** Total number of TESTS ran in NON FIPS MODE is 104. ****
**** ALL TESTS PASSED ****
fips.sh: #9527: Run PK11MODE in Non FIPS mode (pk11mode -n) . - PASSED
mkdir /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcertdb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcerthi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcrmf.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libcryptohi.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libdbm.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libgtest1.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libjar.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnss3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssb.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckfw.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssdev.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsspki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnsssysinit.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpk11wrap.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs12.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkcs7.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcertsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixchecker.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixcrlsel.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixmodule.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixparams.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixpki.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixresults.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixstore.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixsystem.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixtop.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libpkixutil.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsectool.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libsmime3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl.a /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
cp /builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libssl3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
fips.sh: Detect mangled softoken--------------------------
mangling /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so
mangle -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle/libsoftokn3.so -o -8 -b 5
cp /usr/lib64/libsoftokn3.so /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle
Changing byte 0x00042cf8 (273656): from 00 (0) to 20 (32)
LD_LIBRARY_PATH=/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/fips/mangle dbtest -r -d ../fips
fips.sh: #9528: Init NSS with a corrupted library (dbtest -r) . - PASSED
fips.sh done
TIMESTAMP fips END: Tue May  2 16:03:26 UTC 2017
Running tests for crmf
TIMESTAMP crmf BEGIN: Tue May  2 16:03:26 UTC 2017
crmf.sh: CRMF/CMMF Tests ===============================
crmf.sh: CRMF/CMMF Tests ------------------------------
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss crmf decode
crmftest v1.0
Generating CRMF request
Decoding CRMF request
crmftest: Processing cert request 0
crmftest: Processing cert request 1
Exiting successfully!!!
crmf.sh: #9529: CRMF test . - PASSED
crmftest -d ../bobdir -p Bob -e dave@bogus.com -s TestCA -P nss cmmf
crmftest v1.0
Doing CMMF Stuff
Exiting successfully!!!
crmf.sh: #9530: CMMF test . - PASSED
TIMESTAMP crmf END: Tue May  2 16:03:26 UTC 2017
Running tests for smime
TIMESTAMP smime BEGIN: Tue May  2 16:03:26 UTC 2017
smime.sh: S/MIME Tests with ECC ===============================
smime.sh: Signing Detached Message {SHA1} ------------------
cmsutil -S -T -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA1
smime.sh: #9531: Create Detached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9532: Verifying Alice's Detached Signature (SHA1) . - PASSED
smime.sh: Signing Attached Message (SHA1) ------------------
cmsutil -S -N Alice -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA1
smime.sh: #9533: Create Attached Signature Alice (SHA1) . - PASSED
cmsutil -D -i alice.sig.SHA1 -d ../bobdir -o alice.data.SHA1
smime.sh: #9534: Decode Alice's Attached Signature (SHA1) . - PASSED
diff alice.txt alice.data.SHA1
smime.sh: #9535: Compare Attached Signed Data and Original (SHA1) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA1} ------------------
cmsutil -S -T -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA1
smime.sh: #9536: Create Detached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA1 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9537: Verifying Alice's Detached Signature (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA1) ------------------
cmsutil -S -N Alice-ec -H SHA1 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA1
smime.sh: #9538: Create Attached Signature Alice (ECDSA w/ SHA1) . - PASSED
cmsutil -D -i alice-ec.sig.SHA1 -d ../bobdir -o alice-ec.data.SHA1
smime.sh: #9539: Decode Alice's Attached Signature (ECDSA w/ SHA1) . - PASSED
diff alice.txt alice-ec.data.SHA1
smime.sh: #9540: Compare Attached Signed Data and Original (ECDSA w/ SHA1) . - PASSED
smime.sh: Signing Detached Message {SHA256} ------------------
cmsutil -S -T -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA256
smime.sh: #9541: Create Detached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9542: Verifying Alice's Detached Signature (SHA256) . - PASSED
smime.sh: Signing Attached Message (SHA256) ------------------
cmsutil -S -N Alice -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA256
smime.sh: #9543: Create Attached Signature Alice (SHA256) . - PASSED
cmsutil -D -i alice.sig.SHA256 -d ../bobdir -o alice.data.SHA256
smime.sh: #9544: Decode Alice's Attached Signature (SHA256) . - PASSED
diff alice.txt alice.data.SHA256
smime.sh: #9545: Compare Attached Signed Data and Original (SHA256) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA256} ------------------
cmsutil -S -T -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA256
smime.sh: #9546: Create Detached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA256 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9547: Verifying Alice's Detached Signature (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA256) ------------------
cmsutil -S -N Alice-ec -H SHA256 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA256
smime.sh: #9548: Create Attached Signature Alice (ECDSA w/ SHA256) . - PASSED
cmsutil -D -i alice-ec.sig.SHA256 -d ../bobdir -o alice-ec.data.SHA256
smime.sh: #9549: Decode Alice's Attached Signature (ECDSA w/ SHA256) . - PASSED
diff alice.txt alice-ec.data.SHA256
smime.sh: #9550: Compare Attached Signed Data and Original (ECDSA w/ SHA256) . - PASSED
smime.sh: Signing Detached Message {SHA384} ------------------
cmsutil -S -T -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA384
smime.sh: #9551: Create Detached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9552: Verifying Alice's Detached Signature (SHA384) . - PASSED
smime.sh: Signing Attached Message (SHA384) ------------------
cmsutil -S -N Alice -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA384
smime.sh: #9553: Create Attached Signature Alice (SHA384) . - PASSED
cmsutil -D -i alice.sig.SHA384 -d ../bobdir -o alice.data.SHA384
smime.sh: #9554: Decode Alice's Attached Signature (SHA384) . - PASSED
diff alice.txt alice.data.SHA384
smime.sh: #9555: Compare Attached Signed Data and Original (SHA384) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA384} ------------------
cmsutil -S -T -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA384
smime.sh: #9556: Create Detached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA384 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9557: Verifying Alice's Detached Signature (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA384) ------------------
cmsutil -S -N Alice-ec -H SHA384 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA384
smime.sh: #9558: Create Attached Signature Alice (ECDSA w/ SHA384) . - PASSED
cmsutil -D -i alice-ec.sig.SHA384 -d ../bobdir -o alice-ec.data.SHA384
smime.sh: #9559: Decode Alice's Attached Signature (ECDSA w/ SHA384) . - PASSED
diff alice.txt alice-ec.data.SHA384
smime.sh: #9560: Compare Attached Signed Data and Original (ECDSA w/ SHA384) . - PASSED
smime.sh: Signing Detached Message {SHA512} ------------------
cmsutil -S -T -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.dsig.SHA512
smime.sh: #9561: Create Detached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9562: Verifying Alice's Detached Signature (SHA512) . - PASSED
smime.sh: Signing Attached Message (SHA512) ------------------
cmsutil -S -N Alice -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice.sig.SHA512
smime.sh: #9563: Create Attached Signature Alice (SHA512) . - PASSED
cmsutil -D -i alice.sig.SHA512 -d ../bobdir -o alice.data.SHA512
smime.sh: #9564: Decode Alice's Attached Signature (SHA512) . - PASSED
diff alice.txt alice.data.SHA512
smime.sh: #9565: Compare Attached Signed Data and Original (SHA512) . - PASSED
smime.sh: Signing Detached Message ECDSA w/ {SHA512} ------------------
cmsutil -S -T -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.dsig.SHA512
smime.sh: #9566: Create Detached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.dsig.SHA512 -c alice.txt -d ../bobdir 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
smime.sh: #9567: Verifying Alice's Detached Signature (ECDSA w/ SHA512) . - PASSED
smime.sh: Signing Attached Message (ECDSA w/ SHA512) ------------------
cmsutil -S -N Alice-ec -H SHA512 -i alice.txt -d ../alicedir -p nss -o alice-ec.sig.SHA512
smime.sh: #9568: Create Attached Signature Alice (ECDSA w/ SHA512) . - PASSED
cmsutil -D -i alice-ec.sig.SHA512 -d ../bobdir -o alice-ec.data.SHA512
smime.sh: #9569: Decode Alice's Attached Signature (ECDSA w/ SHA512) . - PASSED
diff alice.txt alice-ec.data.SHA512
smime.sh: #9570: Compare Attached Signed Data and Original (ECDSA w/ SHA512) . - PASSED
smime.sh: Enveloped Data Tests ------------------------------
cmsutil -E -r bob@bogus.com -i alice.txt -d ../alicedir -p nss \
        -o alice.env
smime.sh: #9571: Create Enveloped Data Alice . - PASSED
cmsutil -D -i alice.env -d ../bobdir -p nss -o alice.data1
smime.sh: #9572: Decode Enveloped Data Alice . - PASSED
diff alice.txt alice.data1
smime.sh: #9573: Compare Decoded Enveloped Data and Original . - PASSED
smime.sh: Testing multiple recipients ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o alicecc.env \
        -r bob@bogus.com,dave@bogus.com
smime.sh: #9574: Create Multiple Recipients Enveloped Data Alice . - PASSED
smime.sh: Testing multiple email addrs ------------------------------
cmsutil -E -i alice.txt -d ../alicedir -o aliceve.env \
        -r eve@bogus.net
smime.sh: #9575: Encrypt to a Multiple Email cert . - PASSED
cmsutil -D -i alicecc.env -d ../bobdir -p nss -o alice.data2
smime.sh: #9576: Decode Multiple Recipients Enveloped Data Alice by Bob . - PASSED
cmsutil -D -i alicecc.env -d ../dave -p nss -o alice.data3
smime.sh: #9577: Decode Multiple Recipients Enveloped Data Alice by Dave . - PASSED
cmsutil -D -i aliceve.env -d ../eve -p nss -o alice.data4
smime.sh: #9578: Decrypt with a Multiple Email cert . - PASSED
smime.sh: #9579: Compare Decoded Mult. Recipients Enveloped Data Alice/Bob . - PASSED
smime.sh: #9580: Compare Decoded Mult. Recipients Enveloped Data Alice/Dave . - PASSED
smime.sh: #9581: Compare Decoded with Multiple Email cert . - PASSED
smime.sh: Sending CERTS-ONLY Message ------------------------------
cmsutil -O -r "Alice,bob@bogus.com,dave@bogus.com" \
        -d ../alicedir > co.der
smime.sh: #9582: Create Certs-Only Alice . - PASSED
cmsutil -D -i co.der -d ../bobdir
smime.sh: #9583: Verify Certs-Only by CA . - PASSED
smime.sh: Encrypted-Data Message ---------------------------------
cmsutil -C -i alice.txt -e alicehello.env -d ../alicedir \
        -r "bob@bogus.com" > alice.enc
smime.sh: #9584: Create Encrypted-Data . - PASSED
cmsutil -D -i alice.enc -d ../bobdir -e alicehello.env -p nss \
        -o alice.data2
smime.sh: #9585: Decode Encrypted-Data . - PASSED
smime.sh: #9586: Compare Decoded and Original Data . - PASSED
smime.sh: p7 util Data Tests ------------------------------
p7env -d ../alicedir -r Alice -i alice.txt -o alice_p7.env
smime.sh: #9587: Creating envelope for user Alice . - PASSED
p7content -d ../alicedir -i alice.env -o alice_p7.data
smime.sh: #9588: Verifying file delivered to user Alice . - PASSED
diff alice.txt alice_p7.data.sed
smime.sh: #9589: Compare Decoded Enveloped Data and Original . - PASSED
p7sign -d ../alicedir -k Alice -i alice.txt -o alice.sig -p nss -e
smime.sh: #9590: Signing file for user Alice . - PASSED
p7verify -d ../alicedir -c alice.txt -s alice.sig
Signature is valid.
smime.sh: #9591: Verifying file delivered to user Alice . - PASSED
TIMESTAMP smime END: Tue May  2 16:03:35 UTC 2017
Running tests for ssl
TIMESTAMP ssl BEGIN: Tue May  2 16:03:35 UTC 2017
ssl.sh: SSL tests ===============================
ssl.sh: CRL SSL Client Tests   - with ECC ===============================
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13870 >/dev/null 2>/dev/null
selfserv_9590 with PID 13870 found at Tue May  2 16:03:35 UTC 2017
selfserv_9590 with PID 13870 started at Tue May  2 16:03:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9592: TLS Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 13870 at Tue May  2 16:03:35 UTC 2017
kill -USR1 13870
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13870 killed at Tue May  2 16:03:35 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13926 >/dev/null 2>/dev/null
selfserv_9590 with PID 13926 found at Tue May  2 16:03:35 UTC 2017
selfserv_9590 with PID 13926 started at Tue May  2 16:03:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9593: TLS Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 13926 at Tue May  2 16:03:36 UTC 2017
kill -USR1 13926
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13926 killed at Tue May  2 16:03:36 UTC 2017
ssl.sh: TLS Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13982 >/dev/null 2>/dev/null
selfserv_9590 with PID 13982 found at Tue May  2 16:03:36 UTC 2017
selfserv_9590 with PID 13982 started at Tue May  2 16:03:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9594: TLS Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 13982 at Tue May  2 16:03:36 UTC 2017
kill -USR1 13982
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13982 killed at Tue May  2 16:03:36 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14050 >/dev/null 2>/dev/null
selfserv_9590 with PID 14050 found at Tue May  2 16:03:36 UTC 2017
selfserv_9590 with PID 14050 started at Tue May  2 16:03:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9595: TLS Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 14050 at Tue May  2 16:03:37 UTC 2017
kill -USR1 14050
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14050 killed at Tue May  2 16:03:37 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14106 >/dev/null 2>/dev/null
selfserv_9590 with PID 14106 found at Tue May  2 16:03:37 UTC 2017
selfserv_9590 with PID 14106 started at Tue May  2 16:03:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9596: TLS Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 14106 at Tue May  2 16:03:37 UTC 2017
kill -USR1 14106
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14106 killed at Tue May  2 16:03:37 UTC 2017
ssl.sh: TLS Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14162 >/dev/null 2>/dev/null
selfserv_9590 with PID 14162 found at Tue May  2 16:03:38 UTC 2017
selfserv_9590 with PID 14162 started at Tue May  2 16:03:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9597: TLS Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 14162 at Tue May  2 16:03:38 UTC 2017
kill -USR1 14162
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14162 killed at Tue May  2 16:03:38 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14230 >/dev/null 2>/dev/null
selfserv_9590 with PID 14230 found at Tue May  2 16:03:38 UTC 2017
selfserv_9590 with PID 14230 started at Tue May  2 16:03:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9598: TLS Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14230 at Tue May  2 16:03:39 UTC 2017
kill -USR1 14230
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14230 killed at Tue May  2 16:03:39 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14286 >/dev/null 2>/dev/null
selfserv_9590 with PID 14286 found at Tue May  2 16:03:39 UTC 2017
selfserv_9590 with PID 14286 started at Tue May  2 16:03:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9599: TLS Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 14286 at Tue May  2 16:03:39 UTC 2017
kill -USR1 14286
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14286 killed at Tue May  2 16:03:39 UTC 2017
ssl.sh: TLS Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14342 >/dev/null 2>/dev/null
selfserv_9590 with PID 14342 found at Tue May  2 16:03:39 UTC 2017
selfserv_9590 with PID 14342 started at Tue May  2 16:03:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9600: TLS Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14342 at Tue May  2 16:03:40 UTC 2017
kill -USR1 14342
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14342 killed at Tue May  2 16:03:40 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14410 >/dev/null 2>/dev/null
selfserv_9590 with PID 14410 found at Tue May  2 16:03:40 UTC 2017
selfserv_9590 with PID 14410 started at Tue May  2 16:03:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9601: TLS Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14410 at Tue May  2 16:03:40 UTC 2017
kill -USR1 14410
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14410 killed at Tue May  2 16:03:40 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14466 >/dev/null 2>/dev/null
selfserv_9590 with PID 14466 found at Tue May  2 16:03:40 UTC 2017
selfserv_9590 with PID 14466 started at Tue May  2 16:03:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9602: TLS Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14466 at Tue May  2 16:03:41 UTC 2017
kill -USR1 14466
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14466 killed at Tue May  2 16:03:41 UTC 2017
ssl.sh: TLS Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14522 >/dev/null 2>/dev/null
selfserv_9590 with PID 14522 found at Tue May  2 16:03:41 UTC 2017
selfserv_9590 with PID 14522 started at Tue May  2 16:03:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9603: TLS Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14522 at Tue May  2 16:03:41 UTC 2017
kill -USR1 14522
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14522 killed at Tue May  2 16:03:41 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14591 >/dev/null 2>/dev/null
selfserv_9590 with PID 14591 found at Tue May  2 16:03:41 UTC 2017
selfserv_9590 with PID 14591 started at Tue May  2 16:03:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9604: TLS Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14591 at Tue May  2 16:03:42 UTC 2017
kill -USR1 14591
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14591 killed at Tue May  2 16:03:42 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14647 >/dev/null 2>/dev/null
selfserv_9590 with PID 14647 found at Tue May  2 16:03:42 UTC 2017
selfserv_9590 with PID 14647 started at Tue May  2 16:03:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9605: TLS Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14647 at Tue May  2 16:03:42 UTC 2017
kill -USR1 14647
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14647 killed at Tue May  2 16:03:42 UTC 2017
ssl.sh: TLS Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14703 >/dev/null 2>/dev/null
selfserv_9590 with PID 14703 found at Tue May  2 16:03:43 UTC 2017
selfserv_9590 with PID 14703 started at Tue May  2 16:03:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9606: TLS Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14703 at Tue May  2 16:03:43 UTC 2017
kill -USR1 14703
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14703 killed at Tue May  2 16:03:43 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14771 >/dev/null 2>/dev/null
selfserv_9590 with PID 14771 found at Tue May  2 16:03:43 UTC 2017
selfserv_9590 with PID 14771 started at Tue May  2 16:03:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9607: TLS Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14771 at Tue May  2 16:03:44 UTC 2017
kill -USR1 14771
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14771 killed at Tue May  2 16:03:44 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14827 >/dev/null 2>/dev/null
selfserv_9590 with PID 14827 found at Tue May  2 16:03:44 UTC 2017
selfserv_9590 with PID 14827 started at Tue May  2 16:03:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9608: TLS Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 14827 at Tue May  2 16:03:44 UTC 2017
kill -USR1 14827
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14827 killed at Tue May  2 16:03:44 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14883 >/dev/null 2>/dev/null
selfserv_9590 with PID 14883 found at Tue May  2 16:03:44 UTC 2017
selfserv_9590 with PID 14883 started at Tue May  2 16:03:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9609: TLS Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 14883 at Tue May  2 16:03:45 UTC 2017
kill -USR1 14883
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14883 killed at Tue May  2 16:03:45 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 14951 >/dev/null 2>/dev/null
selfserv_9590 with PID 14951 found at Tue May  2 16:03:45 UTC 2017
selfserv_9590 with PID 14951 started at Tue May  2 16:03:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9610: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 14951 at Tue May  2 16:03:45 UTC 2017
kill -USR1 14951
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 14951 killed at Tue May  2 16:03:45 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15007 >/dev/null 2>/dev/null
selfserv_9590 with PID 15007 found at Tue May  2 16:03:45 UTC 2017
selfserv_9590 with PID 15007 started at Tue May  2 16:03:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9611: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15007 at Tue May  2 16:03:46 UTC 2017
kill -USR1 15007
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15007 killed at Tue May  2 16:03:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15063 >/dev/null 2>/dev/null
selfserv_9590 with PID 15063 found at Tue May  2 16:03:46 UTC 2017
selfserv_9590 with PID 15063 started at Tue May  2 16:03:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9612: SSL3 Request don't require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15063 at Tue May  2 16:03:46 UTC 2017
kill -USR1 15063
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15063 killed at Tue May  2 16:03:46 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15131 >/dev/null 2>/dev/null
selfserv_9590 with PID 15131 found at Tue May  2 16:03:46 UTC 2017
selfserv_9590 with PID 15131 started at Tue May  2 16:03:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9613: SSL3 Request don't require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15131 at Tue May  2 16:03:47 UTC 2017
kill -USR1 15131
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15131 killed at Tue May  2 16:03:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15187 >/dev/null 2>/dev/null
selfserv_9590 with PID 15187 found at Tue May  2 16:03:47 UTC 2017
selfserv_9590 with PID 15187 started at Tue May  2 16:03:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9614: SSL3 Request don't require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15187 at Tue May  2 16:03:47 UTC 2017
kill -USR1 15187
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15187 killed at Tue May  2 16:03:47 UTC 2017
ssl.sh: SSL3 Request don't require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15243 >/dev/null 2>/dev/null
selfserv_9590 with PID 15243 found at Tue May  2 16:03:47 UTC 2017
selfserv_9590 with PID 15243 started at Tue May  2 16:03:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9615: SSL3 Request don't require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15243 at Tue May  2 16:03:48 UTC 2017
kill -USR1 15243
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15243 killed at Tue May  2 16:03:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15311 >/dev/null 2>/dev/null
selfserv_9590 with PID 15311 found at Tue May  2 16:03:48 UTC 2017
selfserv_9590 with PID 15311 started at Tue May  2 16:03:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9616: SSL3 Request don't require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 15311 at Tue May  2 16:03:48 UTC 2017
kill -USR1 15311
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15311 killed at Tue May  2 16:03:48 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15367 >/dev/null 2>/dev/null
selfserv_9590 with PID 15367 found at Tue May  2 16:03:48 UTC 2017
selfserv_9590 with PID 15367 started at Tue May  2 16:03:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9617: SSL3 Request don't require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15367 at Tue May  2 16:03:49 UTC 2017
kill -USR1 15367
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15367 killed at Tue May  2 16:03:49 UTC 2017
ssl.sh: SSL3 Request don't require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15423 >/dev/null 2>/dev/null
selfserv_9590 with PID 15423 found at Tue May  2 16:03:49 UTC 2017
selfserv_9590 with PID 15423 started at Tue May  2 16:03:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9618: SSL3 Request don't require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 15423 at Tue May  2 16:03:49 UTC 2017
kill -USR1 15423
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15423 killed at Tue May  2 16:03:49 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15491 >/dev/null 2>/dev/null
selfserv_9590 with PID 15491 found at Tue May  2 16:03:50 UTC 2017
selfserv_9590 with PID 15491 started at Tue May  2 16:03:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9619: SSL3 Require client auth (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 15491 at Tue May  2 16:03:50 UTC 2017
kill -USR1 15491
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15491 killed at Tue May  2 16:03:50 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15547 >/dev/null 2>/dev/null
selfserv_9590 with PID 15547 found at Tue May  2 16:03:50 UTC 2017
selfserv_9590 with PID 15547 started at Tue May  2 16:03:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9620: SSL3 Require client auth (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 15547 at Tue May  2 16:03:50 UTC 2017
kill -USR1 15547
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15547 killed at Tue May  2 16:03:51 UTC 2017
ssl.sh: SSL3 Require client auth (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15603 >/dev/null 2>/dev/null
selfserv_9590 with PID 15603 found at Tue May  2 16:03:51 UTC 2017
selfserv_9590 with PID 15603 started at Tue May  2 16:03:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9621: SSL3 Require client auth (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 15603 at Tue May  2 16:03:51 UTC 2017
kill -USR1 15603
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15603 killed at Tue May  2 16:03:51 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15671 >/dev/null 2>/dev/null
selfserv_9590 with PID 15671 found at Tue May  2 16:03:51 UTC 2017
selfserv_9590 with PID 15671 started at Tue May  2 16:03:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9622: SSL3 Require client auth (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 15671 at Tue May  2 16:03:52 UTC 2017
kill -USR1 15671
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15671 killed at Tue May  2 16:03:52 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15727 >/dev/null 2>/dev/null
selfserv_9590 with PID 15727 found at Tue May  2 16:03:52 UTC 2017
selfserv_9590 with PID 15727 started at Tue May  2 16:03:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9623: SSL3 Require client auth (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 15727 at Tue May  2 16:03:52 UTC 2017
kill -USR1 15727
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15727 killed at Tue May  2 16:03:52 UTC 2017
ssl.sh: SSL3 Require client auth (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15783 >/dev/null 2>/dev/null
selfserv_9590 with PID 15783 found at Tue May  2 16:03:52 UTC 2017
selfserv_9590 with PID 15783 started at Tue May  2 16:03:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9624: SSL3 Require client auth (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 15783 at Tue May  2 16:03:53 UTC 2017
kill -USR1 15783
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15783 killed at Tue May  2 16:03:53 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15851 >/dev/null 2>/dev/null
selfserv_9590 with PID 15851 found at Tue May  2 16:03:53 UTC 2017
selfserv_9590 with PID 15851 started at Tue May  2 16:03:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9625: SSL3 Require client auth (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 15851 at Tue May  2 16:03:53 UTC 2017
kill -USR1 15851
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15851 killed at Tue May  2 16:03:53 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15907 >/dev/null 2>/dev/null
selfserv_9590 with PID 15907 found at Tue May  2 16:03:53 UTC 2017
selfserv_9590 with PID 15907 started at Tue May  2 16:03:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9626: SSL3 Require client auth (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 15907 at Tue May  2 16:03:54 UTC 2017
kill -USR1 15907
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15907 killed at Tue May  2 16:03:54 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 15963 >/dev/null 2>/dev/null
selfserv_9590 with PID 15963 found at Tue May  2 16:03:54 UTC 2017
selfserv_9590 with PID 15963 started at Tue May  2 16:03:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9627: SSL3 Require client auth (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 15963 at Tue May  2 16:03:54 UTC 2017
kill -USR1 15963
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 15963 killed at Tue May  2 16:03:54 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16031 >/dev/null 2>/dev/null
selfserv_9590 with PID 16031 found at Tue May  2 16:03:54 UTC 2017
selfserv_9590 with PID 16031 started at Tue May  2 16:03:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9628: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 16031 at Tue May  2 16:03:55 UTC 2017
kill -USR1 16031
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16031 killed at Tue May  2 16:03:55 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16087 >/dev/null 2>/dev/null
selfserv_9590 with PID 16087 found at Tue May  2 16:03:55 UTC 2017
selfserv_9590 with PID 16087 started at Tue May  2 16:03:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9629: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 16087 at Tue May  2 16:03:55 UTC 2017
kill -USR1 16087
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16087 killed at Tue May  2 16:03:55 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:03:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16143 >/dev/null 2>/dev/null
selfserv_9590 with PID 16143 found at Tue May  2 16:03:55 UTC 2017
selfserv_9590 with PID 16143 started at Tue May  2 16:03:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9630: TLS Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 16143 at Tue May  2 16:03:56 UTC 2017
kill -USR1 16143
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16143 killed at Tue May  2 16:03:56 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16211 >/dev/null 2>/dev/null
selfserv_9590 with PID 16211 found at Tue May  2 16:03:56 UTC 2017
selfserv_9590 with PID 16211 started at Tue May  2 16:03:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9631: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 16211 at Tue May  2 16:03:57 UTC 2017
kill -USR1 16211
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16211 killed at Tue May  2 16:03:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16267 >/dev/null 2>/dev/null
selfserv_9590 with PID 16267 found at Tue May  2 16:03:57 UTC 2017
selfserv_9590 with PID 16267 started at Tue May  2 16:03:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9632: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 16267 at Tue May  2 16:03:57 UTC 2017
kill -USR1 16267
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16267 killed at Tue May  2 16:03:57 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:03:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16323 >/dev/null 2>/dev/null
selfserv_9590 with PID 16323 found at Tue May  2 16:03:57 UTC 2017
selfserv_9590 with PID 16323 started at Tue May  2 16:03:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9633: TLS Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 16323 at Tue May  2 16:03:58 UTC 2017
kill -USR1 16323
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16323 killed at Tue May  2 16:03:58 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16391 >/dev/null 2>/dev/null
selfserv_9590 with PID 16391 found at Tue May  2 16:03:58 UTC 2017
selfserv_9590 with PID 16391 started at Tue May  2 16:03:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9634: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16391 at Tue May  2 16:03:58 UTC 2017
kill -USR1 16391
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16391 killed at Tue May  2 16:03:59 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16447 >/dev/null 2>/dev/null
selfserv_9590 with PID 16447 found at Tue May  2 16:03:59 UTC 2017
selfserv_9590 with PID 16447 started at Tue May  2 16:03:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9635: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 16447 at Tue May  2 16:03:59 UTC 2017
kill -USR1 16447
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16447 killed at Tue May  2 16:03:59 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:03:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:03:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16503 >/dev/null 2>/dev/null
selfserv_9590 with PID 16503 found at Tue May  2 16:03:59 UTC 2017
selfserv_9590 with PID 16503 started at Tue May  2 16:03:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9636: TLS Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16503 at Tue May  2 16:04:00 UTC 2017
kill -USR1 16503
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16503 killed at Tue May  2 16:04:00 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16572 >/dev/null 2>/dev/null
selfserv_9590 with PID 16572 found at Tue May  2 16:04:00 UTC 2017
selfserv_9590 with PID 16572 started at Tue May  2 16:04:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9637: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16572 at Tue May  2 16:04:00 UTC 2017
kill -USR1 16572
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16572 killed at Tue May  2 16:04:00 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16628 >/dev/null 2>/dev/null
selfserv_9590 with PID 16628 found at Tue May  2 16:04:00 UTC 2017
selfserv_9590 with PID 16628 started at Tue May  2 16:04:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9638: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16628 at Tue May  2 16:04:01 UTC 2017
kill -USR1 16628
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16628 killed at Tue May  2 16:04:01 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16684 >/dev/null 2>/dev/null
selfserv_9590 with PID 16684 found at Tue May  2 16:04:01 UTC 2017
selfserv_9590 with PID 16684 started at Tue May  2 16:04:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9639: TLS Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16684 at Tue May  2 16:04:02 UTC 2017
kill -USR1 16684
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16684 killed at Tue May  2 16:04:02 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16752 >/dev/null 2>/dev/null
selfserv_9590 with PID 16752 found at Tue May  2 16:04:02 UTC 2017
selfserv_9590 with PID 16752 started at Tue May  2 16:04:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9640: TLS Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16752 at Tue May  2 16:04:02 UTC 2017
kill -USR1 16752
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16752 killed at Tue May  2 16:04:02 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16808 >/dev/null 2>/dev/null
selfserv_9590 with PID 16808 found at Tue May  2 16:04:02 UTC 2017
selfserv_9590 with PID 16808 started at Tue May  2 16:04:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9641: TLS Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16808 at Tue May  2 16:04:03 UTC 2017
kill -USR1 16808
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16808 killed at Tue May  2 16:04:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16864 >/dev/null 2>/dev/null
selfserv_9590 with PID 16864 found at Tue May  2 16:04:03 UTC 2017
selfserv_9590 with PID 16864 started at Tue May  2 16:04:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9642: TLS Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16864 at Tue May  2 16:04:03 UTC 2017
kill -USR1 16864
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16864 killed at Tue May  2 16:04:03 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16932 >/dev/null 2>/dev/null
selfserv_9590 with PID 16932 found at Tue May  2 16:04:03 UTC 2017
selfserv_9590 with PID 16932 started at Tue May  2 16:04:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9643: TLS Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 16932 at Tue May  2 16:04:04 UTC 2017
kill -USR1 16932
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16932 killed at Tue May  2 16:04:04 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:04 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 16988 >/dev/null 2>/dev/null
selfserv_9590 with PID 16988 found at Tue May  2 16:04:04 UTC 2017
selfserv_9590 with PID 16988 started at Tue May  2 16:04:04 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9644: TLS Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 16988 at Tue May  2 16:04:05 UTC 2017
kill -USR1 16988
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 16988 killed at Tue May  2 16:04:05 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17044 >/dev/null 2>/dev/null
selfserv_9590 with PID 17044 found at Tue May  2 16:04:05 UTC 2017
selfserv_9590 with PID 17044 started at Tue May  2 16:04:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9645: TLS Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 17044 at Tue May  2 16:04:05 UTC 2017
kill -USR1 17044
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17044 killed at Tue May  2 16:04:05 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:05 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17112 >/dev/null 2>/dev/null
selfserv_9590 with PID 17112 found at Tue May  2 16:04:05 UTC 2017
selfserv_9590 with PID 17112 started at Tue May  2 16:04:05 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9646: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 17112 at Tue May  2 16:04:06 UTC 2017
kill -USR1 17112
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17112 killed at Tue May  2 16:04:06 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:06 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17168 >/dev/null 2>/dev/null
selfserv_9590 with PID 17168 found at Tue May  2 16:04:06 UTC 2017
selfserv_9590 with PID 17168 started at Tue May  2 16:04:06 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9647: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 17168 at Tue May  2 16:04:07 UTC 2017
kill -USR1 17168
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17168 killed at Tue May  2 16:04:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17224 >/dev/null 2>/dev/null
selfserv_9590 with PID 17224 found at Tue May  2 16:04:07 UTC 2017
selfserv_9590 with PID 17224 started at Tue May  2 16:04:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9648: TLS 1.0 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 17224 at Tue May  2 16:04:07 UTC 2017
kill -USR1 17224
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17224 killed at Tue May  2 16:04:07 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:07 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17292 >/dev/null 2>/dev/null
selfserv_9590 with PID 17292 found at Tue May  2 16:04:07 UTC 2017
selfserv_9590 with PID 17292 started at Tue May  2 16:04:07 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9649: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 17292 at Tue May  2 16:04:08 UTC 2017
kill -USR1 17292
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17292 killed at Tue May  2 16:04:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17349 >/dev/null 2>/dev/null
selfserv_9590 with PID 17349 found at Tue May  2 16:04:08 UTC 2017
selfserv_9590 with PID 17349 started at Tue May  2 16:04:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9650: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 17349 at Tue May  2 16:04:08 UTC 2017
kill -USR1 17349
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17349 killed at Tue May  2 16:04:08 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:08 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17406 >/dev/null 2>/dev/null
selfserv_9590 with PID 17406 found at Tue May  2 16:04:08 UTC 2017
selfserv_9590 with PID 17406 started at Tue May  2 16:04:08 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9651: TLS 1.0 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 17406 at Tue May  2 16:04:09 UTC 2017
kill -USR1 17406
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17406 killed at Tue May  2 16:04:09 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:09 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17474 >/dev/null 2>/dev/null
selfserv_9590 with PID 17474 found at Tue May  2 16:04:09 UTC 2017
selfserv_9590 with PID 17474 started at Tue May  2 16:04:09 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9652: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 17474 at Tue May  2 16:04:10 UTC 2017
kill -USR1 17474
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17474 killed at Tue May  2 16:04:10 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17532 >/dev/null 2>/dev/null
selfserv_9590 with PID 17532 found at Tue May  2 16:04:10 UTC 2017
selfserv_9590 with PID 17532 started at Tue May  2 16:04:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9653: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 17532 at Tue May  2 16:04:10 UTC 2017
kill -USR1 17532
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17532 killed at Tue May  2 16:04:10 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17588 >/dev/null 2>/dev/null
selfserv_9590 with PID 17588 found at Tue May  2 16:04:10 UTC 2017
selfserv_9590 with PID 17588 started at Tue May  2 16:04:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9654: TLS 1.0 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 17588 at Tue May  2 16:04:11 UTC 2017
kill -USR1 17588
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17588 killed at Tue May  2 16:04:11 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:11 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17656 >/dev/null 2>/dev/null
selfserv_9590 with PID 17656 found at Tue May  2 16:04:11 UTC 2017
selfserv_9590 with PID 17656 started at Tue May  2 16:04:11 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9655: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 17656 at Tue May  2 16:04:12 UTC 2017
kill -USR1 17656
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17656 killed at Tue May  2 16:04:12 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17712 >/dev/null 2>/dev/null
selfserv_9590 with PID 17712 found at Tue May  2 16:04:12 UTC 2017
selfserv_9590 with PID 17712 started at Tue May  2 16:04:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9656: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 17712 at Tue May  2 16:04:12 UTC 2017
kill -USR1 17712
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17712 killed at Tue May  2 16:04:12 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17768 >/dev/null 2>/dev/null
selfserv_9590 with PID 17768 found at Tue May  2 16:04:12 UTC 2017
selfserv_9590 with PID 17768 started at Tue May  2 16:04:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9657: TLS 1.0 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 17768 at Tue May  2 16:04:13 UTC 2017
kill -USR1 17768
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17768 killed at Tue May  2 16:04:13 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:13 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17836 >/dev/null 2>/dev/null
selfserv_9590 with PID 17836 found at Tue May  2 16:04:13 UTC 2017
selfserv_9590 with PID 17836 started at Tue May  2 16:04:13 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9658: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 17836 at Tue May  2 16:04:14 UTC 2017
kill -USR1 17836
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17836 killed at Tue May  2 16:04:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17892 >/dev/null 2>/dev/null
selfserv_9590 with PID 17892 found at Tue May  2 16:04:14 UTC 2017
selfserv_9590 with PID 17892 started at Tue May  2 16:04:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9659: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 17892 at Tue May  2 16:04:14 UTC 2017
kill -USR1 17892
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17892 killed at Tue May  2 16:04:14 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 17948 >/dev/null 2>/dev/null
selfserv_9590 with PID 17948 found at Tue May  2 16:04:14 UTC 2017
selfserv_9590 with PID 17948 started at Tue May  2 16:04:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9660: TLS 1.0 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 17948 at Tue May  2 16:04:15 UTC 2017
kill -USR1 17948
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 17948 killed at Tue May  2 16:04:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18016 >/dev/null 2>/dev/null
selfserv_9590 with PID 18016 found at Tue May  2 16:04:15 UTC 2017
selfserv_9590 with PID 18016 started at Tue May  2 16:04:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9661: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18016 at Tue May  2 16:04:15 UTC 2017
kill -USR1 18016
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18016 killed at Tue May  2 16:04:15 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:15 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18072 >/dev/null 2>/dev/null
selfserv_9590 with PID 18072 found at Tue May  2 16:04:15 UTC 2017
selfserv_9590 with PID 18072 started at Tue May  2 16:04:15 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9662: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 18072 at Tue May  2 16:04:16 UTC 2017
kill -USR1 18072
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18072 killed at Tue May  2 16:04:16 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18128 >/dev/null 2>/dev/null
selfserv_9590 with PID 18128 found at Tue May  2 16:04:16 UTC 2017
selfserv_9590 with PID 18128 started at Tue May  2 16:04:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9663: TLS 1.0 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18128 at Tue May  2 16:04:17 UTC 2017
kill -USR1 18128
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18128 killed at Tue May  2 16:04:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18196 >/dev/null 2>/dev/null
selfserv_9590 with PID 18196 found at Tue May  2 16:04:17 UTC 2017
selfserv_9590 with PID 18196 started at Tue May  2 16:04:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9664: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 18196 at Tue May  2 16:04:17 UTC 2017
kill -USR1 18196
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18196 killed at Tue May  2 16:04:17 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:17 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18252 >/dev/null 2>/dev/null
selfserv_9590 with PID 18252 found at Tue May  2 16:04:17 UTC 2017
selfserv_9590 with PID 18252 started at Tue May  2 16:04:17 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9665: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 18252 at Tue May  2 16:04:18 UTC 2017
kill -USR1 18252
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18252 killed at Tue May  2 16:04:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:18 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18308 >/dev/null 2>/dev/null
selfserv_9590 with PID 18308 found at Tue May  2 16:04:18 UTC 2017
selfserv_9590 with PID 18308 started at Tue May  2 16:04:18 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9666: SSL3 Request don't require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 18308 at Tue May  2 16:04:18 UTC 2017
kill -USR1 18308
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18308 killed at Tue May  2 16:04:18 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18376 >/dev/null 2>/dev/null
selfserv_9590 with PID 18376 found at Tue May  2 16:04:19 UTC 2017
selfserv_9590 with PID 18376 started at Tue May  2 16:04:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9667: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 18376 at Tue May  2 16:04:19 UTC 2017
kill -USR1 18376
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18376 killed at Tue May  2 16:04:19 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:19 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18432 >/dev/null 2>/dev/null
selfserv_9590 with PID 18432 found at Tue May  2 16:04:19 UTC 2017
selfserv_9590 with PID 18432 started at Tue May  2 16:04:19 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9668: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 18432 at Tue May  2 16:04:20 UTC 2017
kill -USR1 18432
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18432 killed at Tue May  2 16:04:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18488 >/dev/null 2>/dev/null
selfserv_9590 with PID 18488 found at Tue May  2 16:04:20 UTC 2017
selfserv_9590 with PID 18488 started at Tue May  2 16:04:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9669: SSL3 Request don't require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 18488 at Tue May  2 16:04:20 UTC 2017
kill -USR1 18488
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18488 killed at Tue May  2 16:04:20 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:20 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18556 >/dev/null 2>/dev/null
selfserv_9590 with PID 18556 found at Tue May  2 16:04:20 UTC 2017
selfserv_9590 with PID 18556 started at Tue May  2 16:04:20 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9670: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18556 at Tue May  2 16:04:21 UTC 2017
kill -USR1 18556
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18556 killed at Tue May  2 16:04:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18612 >/dev/null 2>/dev/null
selfserv_9590 with PID 18612 found at Tue May  2 16:04:21 UTC 2017
selfserv_9590 with PID 18612 started at Tue May  2 16:04:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9671: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 18612 at Tue May  2 16:04:21 UTC 2017
kill -USR1 18612
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18612 killed at Tue May  2 16:04:21 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:21 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18668 >/dev/null 2>/dev/null
selfserv_9590 with PID 18668 found at Tue May  2 16:04:21 UTC 2017
selfserv_9590 with PID 18668 started at Tue May  2 16:04:21 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9672: SSL3 Request don't require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18668 at Tue May  2 16:04:22 UTC 2017
kill -USR1 18668
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18668 killed at Tue May  2 16:04:22 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:22 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18736 >/dev/null 2>/dev/null
selfserv_9590 with PID 18736 found at Tue May  2 16:04:22 UTC 2017
selfserv_9590 with PID 18736 started at Tue May  2 16:04:22 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9673: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18736 at Tue May  2 16:04:22 UTC 2017
kill -USR1 18736
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18736 killed at Tue May  2 16:04:22 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18792 >/dev/null 2>/dev/null
selfserv_9590 with PID 18792 found at Tue May  2 16:04:23 UTC 2017
selfserv_9590 with PID 18792 started at Tue May  2 16:04:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9674: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18792 at Tue May  2 16:04:23 UTC 2017
kill -USR1 18792
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18792 killed at Tue May  2 16:04:23 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client does not provide auth) ----
selfserv_9590 starting at Tue May  2 16:04:23 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18848 >/dev/null 2>/dev/null
selfserv_9590 with PID 18848 found at Tue May  2 16:04:23 UTC 2017
selfserv_9590 with PID 18848 started at Tue May  2 16:04:23 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -w nss -n none  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9675: SSL3 Require client auth on 2nd hs (client does not provide auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18848 at Tue May  2 16:04:24 UTC 2017
kill -USR1 18848
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18848 killed at Tue May  2 16:04:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18916 >/dev/null 2>/dev/null
selfserv_9590 with PID 18916 found at Tue May  2 16:04:24 UTC 2017
selfserv_9590 with PID 18916 started at Tue May  2 16:04:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9676: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18916 at Tue May  2 16:04:24 UTC 2017
kill -USR1 18916
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18916 killed at Tue May  2 16:04:24 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:24 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 18972 >/dev/null 2>/dev/null
selfserv_9590 with PID 18972 found at Tue May  2 16:04:24 UTC 2017
selfserv_9590 with PID 18972 started at Tue May  2 16:04:24 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9677: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 18972 at Tue May  2 16:04:25 UTC 2017
kill -USR1 18972
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 18972 killed at Tue May  2 16:04:25 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19028 >/dev/null 2>/dev/null
selfserv_9590 with PID 19028 found at Tue May  2 16:04:25 UTC 2017
selfserv_9590 with PID 19028 started at Tue May  2 16:04:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9678: SSL3 Require client auth on 2nd hs (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 19028 at Tue May  2 16:04:25 UTC 2017
kill -USR1 19028
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19028 killed at Tue May  2 16:04:25 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19096 >/dev/null 2>/dev/null
selfserv_9590 with PID 19096 found at Tue May  2 16:04:25 UTC 2017
selfserv_9590 with PID 19096 started at Tue May  2 16:04:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9679: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 19096 at Tue May  2 16:04:26 UTC 2017
kill -USR1 19096
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19096 killed at Tue May  2 16:04:26 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19152 >/dev/null 2>/dev/null
selfserv_9590 with PID 19152 found at Tue May  2 16:04:26 UTC 2017
selfserv_9590 with PID 19152 started at Tue May  2 16:04:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9680: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 19152 at Tue May  2 16:04:26 UTC 2017
kill -USR1 19152
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19152 killed at Tue May  2 16:04:26 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:26 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19208 >/dev/null 2>/dev/null
selfserv_9590 with PID 19208 found at Tue May  2 16:04:26 UTC 2017
selfserv_9590 with PID 19208 started at Tue May  2 16:04:26 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9681: SSL3 Require client auth on 2nd hs (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 19208 at Tue May  2 16:04:27 UTC 2017
kill -USR1 19208
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19208 killed at Tue May  2 16:04:27 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19285 >/dev/null 2>/dev/null
selfserv_9590 with PID 19285 found at Tue May  2 16:04:27 UTC 2017
selfserv_9590 with PID 19285 started at Tue May  2 16:04:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9682: TLS Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 19285 at Tue May  2 16:04:28 UTC 2017
kill -USR1 19285
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19285 killed at Tue May  2 16:04:28 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19341 >/dev/null 2>/dev/null
selfserv_9590 with PID 19341 found at Tue May  2 16:04:28 UTC 2017
selfserv_9590 with PID 19341 started at Tue May  2 16:04:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9683: TLS Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 19341 at Tue May  2 16:04:28 UTC 2017
kill -USR1 19341
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19341 killed at Tue May  2 16:04:28 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19397 >/dev/null 2>/dev/null
selfserv_9590 with PID 19397 found at Tue May  2 16:04:28 UTC 2017
selfserv_9590 with PID 19397 started at Tue May  2 16:04:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9684: TLS Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 19397 at Tue May  2 16:04:29 UTC 2017
kill -USR1 19397
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19397 killed at Tue May  2 16:04:29 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19465 >/dev/null 2>/dev/null
selfserv_9590 with PID 19465 found at Tue May  2 16:04:29 UTC 2017
selfserv_9590 with PID 19465 started at Tue May  2 16:04:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9685: TLS Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 19465 at Tue May  2 16:04:29 UTC 2017
kill -USR1 19465
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19465 killed at Tue May  2 16:04:29 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:29 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19521 >/dev/null 2>/dev/null
selfserv_9590 with PID 19521 found at Tue May  2 16:04:29 UTC 2017
selfserv_9590 with PID 19521 started at Tue May  2 16:04:29 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9686: TLS Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 19521 at Tue May  2 16:04:30 UTC 2017
kill -USR1 19521
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19521 killed at Tue May  2 16:04:30 UTC 2017
ssl.sh: TLS Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:30 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19577 >/dev/null 2>/dev/null
selfserv_9590 with PID 19577 found at Tue May  2 16:04:30 UTC 2017
selfserv_9590 with PID 19577 started at Tue May  2 16:04:30 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9687: TLS Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 19577 at Tue May  2 16:04:31 UTC 2017
kill -USR1 19577
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19577 killed at Tue May  2 16:04:31 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19645 >/dev/null 2>/dev/null
selfserv_9590 with PID 19645 found at Tue May  2 16:04:31 UTC 2017
selfserv_9590 with PID 19645 started at Tue May  2 16:04:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9688: TLS Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 19645 at Tue May  2 16:04:31 UTC 2017
kill -USR1 19645
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19645 killed at Tue May  2 16:04:31 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:31 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19701 >/dev/null 2>/dev/null
selfserv_9590 with PID 19701 found at Tue May  2 16:04:31 UTC 2017
selfserv_9590 with PID 19701 started at Tue May  2 16:04:31 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9689: TLS Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 19701 at Tue May  2 16:04:32 UTC 2017
kill -USR1 19701
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19701 killed at Tue May  2 16:04:32 UTC 2017
ssl.sh: TLS Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:32 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19757 >/dev/null 2>/dev/null
selfserv_9590 with PID 19757 found at Tue May  2 16:04:32 UTC 2017
selfserv_9590 with PID 19757 started at Tue May  2 16:04:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9690: TLS Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 19757 at Tue May  2 16:04:32 UTC 2017
kill -USR1 19757
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19757 killed at Tue May  2 16:04:32 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:32 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19825 >/dev/null 2>/dev/null
selfserv_9590 with PID 19825 found at Tue May  2 16:04:32 UTC 2017
selfserv_9590 with PID 19825 started at Tue May  2 16:04:32 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9691: TLS Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 19825 at Tue May  2 16:04:33 UTC 2017
kill -USR1 19825
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19825 killed at Tue May  2 16:04:33 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19881 >/dev/null 2>/dev/null
selfserv_9590 with PID 19881 found at Tue May  2 16:04:33 UTC 2017
selfserv_9590 with PID 19881 started at Tue May  2 16:04:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9692: TLS Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 19881 at Tue May  2 16:04:33 UTC 2017
kill -USR1 19881
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19881 killed at Tue May  2 16:04:33 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:33 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 19937 >/dev/null 2>/dev/null
selfserv_9590 with PID 19937 found at Tue May  2 16:04:33 UTC 2017
selfserv_9590 with PID 19937 started at Tue May  2 16:04:33 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9693: TLS Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 19937 at Tue May  2 16:04:34 UTC 2017
kill -USR1 19937
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 19937 killed at Tue May  2 16:04:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20005 >/dev/null 2>/dev/null
selfserv_9590 with PID 20005 found at Tue May  2 16:04:34 UTC 2017
selfserv_9590 with PID 20005 started at Tue May  2 16:04:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9694: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20005 at Tue May  2 16:04:34 UTC 2017
kill -USR1 20005
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20005 killed at Tue May  2 16:04:34 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:34 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:34 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20061 >/dev/null 2>/dev/null
selfserv_9590 with PID 20061 found at Tue May  2 16:04:35 UTC 2017
selfserv_9590 with PID 20061 started at Tue May  2 16:04:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9695: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20061 at Tue May  2 16:04:35 UTC 2017
kill -USR1 20061
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20061 killed at Tue May  2 16:04:35 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:35 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20117 >/dev/null 2>/dev/null
selfserv_9590 with PID 20117 found at Tue May  2 16:04:35 UTC 2017
selfserv_9590 with PID 20117 started at Tue May  2 16:04:35 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9696: SSL3 Request don't require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20117 at Tue May  2 16:04:36 UTC 2017
kill -USR1 20117
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20117 killed at Tue May  2 16:04:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20185 >/dev/null 2>/dev/null
selfserv_9590 with PID 20185 found at Tue May  2 16:04:36 UTC 2017
selfserv_9590 with PID 20185 started at Tue May  2 16:04:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9697: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 20185 at Tue May  2 16:04:36 UTC 2017
kill -USR1 20185
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20185 killed at Tue May  2 16:04:36 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:36 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20241 >/dev/null 2>/dev/null
selfserv_9590 with PID 20241 found at Tue May  2 16:04:36 UTC 2017
selfserv_9590 with PID 20241 started at Tue May  2 16:04:36 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9698: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20241 at Tue May  2 16:04:37 UTC 2017
kill -USR1 20241
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20241 killed at Tue May  2 16:04:37 UTC 2017
ssl.sh: SSL3 Request don't require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20297 >/dev/null 2>/dev/null
selfserv_9590 with PID 20297 found at Tue May  2 16:04:37 UTC 2017
selfserv_9590 with PID 20297 started at Tue May  2 16:04:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9699: SSL3 Request don't require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 20297 at Tue May  2 16:04:37 UTC 2017
kill -USR1 20297
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20297 killed at Tue May  2 16:04:37 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20365 >/dev/null 2>/dev/null
selfserv_9590 with PID 20365 found at Tue May  2 16:04:37 UTC 2017
selfserv_9590 with PID 20365 started at Tue May  2 16:04:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9700: SSL3 Require client auth (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 20365 at Tue May  2 16:04:38 UTC 2017
kill -USR1 20365
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20365 killed at Tue May  2 16:04:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20421 >/dev/null 2>/dev/null
selfserv_9590 with PID 20421 found at Tue May  2 16:04:38 UTC 2017
selfserv_9590 with PID 20421 started at Tue May  2 16:04:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9701: SSL3 Require client auth (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 20421 at Tue May  2 16:04:38 UTC 2017
kill -USR1 20421
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20421 killed at Tue May  2 16:04:38 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:38 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20477 >/dev/null 2>/dev/null
selfserv_9590 with PID 20477 found at Tue May  2 16:04:38 UTC 2017
selfserv_9590 with PID 20477 started at Tue May  2 16:04:38 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12285:
Unable to find the certificate or key necessary for authentication.
Incorrect password/PIN entered.
tstclnt: write to SSL socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9702: SSL3 Require client auth (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 20477 at Tue May  2 16:04:39 UTC 2017
kill -USR1 20477
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20477 killed at Tue May  2 16:04:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20545 >/dev/null 2>/dev/null
selfserv_9590 with PID 20545 found at Tue May  2 16:04:39 UTC 2017
selfserv_9590 with PID 20545 started at Tue May  2 16:04:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9703: SSL3 Require client auth (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 20545 at Tue May  2 16:04:39 UTC 2017
kill -USR1 20545
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20545 killed at Tue May  2 16:04:39 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20601 >/dev/null 2>/dev/null
selfserv_9590 with PID 20601 found at Tue May  2 16:04:39 UTC 2017
selfserv_9590 with PID 20601 started at Tue May  2 16:04:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9704: SSL3 Require client auth (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20601 at Tue May  2 16:04:40 UTC 2017
kill -USR1 20601
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20601 killed at Tue May  2 16:04:40 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:40 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20657 >/dev/null 2>/dev/null
selfserv_9590 with PID 20657 found at Tue May  2 16:04:40 UTC 2017
selfserv_9590 with PID 20657 started at Tue May  2 16:04:40 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9705: SSL3 Require client auth (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 20657 at Tue May  2 16:04:41 UTC 2017
kill -USR1 20657
selfserv: 0 cache hits; 1 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20657 killed at Tue May  2 16:04:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20725 >/dev/null 2>/dev/null
selfserv_9590 with PID 20725 found at Tue May  2 16:04:41 UTC 2017
selfserv_9590 with PID 20725 started at Tue May  2 16:04:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9706: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20725 at Tue May  2 16:04:41 UTC 2017
kill -USR1 20725
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20725 killed at Tue May  2 16:04:41 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:41 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20781 >/dev/null 2>/dev/null
selfserv_9590 with PID 20781 found at Tue May  2 16:04:41 UTC 2017
selfserv_9590 with PID 20781 started at Tue May  2 16:04:41 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9707: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20781 at Tue May  2 16:04:42 UTC 2017
kill -USR1 20781
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20781 killed at Tue May  2 16:04:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20837 >/dev/null 2>/dev/null
selfserv_9590 with PID 20837 found at Tue May  2 16:04:42 UTC 2017
selfserv_9590 with PID 20837 started at Tue May  2 16:04:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9708: TLS Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20837 at Tue May  2 16:04:42 UTC 2017
kill -USR1 20837
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20837 killed at Tue May  2 16:04:42 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20905 >/dev/null 2>/dev/null
selfserv_9590 with PID 20905 found at Tue May  2 16:04:42 UTC 2017
selfserv_9590 with PID 20905 started at Tue May  2 16:04:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9709: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 20905 at Tue May  2 16:04:43 UTC 2017
kill -USR1 20905
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20905 killed at Tue May  2 16:04:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 20961 >/dev/null 2>/dev/null
selfserv_9590 with PID 20961 found at Tue May  2 16:04:43 UTC 2017
selfserv_9590 with PID 20961 started at Tue May  2 16:04:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9710: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 20961 at Tue May  2 16:04:44 UTC 2017
kill -USR1 20961
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 20961 killed at Tue May  2 16:04:44 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21017 >/dev/null 2>/dev/null
selfserv_9590 with PID 21017 found at Tue May  2 16:04:44 UTC 2017
selfserv_9590 with PID 21017 started at Tue May  2 16:04:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9711: TLS Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21017 at Tue May  2 16:04:44 UTC 2017
kill -USR1 21017
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21017 killed at Tue May  2 16:04:44 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:44 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21085 >/dev/null 2>/dev/null
selfserv_9590 with PID 21085 found at Tue May  2 16:04:44 UTC 2017
selfserv_9590 with PID 21085 started at Tue May  2 16:04:44 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9712: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21085 at Tue May  2 16:04:45 UTC 2017
kill -USR1 21085
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21085 killed at Tue May  2 16:04:45 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:45 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21141 >/dev/null 2>/dev/null
selfserv_9590 with PID 21141 found at Tue May  2 16:04:45 UTC 2017
selfserv_9590 with PID 21141 started at Tue May  2 16:04:45 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9713: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21141 at Tue May  2 16:04:46 UTC 2017
kill -USR1 21141
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21141 killed at Tue May  2 16:04:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21197 >/dev/null 2>/dev/null
selfserv_9590 with PID 21197 found at Tue May  2 16:04:46 UTC 2017
selfserv_9590 with PID 21197 started at Tue May  2 16:04:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9714: TLS Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21197 at Tue May  2 16:04:46 UTC 2017
kill -USR1 21197
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21197 killed at Tue May  2 16:04:46 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:46 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21266 >/dev/null 2>/dev/null
selfserv_9590 with PID 21266 found at Tue May  2 16:04:46 UTC 2017
selfserv_9590 with PID 21266 started at Tue May  2 16:04:46 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9715: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21266 at Tue May  2 16:04:47 UTC 2017
kill -USR1 21266
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21266 killed at Tue May  2 16:04:47 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:47 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21322 >/dev/null 2>/dev/null
selfserv_9590 with PID 21322 found at Tue May  2 16:04:47 UTC 2017
selfserv_9590 with PID 21322 started at Tue May  2 16:04:47 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9716: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21322 at Tue May  2 16:04:48 UTC 2017
kill -USR1 21322
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21322 killed at Tue May  2 16:04:48 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21378 >/dev/null 2>/dev/null
selfserv_9590 with PID 21378 found at Tue May  2 16:04:48 UTC 2017
selfserv_9590 with PID 21378 started at Tue May  2 16:04:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9717: TLS Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21378 at Tue May  2 16:04:48 UTC 2017
kill -USR1 21378
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21378 killed at Tue May  2 16:04:48 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21447 >/dev/null 2>/dev/null
selfserv_9590 with PID 21447 found at Tue May  2 16:04:48 UTC 2017
selfserv_9590 with PID 21447 started at Tue May  2 16:04:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9718: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21447 at Tue May  2 16:04:49 UTC 2017
kill -USR1 21447
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21447 killed at Tue May  2 16:04:49 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21503 >/dev/null 2>/dev/null
selfserv_9590 with PID 21503 found at Tue May  2 16:04:49 UTC 2017
selfserv_9590 with PID 21503 started at Tue May  2 16:04:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9719: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21503 at Tue May  2 16:04:49 UTC 2017
kill -USR1 21503
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21503 killed at Tue May  2 16:04:49 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:49 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21559 >/dev/null 2>/dev/null
selfserv_9590 with PID 21559 found at Tue May  2 16:04:49 UTC 2017
selfserv_9590 with PID 21559 started at Tue May  2 16:04:49 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9720: TLS 1.0 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21559 at Tue May  2 16:04:50 UTC 2017
kill -USR1 21559
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21559 killed at Tue May  2 16:04:50 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:50 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21627 >/dev/null 2>/dev/null
selfserv_9590 with PID 21627 found at Tue May  2 16:04:50 UTC 2017
selfserv_9590 with PID 21627 started at Tue May  2 16:04:50 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9721: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21627 at Tue May  2 16:04:51 UTC 2017
kill -USR1 21627
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21627 killed at Tue May  2 16:04:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21683 >/dev/null 2>/dev/null
selfserv_9590 with PID 21683 found at Tue May  2 16:04:51 UTC 2017
selfserv_9590 with PID 21683 started at Tue May  2 16:04:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9722: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 21683 at Tue May  2 16:04:51 UTC 2017
kill -USR1 21683
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21683 killed at Tue May  2 16:04:51 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:51 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21739 >/dev/null 2>/dev/null
selfserv_9590 with PID 21739 found at Tue May  2 16:04:51 UTC 2017
selfserv_9590 with PID 21739 started at Tue May  2 16:04:51 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9723: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21739 at Tue May  2 16:04:52 UTC 2017
kill -USR1 21739
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21739 killed at Tue May  2 16:04:52 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:52 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21807 >/dev/null 2>/dev/null
selfserv_9590 with PID 21807 found at Tue May  2 16:04:52 UTC 2017
selfserv_9590 with PID 21807 started at Tue May  2 16:04:52 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9724: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21807 at Tue May  2 16:04:53 UTC 2017
kill -USR1 21807
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21807 killed at Tue May  2 16:04:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21863 >/dev/null 2>/dev/null
selfserv_9590 with PID 21863 found at Tue May  2 16:04:53 UTC 2017
selfserv_9590 with PID 21863 started at Tue May  2 16:04:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9725: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21863 at Tue May  2 16:04:53 UTC 2017
kill -USR1 21863
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21863 killed at Tue May  2 16:04:53 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:53 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21919 >/dev/null 2>/dev/null
selfserv_9590 with PID 21919 found at Tue May  2 16:04:53 UTC 2017
selfserv_9590 with PID 21919 started at Tue May  2 16:04:53 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w bogus -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9726: TLS 1.0 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21919 at Tue May  2 16:04:54 UTC 2017
kill -USR1 21919
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21919 killed at Tue May  2 16:04:54 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:54 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 21987 >/dev/null 2>/dev/null
selfserv_9590 with PID 21987 found at Tue May  2 16:04:54 UTC 2017
selfserv_9590 with PID 21987 started at Tue May  2 16:04:54 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9727: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 21987 at Tue May  2 16:04:55 UTC 2017
kill -USR1 21987
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 21987 killed at Tue May  2 16:04:55 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22043 >/dev/null 2>/dev/null
selfserv_9590 with PID 22043 found at Tue May  2 16:04:55 UTC 2017
selfserv_9590 with PID 22043 started at Tue May  2 16:04:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9728: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 22043 at Tue May  2 16:04:55 UTC 2017
kill -USR1 22043
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22043 killed at Tue May  2 16:04:55 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22099 >/dev/null 2>/dev/null
selfserv_9590 with PID 22099 found at Tue May  2 16:04:55 UTC 2017
selfserv_9590 with PID 22099 started at Tue May  2 16:04:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9729: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 22099 at Tue May  2 16:04:56 UTC 2017
kill -USR1 22099
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22099 killed at Tue May  2 16:04:56 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:56 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22167 >/dev/null 2>/dev/null
selfserv_9590 with PID 22167 found at Tue May  2 16:04:56 UTC 2017
selfserv_9590 with PID 22167 started at Tue May  2 16:04:56 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9730: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 22167 at Tue May  2 16:04:57 UTC 2017
kill -USR1 22167
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22167 killed at Tue May  2 16:04:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22223 >/dev/null 2>/dev/null
selfserv_9590 with PID 22223 found at Tue May  2 16:04:57 UTC 2017
selfserv_9590 with PID 22223 started at Tue May  2 16:04:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9731: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 22223 at Tue May  2 16:04:57 UTC 2017
kill -USR1 22223
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22223 killed at Tue May  2 16:04:57 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:04:57 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22279 >/dev/null 2>/dev/null
selfserv_9590 with PID 22279 found at Tue May  2 16:04:57 UTC 2017
selfserv_9590 with PID 22279 started at Tue May  2 16:04:57 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9732: SSL3 Request don't require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 22279 at Tue May  2 16:04:58 UTC 2017
kill -USR1 22279
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22279 killed at Tue May  2 16:04:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22347 >/dev/null 2>/dev/null
selfserv_9590 with PID 22347 found at Tue May  2 16:04:58 UTC 2017
selfserv_9590 with PID 22347 started at Tue May  2 16:04:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9733: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 22347 at Tue May  2 16:04:58 UTC 2017
kill -USR1 22347
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22347 killed at Tue May  2 16:04:58 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:58 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22403 >/dev/null 2>/dev/null
selfserv_9590 with PID 22403 found at Tue May  2 16:04:58 UTC 2017
selfserv_9590 with PID 22403 started at Tue May  2 16:04:58 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9734: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 22403 at Tue May  2 16:04:59 UTC 2017
kill -USR1 22403
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22403 killed at Tue May  2 16:04:59 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:04:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:04:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22459 >/dev/null 2>/dev/null
selfserv_9590 with PID 22459 found at Tue May  2 16:04:59 UTC 2017
selfserv_9590 with PID 22459 started at Tue May  2 16:04:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9735: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 22459 at Tue May  2 16:05:00 UTC 2017
kill -USR1 22459
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22459 killed at Tue May  2 16:05:00 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:05:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22527 >/dev/null 2>/dev/null
selfserv_9590 with PID 22527 found at Tue May  2 16:05:00 UTC 2017
selfserv_9590 with PID 22527 started at Tue May  2 16:05:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9736: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 22527 at Tue May  2 16:05:00 UTC 2017
kill -USR1 22527
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22527 killed at Tue May  2 16:05:00 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:05:00 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22583 >/dev/null 2>/dev/null
selfserv_9590 with PID 22583 found at Tue May  2 16:05:00 UTC 2017
selfserv_9590 with PID 22583 started at Tue May  2 16:05:00 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9737: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser41 - not revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 22583 at Tue May  2 16:05:01 UTC 2017
kill -USR1 22583
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22583 killed at Tue May  2 16:05:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (bad password) ----
selfserv_9590 starting at Tue May  2 16:05:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22639 >/dev/null 2>/dev/null
selfserv_9590 with PID 22639 found at Tue May  2 16:05:01 UTC 2017
selfserv_9590 with PID 22639 started at Tue May  2 16:05:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w bogus  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -12285:
Unable to find the certificate or key necessary for authentication.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
Incorrect password/PIN entered.
tstclnt: read from socket failed: SSL_ERROR_BAD_CERT_ALERT: SSL peer cannot verify your certificate.
ssl.sh: #9738: SSL3 Require client auth on 2nd hs (EC) (bad password) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 22639 at Tue May  2 16:05:01 UTC 2017
kill -USR1 22639
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22639 killed at Tue May  2 16:05:01 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:05:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22707 >/dev/null 2>/dev/null
selfserv_9590 with PID 22707 found at Tue May  2 16:05:01 UTC 2017
selfserv_9590 with PID 22707 started at Tue May  2 16:05:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9739: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 22707 at Tue May  2 16:05:02 UTC 2017
kill -USR1 22707
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22707 killed at Tue May  2 16:05:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:05:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22763 >/dev/null 2>/dev/null
selfserv_9590 with PID 22763 found at Tue May  2 16:05:02 UTC 2017
selfserv_9590 with PID 22763 started at Tue May  2 16:05:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #9740: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
trying to kill selfserv_9590 with PID 22763 at Tue May  2 16:05:02 UTC 2017
kill -USR1 22763
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22763 killed at Tue May  2 16:05:02 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:05:02 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22819 >/dev/null 2>/dev/null
selfserv_9590 with PID 22819 found at Tue May  2 16:05:02 UTC 2017
selfserv_9590 with PID 22819 started at Tue May  2 16:05:02 UTC 2017
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
ssl.sh: #9741: SSL3 Require client auth on 2nd hs (EC) (client auth) (cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 22819 at Tue May  2 16:05:03 UTC 2017
kill -USR1 22819
selfserv: 0 cache hits; 2 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22819 killed at Tue May  2 16:05:03 UTC 2017
ssl.sh: Cache CRL SSL Client Tests   - with ECC ===============================
/builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/authin.tl.tmp
0
selfserv_9590 starting at Tue May  2 16:05:03 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:03 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:03 UTC 2017
selfserv_9590 with PID 22882 started at Tue May  2 16:05:03 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:04 UTC 2017
ssl.sh: #9742: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:04 UTC 2017
ssl.sh: #9743: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:04 UTC 2017
ssl.sh: #9744: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:04 UTC 2017
ssl.sh: #9745: TLS Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:05 UTC 2017
ssl.sh: #9746: TLS Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:05 UTC 2017
ssl.sh: #9747: TLS Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:05 UTC 2017
ssl.sh: #9748: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:05 UTC 2017
ssl.sh: #9749: TLS Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:06 UTC 2017
ssl.sh: #9750: TLS Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:06 UTC 2017
ssl.sh: #9751: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:06 UTC 2017
ssl.sh: #9752: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:06 UTC 2017
ssl.sh: #9753: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:07 UTC 2017
ssl.sh: #9754: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9755: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:07 UTC 2017
ssl.sh: #9756: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:08 UTC 2017
ssl.sh: #9757: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:08 UTC 2017
ssl.sh: #9758: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:08 UTC 2017
ssl.sh: #9759: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:08 UTC 2017
ssl.sh: #9760: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:09 UTC 2017
ssl.sh: #9761: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:09 UTC 2017
ssl.sh: #9762: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:09 UTC 2017
ssl.sh: #9763: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:09 UTC 2017
ssl.sh: #9764: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:10 UTC 2017
ssl.sh: #9765: TLS Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:10 UTC 2017
ssl.sh: #9766: TLS Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:10 UTC 2017
ssl.sh: #9767: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:10 UTC 2017
ssl.sh: #9768: TLS Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9769: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:11 UTC 2017
ssl.sh: #9770: TLS Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:11 UTC 2017
ssl.sh: #9771: TLS Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:11 UTC 2017
ssl.sh: #9772: TLS Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:12 UTC 2017
ssl.sh: #9773: TLS Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:12 UTC 2017
ssl.sh: #9774: TLS Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:12 UTC 2017
ssl.sh: #9775: TLS Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:12 UTC 2017
ssl.sh: #9776: TLS Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:13 UTC 2017
ssl.sh: #9777: TLS Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:13 UTC 2017
ssl.sh: #9778: TLS Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:13 UTC 2017
ssl.sh: #9779: TLS Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:13 UTC 2017
ssl.sh: #9780: TLS Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:14 UTC 2017
ssl.sh: #9781: TLS Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 22882 >/dev/null 2>/dev/null
selfserv_9590 with PID 22882 found at Tue May  2 16:05:14 UTC 2017
ssl.sh: #9782: TLS Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 22882 at Tue May  2 16:05:14 UTC 2017
kill -USR1 22882
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 22882 killed at Tue May  2 16:05:14 UTC 2017
ssl.sh: TLS Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:05:14 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:14 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:14 UTC 2017
selfserv_9590 with PID 24304 started at Tue May  2 16:05:14 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:15 UTC 2017
ssl.sh: #9783: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:15 UTC 2017
ssl.sh: #9784: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:15 UTC 2017
ssl.sh: #9785: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:15 UTC 2017
ssl.sh: #9786: SSL3 Require client auth (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:16 UTC 2017
ssl.sh: #9787: SSL3 Require client auth (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:16 UTC 2017
ssl.sh: #9788: SSL3 Require client auth (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:16 UTC 2017
ssl.sh: #9789: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:16 UTC 2017
ssl.sh: #9790: SSL3 Require client auth (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:17 UTC 2017
ssl.sh: #9791: SSL3 Require client auth (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:17 UTC 2017
ssl.sh: #9792: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:17 UTC 2017
ssl.sh: #9793: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:18 UTC 2017
ssl.sh: #9794: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:18 UTC 2017
ssl.sh: #9795: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9796: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:18 UTC 2017
ssl.sh: #9797: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:19 UTC 2017
ssl.sh: #9798: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:19 UTC 2017
ssl.sh: #9799: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:19 UTC 2017
ssl.sh: #9800: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:19 UTC 2017
ssl.sh: #9801: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:20 UTC 2017
ssl.sh: #9802: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:20 UTC 2017
ssl.sh: #9803: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:20 UTC 2017
ssl.sh: #9804: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:20 UTC 2017
ssl.sh: #9805: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:21 UTC 2017
ssl.sh: #9806: SSL3 Require client auth (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:21 UTC 2017
ssl.sh: #9807: SSL3 Require client auth (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:21 UTC 2017
ssl.sh: #9808: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:21 UTC 2017
ssl.sh: #9809: SSL3 Require client auth (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9810: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:22 UTC 2017
ssl.sh: #9811: SSL3 Require client auth (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:22 UTC 2017
ssl.sh: #9812: SSL3 Require client auth (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:22 UTC 2017
ssl.sh: #9813: SSL3 Require client auth (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:23 UTC 2017
ssl.sh: #9814: SSL3 Require client auth (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:23 UTC 2017
ssl.sh: #9815: SSL3 Require client auth (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:23 UTC 2017
ssl.sh: #9816: SSL3 Require client auth (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:23 UTC 2017
ssl.sh: #9817: SSL3 Require client auth (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:23 UTC 2017
ssl.sh: #9818: SSL3 Require client auth (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:24 UTC 2017
ssl.sh: #9819: SSL3 Require client auth (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:24 UTC 2017
ssl.sh: #9820: SSL3 Require client auth (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:24 UTC 2017
ssl.sh: #9821: SSL3 Require client auth (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:24 UTC 2017
ssl.sh: #9822: SSL3 Require client auth (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 24304 >/dev/null 2>/dev/null
selfserv_9590 with PID 24304 found at Tue May  2 16:05:25 UTC 2017
ssl.sh: #9823: SSL3 Require client auth (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 24304 at Tue May  2 16:05:25 UTC 2017
kill -USR1 24304
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 24304 killed at Tue May  2 16:05:25 UTC 2017
ssl.sh: SSL3 Require client auth (client auth) ----
selfserv_9590 starting at Tue May  2 16:05:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:25 UTC 2017
selfserv_9590 with PID 25727 started at Tue May  2 16:05:25 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:25 UTC 2017
ssl.sh: #9824: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:26 UTC 2017
ssl.sh: #9825: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:26 UTC 2017
ssl.sh: #9826: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:26 UTC 2017
ssl.sh: #9827: TLS Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:26 UTC 2017
ssl.sh: #9828: TLS Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:27 UTC 2017
ssl.sh: #9829: TLS Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:27 UTC 2017
ssl.sh: #9830: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:27 UTC 2017
ssl.sh: #9831: TLS Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:28 UTC 2017
ssl.sh: #9832: TLS Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:28 UTC 2017
ssl.sh: #9833: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:28 UTC 2017
ssl.sh: #9834: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:28 UTC 2017
ssl.sh: #9835: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:29 UTC 2017
ssl.sh: #9836: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:29 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9837: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:29 UTC 2017
ssl.sh: #9838: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:30 UTC 2017
ssl.sh: #9839: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:30 UTC 2017
ssl.sh: #9840: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:30 UTC 2017
ssl.sh: #9841: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:30 UTC 2017
ssl.sh: #9842: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:31 UTC 2017
ssl.sh: #9843: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:31 UTC 2017
ssl.sh: #9844: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:31 UTC 2017
ssl.sh: #9845: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:31 UTC 2017
ssl.sh: #9846: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:32 UTC 2017
ssl.sh: #9847: TLS Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:32 UTC 2017
ssl.sh: #9848: TLS Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:32 UTC 2017
ssl.sh: #9849: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:33 UTC 2017
ssl.sh: #9850: TLS Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:33 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9851: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:33 UTC 2017
ssl.sh: #9852: TLS Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:34 UTC 2017
ssl.sh: #9853: TLS Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:34 UTC 2017
ssl.sh: #9854: TLS Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:34 UTC 2017
ssl.sh: #9855: TLS Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:34 UTC 2017
ssl.sh: #9856: TLS Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:35 UTC 2017
ssl.sh: #9857: TLS Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:35 UTC 2017
ssl.sh: #9858: TLS Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:35 UTC 2017
ssl.sh: #9859: TLS Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:35 UTC 2017
ssl.sh: #9860: TLS Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:36 UTC 2017
ssl.sh: #9861: TLS Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:36 UTC 2017
ssl.sh: #9862: TLS Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:36 UTC 2017
ssl.sh: #9863: TLS Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 25727 >/dev/null 2>/dev/null
selfserv_9590 with PID 25727 found at Tue May  2 16:05:37 UTC 2017
ssl.sh: #9864: TLS Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 25727 at Tue May  2 16:05:37 UTC 2017
kill -USR1 25727
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 25727 killed at Tue May  2 16:05:37 UTC 2017
ssl.sh: TLS Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:05:37 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:37 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:37 UTC 2017
selfserv_9590 with PID 27151 started at Tue May  2 16:05:37 UTC 2017
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:37 UTC 2017
ssl.sh: #9865: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:37 UTC 2017
ssl.sh: #9866: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:38 UTC 2017
ssl.sh: #9867: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:38 UTC 2017
ssl.sh: #9868: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:38 UTC 2017
ssl.sh: #9869: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:39 UTC 2017
ssl.sh: #9870: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:39 UTC 2017
ssl.sh: #9871: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:39 UTC 2017
ssl.sh: #9872: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:39 UTC 2017
ssl.sh: #9873: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:40 UTC 2017
ssl.sh: #9874: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:40 UTC 2017
ssl.sh: #9875: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:40 UTC 2017
ssl.sh: #9876: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:40 UTC 2017
ssl.sh: #9877: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:41 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9878: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:41 UTC 2017
ssl.sh: #9879: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:41 UTC 2017
ssl.sh: #9880: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:41 UTC 2017
ssl.sh: #9881: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:42 UTC 2017
ssl.sh: #9882: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:42 UTC 2017
ssl.sh: #9883: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:42 UTC 2017
ssl.sh: #9884: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:42 UTC 2017
ssl.sh: #9885: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:43 UTC 2017
ssl.sh: #9886: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:43 UTC 2017
ssl.sh: #9887: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:43 UTC 2017
ssl.sh: #9888: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:43 UTC 2017
ssl.sh: #9889: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:44 UTC 2017
ssl.sh: #9890: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:44 UTC 2017
ssl.sh: #9891: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:44 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9892: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:45 UTC 2017
ssl.sh: #9893: SSL3 Require client auth (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:45 UTC 2017
ssl.sh: #9894: SSL3 Require client auth (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:45 UTC 2017
ssl.sh: #9895: SSL3 Require client auth (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:45 UTC 2017
ssl.sh: #9896: SSL3 Require client auth (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:45 UTC 2017
ssl.sh: #9897: SSL3 Require client auth (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:46 UTC 2017
ssl.sh: #9898: SSL3 Require client auth (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:46 UTC 2017
ssl.sh: #9899: SSL3 Require client auth (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:46 UTC 2017
ssl.sh: #9900: SSL3 Require client auth (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:46 UTC 2017
ssl.sh: #9901: SSL3 Require client auth (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:47 UTC 2017
ssl.sh: #9902: SSL3 Require client auth (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:47 UTC 2017
ssl.sh: #9903: SSL3 Require client auth (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 254, expected is 254 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:47 UTC 2017
ssl.sh: #9904: SSL3 Require client auth (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -8180:
Peer's Certificate has been revoked.
tstclnt: write to SSL socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 27151 >/dev/null 2>/dev/null
selfserv_9590 with PID 27151 found at Tue May  2 16:05:48 UTC 2017
ssl.sh: #9905: SSL3 Require client auth (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 254, expected is 254 - PASSED
trying to kill selfserv_9590 with PID 27151 at Tue May  2 16:05:48 UTC 2017
kill -USR1 27151
selfserv: 0 cache hits; 41 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 27151 killed at Tue May  2 16:05:48 UTC 2017
ssl.sh: SSL3 Require client auth (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:05:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28574 >/dev/null 2>/dev/null
selfserv_9590 with PID 28574 found at Tue May  2 16:05:48 UTC 2017
selfserv_9590 with PID 28574 started at Tue May  2 16:05:48 UTC 2017
trying to kill selfserv_9590 with PID 28574 at Tue May  2 16:05:48 UTC 2017
kill -USR1 28574
./ssl.sh: line 183: 28574 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28574 killed at Tue May  2 16:05:48 UTC 2017
selfserv_9590 starting at Tue May  2 16:05:48 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:05:48 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:48 UTC 2017
selfserv_9590 with PID 28608 started at Tue May  2 16:05:48 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:48 UTC 2017
ssl.sh: #9906: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:49 UTC 2017
ssl.sh: #9907: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:49 UTC 2017
ssl.sh: #9908: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:49 UTC 2017
ssl.sh: #9909: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:50 UTC 2017
ssl.sh: #9910: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:50 UTC 2017
ssl.sh: #9911: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:50 UTC 2017
ssl.sh: #9912: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:51 UTC 2017
ssl.sh: #9913: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:51 UTC 2017
ssl.sh: #9914: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:51 UTC 2017
ssl.sh: #9915: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:52 UTC 2017
ssl.sh: #9916: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:52 UTC 2017
ssl.sh: #9917: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:52 UTC 2017
ssl.sh: #9918: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:53 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9919: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:53 UTC 2017
ssl.sh: #9920: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:53 UTC 2017
ssl.sh: #9921: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:53 UTC 2017
ssl.sh: #9922: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:54 UTC 2017
ssl.sh: #9923: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:54 UTC 2017
ssl.sh: #9924: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:54 UTC 2017
ssl.sh: #9925: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:55 UTC 2017
ssl.sh: #9926: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:55 UTC 2017
ssl.sh: #9927: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:55 UTC 2017
ssl.sh: #9928: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:56 UTC 2017
ssl.sh: #9929: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:56 UTC 2017
ssl.sh: #9930: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:56 UTC 2017
ssl.sh: #9931: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:57 UTC 2017
ssl.sh: #9932: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:57 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9933: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:57 UTC 2017
ssl.sh: #9934: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:58 UTC 2017
ssl.sh: #9935: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:58 UTC 2017
ssl.sh: #9936: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:58 UTC 2017
ssl.sh: #9937: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:59 UTC 2017
ssl.sh: #9938: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:59 UTC 2017
ssl.sh: #9939: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:05:59 UTC 2017
ssl.sh: #9940: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:06:00 UTC 2017
ssl.sh: #9941: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:06:00 UTC 2017
ssl.sh: #9942: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:06:00 UTC 2017
ssl.sh: #9943: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:06:01 UTC 2017
ssl.sh: #9944: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:06:01 UTC 2017
ssl.sh: #9945: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 28608 >/dev/null 2>/dev/null
selfserv_9590 with PID 28608 found at Tue May  2 16:06:01 UTC 2017
ssl.sh: #9946: TLS Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 28608 at Tue May  2 16:06:01 UTC 2017
kill -USR1 28608
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 28608 killed at Tue May  2 16:06:01 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:06:01 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:06:01 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:01 UTC 2017
selfserv_9590 with PID 30033 started at Tue May  2 16:06:01 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:02 UTC 2017
ssl.sh: #9947: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:02 UTC 2017
ssl.sh: #9948: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:03 UTC 2017
ssl.sh: #9949: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:03 UTC 2017
ssl.sh: #9950: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:03 UTC 2017
ssl.sh: #9951: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:04 UTC 2017
ssl.sh: #9952: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:04 UTC 2017
ssl.sh: #9953: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:04 UTC 2017
ssl.sh: #9954: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:05 UTC 2017
ssl.sh: #9955: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:05 UTC 2017
ssl.sh: #9956: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:05 UTC 2017
ssl.sh: #9957: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:06 UTC 2017
ssl.sh: #9958: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:06 UTC 2017
ssl.sh: #9959: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:07 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9960: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:07 UTC 2017
ssl.sh: #9961: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:07 UTC 2017
ssl.sh: #9962: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:08 UTC 2017
ssl.sh: #9963: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:08 UTC 2017
ssl.sh: #9964: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:08 UTC 2017
ssl.sh: #9965: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:09 UTC 2017
ssl.sh: #9966: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:09 UTC 2017
ssl.sh: #9967: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:09 UTC 2017
ssl.sh: #9968: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:10 UTC 2017
ssl.sh: #9969: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:10 UTC 2017
ssl.sh: #9970: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:10 UTC 2017
ssl.sh: #9971: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:11 UTC 2017
ssl.sh: #9972: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:11 UTC 2017
ssl.sh: #9973: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:11 UTC 2017
================= CRL Reloaded =============
ssl.sh: #9974: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:12 UTC 2017
ssl.sh: #9975: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:12 UTC 2017
ssl.sh: #9976: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:12 UTC 2017
ssl.sh: #9977: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:13 UTC 2017
ssl.sh: #9978: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:13 UTC 2017
ssl.sh: #9979: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:13 UTC 2017
ssl.sh: #9980: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:14 UTC 2017
ssl.sh: #9981: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:14 UTC 2017
ssl.sh: #9982: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:15 UTC 2017
ssl.sh: #9983: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:15 UTC 2017
ssl.sh: #9984: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:15 UTC 2017
ssl.sh: #9985: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:16 UTC 2017
ssl.sh: #9986: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 30033 >/dev/null 2>/dev/null
selfserv_9590 with PID 30033 found at Tue May  2 16:06:16 UTC 2017
ssl.sh: #9987: TLS 1.0 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 30033 at Tue May  2 16:06:16 UTC 2017
kill -USR1 30033
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 30033 killed at Tue May  2 16:06:16 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:06:16 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:06:16 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:16 UTC 2017
selfserv_9590 with PID 31455 started at Tue May  2 16:06:16 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:17 UTC 2017
ssl.sh: #9988: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:17 UTC 2017
ssl.sh: #9989: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:17 UTC 2017
ssl.sh: #9990: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:17 UTC 2017
ssl.sh: #9991: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:18 UTC 2017
ssl.sh: #9992: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:18 UTC 2017
ssl.sh: #9993: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:18 UTC 2017
ssl.sh: #9994: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:19 UTC 2017
ssl.sh: #9995: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:19 UTC 2017
ssl.sh: #9996: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:19 UTC 2017
ssl.sh: #9997: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:19 UTC 2017
ssl.sh: #9998: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:20 UTC 2017
ssl.sh: #9999: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:20 UTC 2017
ssl.sh: #10000: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:20 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10001: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:21 UTC 2017
ssl.sh: #10002: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:21 UTC 2017
ssl.sh: #10003: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:21 UTC 2017
ssl.sh: #10004: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:22 UTC 2017
ssl.sh: #10005: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:22 UTC 2017
ssl.sh: #10006: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:22 UTC 2017
ssl.sh: #10007: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:22 UTC 2017
ssl.sh: #10008: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:23 UTC 2017
ssl.sh: #10009: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:23 UTC 2017
ssl.sh: #10010: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:23 UTC 2017
ssl.sh: #10011: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:24 UTC 2017
ssl.sh: #10012: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:24 UTC 2017
ssl.sh: #10013: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:24 UTC 2017
ssl.sh: #10014: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:25 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10015: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:25 UTC 2017
ssl.sh: #10016: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:25 UTC 2017
ssl.sh: #10017: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:25 UTC 2017
ssl.sh: #10018: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:26 UTC 2017
ssl.sh: #10019: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:26 UTC 2017
ssl.sh: #10020: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:26 UTC 2017
ssl.sh: #10021: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:27 UTC 2017
ssl.sh: #10022: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:27 UTC 2017
ssl.sh: #10023: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:27 UTC 2017
ssl.sh: #10024: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:27 UTC 2017
ssl.sh: #10025: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:28 UTC 2017
ssl.sh: #10026: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:28 UTC 2017
ssl.sh: #10027: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 31455 >/dev/null 2>/dev/null
selfserv_9590 with PID 31455 found at Tue May  2 16:06:28 UTC 2017
ssl.sh: #10028: SSL3 Request don't require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 31455 at Tue May  2 16:06:28 UTC 2017
kill -USR1 31455
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 31455 killed at Tue May  2 16:06:28 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:06:28 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:06:28 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:28 UTC 2017
selfserv_9590 with PID 420 started at Tue May  2 16:06:28 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:29 UTC 2017
ssl.sh: #10029: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:29 UTC 2017
ssl.sh: #10030: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:30 UTC 2017
ssl.sh: #10031: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:30 UTC 2017
ssl.sh: #10032: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:30 UTC 2017
ssl.sh: #10033: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:31 UTC 2017
ssl.sh: #10034: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:31 UTC 2017
ssl.sh: #10035: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:31 UTC 2017
ssl.sh: #10036: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:32 UTC 2017
ssl.sh: #10037: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:32 UTC 2017
ssl.sh: #10038: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:32 UTC 2017
ssl.sh: #10039: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:33 UTC 2017
ssl.sh: #10040: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:33 UTC 2017
ssl.sh: #10041: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:34 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10042: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:34 UTC 2017
ssl.sh: #10043: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:34 UTC 2017
ssl.sh: #10044: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:35 UTC 2017
ssl.sh: #10045: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:35 UTC 2017
ssl.sh: #10046: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:35 UTC 2017
ssl.sh: #10047: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:36 UTC 2017
ssl.sh: #10048: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:36 UTC 2017
ssl.sh: #10049: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:36 UTC 2017
ssl.sh: #10050: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:37 UTC 2017
ssl.sh: #10051: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:37 UTC 2017
ssl.sh: #10052: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:37 UTC 2017
ssl.sh: #10053: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:38 UTC 2017
ssl.sh: #10054: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:38 UTC 2017
ssl.sh: #10055: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:39 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10056: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:39 UTC 2017
ssl.sh: #10057: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:39 UTC 2017
ssl.sh: #10058: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:40 UTC 2017
ssl.sh: #10059: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:40 UTC 2017
ssl.sh: #10060: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:40 UTC 2017
ssl.sh: #10061: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:41 UTC 2017
ssl.sh: #10062: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:41 UTC 2017
ssl.sh: #10063: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:41 UTC 2017
ssl.sh: #10064: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:42 UTC 2017
ssl.sh: #10065: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:42 UTC 2017
ssl.sh: #10066: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:42 UTC 2017
ssl.sh: #10067: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:43 UTC 2017
ssl.sh: #10068: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 420 >/dev/null 2>/dev/null
selfserv_9590 with PID 420 found at Tue May  2 16:06:43 UTC 2017
ssl.sh: #10069: TLS Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 420 at Tue May  2 16:06:43 UTC 2017
kill -USR1 420
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 420 killed at Tue May  2 16:06:43 UTC 2017
ssl.sh: TLS Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:06:43 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:06:43 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:43 UTC 2017
selfserv_9590 with PID 1925 started at Tue May  2 16:06:43 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:44 UTC 2017
ssl.sh: #10070: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:44 UTC 2017
ssl.sh: #10071: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:45 UTC 2017
ssl.sh: #10072: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:45 UTC 2017
ssl.sh: #10073: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:45 UTC 2017
ssl.sh: #10074: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:46 UTC 2017
ssl.sh: #10075: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:46 UTC 2017
ssl.sh: #10076: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:47 UTC 2017
ssl.sh: #10077: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:47 UTC 2017
ssl.sh: #10078: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:47 UTC 2017
ssl.sh: #10079: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:48 UTC 2017
ssl.sh: #10080: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:48 UTC 2017
ssl.sh: #10081: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:49 UTC 2017
ssl.sh: #10082: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:49 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10083: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:49 UTC 2017
ssl.sh: #10084: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:50 UTC 2017
ssl.sh: #10085: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:50 UTC 2017
ssl.sh: #10086: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:50 UTC 2017
ssl.sh: #10087: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:51 UTC 2017
ssl.sh: #10088: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:51 UTC 2017
ssl.sh: #10089: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:51 UTC 2017
ssl.sh: #10090: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:52 UTC 2017
ssl.sh: #10091: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:52 UTC 2017
ssl.sh: #10092: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:52 UTC 2017
ssl.sh: #10093: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:53 UTC 2017
ssl.sh: #10094: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:53 UTC 2017
ssl.sh: #10095: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:54 UTC 2017
ssl.sh: #10096: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:54 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10097: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:54 UTC 2017
ssl.sh: #10098: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:55 UTC 2017
ssl.sh: #10099: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:55 UTC 2017
ssl.sh: #10100: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:55 UTC 2017
ssl.sh: #10101: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:56 UTC 2017
ssl.sh: #10102: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:56 UTC 2017
ssl.sh: #10103: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:56 UTC 2017
ssl.sh: #10104: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:57 UTC 2017
ssl.sh: #10105: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:57 UTC 2017
ssl.sh: #10106: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:58 UTC 2017
ssl.sh: #10107: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:58 UTC 2017
ssl.sh: #10108: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:58 UTC 2017
ssl.sh: #10109: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 1925 >/dev/null 2>/dev/null
selfserv_9590 with PID 1925 found at Tue May  2 16:06:59 UTC 2017
ssl.sh: #10110: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 1925 at Tue May  2 16:06:59 UTC 2017
kill -USR1 1925
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 1925 killed at Tue May  2 16:06:59 UTC 2017
ssl.sh: TLS 1.0 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:06:59 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:06:59 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:06:59 UTC 2017
selfserv_9590 with PID 3347 started at Tue May  2 16:06:59 UTC 2017
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:06:59 UTC 2017
ssl.sh: #10111: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:00 UTC 2017
ssl.sh: #10112: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:00 UTC 2017
ssl.sh: #10113: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:00 UTC 2017
ssl.sh: #10114: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:01 UTC 2017
ssl.sh: #10115: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:01 UTC 2017
ssl.sh: #10116: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:01 UTC 2017
ssl.sh: #10117: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:02 UTC 2017
ssl.sh: #10118: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:02 UTC 2017
ssl.sh: #10119: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:02 UTC 2017
ssl.sh: #10120: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:03 UTC 2017
ssl.sh: #10121: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:03 UTC 2017
ssl.sh: #10122: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:03 UTC 2017
ssl.sh: #10123: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:04 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10124: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:04 UTC 2017
ssl.sh: #10125: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:04 UTC 2017
ssl.sh: #10126: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:05 UTC 2017
ssl.sh: #10127: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:05 UTC 2017
ssl.sh: #10128: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:05 UTC 2017
ssl.sh: #10129: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:06 UTC 2017
ssl.sh: #10130: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:06 UTC 2017
ssl.sh: #10131: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:06 UTC 2017
ssl.sh: #10132: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:06 UTC 2017
ssl.sh: #10133: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:07 UTC 2017
ssl.sh: #10134: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:07 UTC 2017
ssl.sh: #10135: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:07 UTC 2017
ssl.sh: #10136: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:08 UTC 2017
ssl.sh: #10137: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:08 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10138: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:08 UTC 2017
ssl.sh: #10139: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:09 UTC 2017
ssl.sh: #10140: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:09 UTC 2017
ssl.sh: #10141: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:09 UTC 2017
ssl.sh: #10142: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:10 UTC 2017
ssl.sh: #10143: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:10 UTC 2017
ssl.sh: #10144: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:10 UTC 2017
ssl.sh: #10145: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:11 UTC 2017
ssl.sh: #10146: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:11 UTC 2017
ssl.sh: #10147: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:11 UTC 2017
ssl.sh: #10148: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:11 UTC 2017
ssl.sh: #10149: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:12 UTC 2017
ssl.sh: #10150: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 3347 >/dev/null 2>/dev/null
selfserv_9590 with PID 3347 found at Tue May  2 16:07:12 UTC 2017
ssl.sh: #10151: SSL3 Request don't require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 3347 at Tue May  2 16:07:12 UTC 2017
kill -USR1 3347
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 3347 killed at Tue May  2 16:07:12 UTC 2017
ssl.sh: SSL3 Request don't require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:07:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:07:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4770 >/dev/null 2>/dev/null
selfserv_9590 with PID 4770 found at Tue May  2 16:07:12 UTC 2017
selfserv_9590 with PID 4770 started at Tue May  2 16:07:12 UTC 2017
trying to kill selfserv_9590 with PID 4770 at Tue May  2 16:07:12 UTC 2017
kill -USR1 4770
./ssl.sh: line 183:  4770 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4770 killed at Tue May  2 16:07:12 UTC 2017
selfserv_9590 starting at Tue May  2 16:07:12 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:07:12 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:12 UTC 2017
selfserv_9590 with PID 4804 started at Tue May  2 16:07:12 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:13 UTC 2017
ssl.sh: #10152: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:13 UTC 2017
ssl.sh: #10153: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:14 UTC 2017
ssl.sh: #10154: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:14 UTC 2017
ssl.sh: #10155: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:14 UTC 2017
ssl.sh: #10156: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:15 UTC 2017
ssl.sh: #10157: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:15 UTC 2017
ssl.sh: #10158: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:15 UTC 2017
ssl.sh: #10159: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:16 UTC 2017
ssl.sh: #10160: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:16 UTC 2017
ssl.sh: #10161: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:16 UTC 2017
ssl.sh: #10162: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:17 UTC 2017
ssl.sh: #10163: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:17 UTC 2017
ssl.sh: #10164: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:18 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10165: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:18 UTC 2017
ssl.sh: #10166: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:18 UTC 2017
ssl.sh: #10167: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:19 UTC 2017
ssl.sh: #10168: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:19 UTC 2017
ssl.sh: #10169: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:19 UTC 2017
ssl.sh: #10170: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:20 UTC 2017
ssl.sh: #10171: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:20 UTC 2017
ssl.sh: #10172: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:20 UTC 2017
ssl.sh: #10173: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:21 UTC 2017
ssl.sh: #10174: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:21 UTC 2017
ssl.sh: #10175: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:21 UTC 2017
ssl.sh: #10176: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:22 UTC 2017
ssl.sh: #10177: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:22 UTC 2017
ssl.sh: #10178: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:22 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10179: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:23 UTC 2017
ssl.sh: #10180: TLS Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:23 UTC 2017
ssl.sh: #10181: TLS Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:23 UTC 2017
ssl.sh: #10182: TLS Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:24 UTC 2017
ssl.sh: #10183: TLS Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:24 UTC 2017
ssl.sh: #10184: TLS Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:24 UTC 2017
ssl.sh: #10185: TLS Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:25 UTC 2017
ssl.sh: #10186: TLS Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:25 UTC 2017
ssl.sh: #10187: TLS Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:25 UTC 2017
ssl.sh: #10188: TLS Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:26 UTC 2017
ssl.sh: #10189: TLS Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:26 UTC 2017
ssl.sh: #10190: TLS Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:26 UTC 2017
ssl.sh: #10191: TLS Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 4804 >/dev/null 2>/dev/null
selfserv_9590 with PID 4804 found at Tue May  2 16:07:27 UTC 2017
ssl.sh: #10192: TLS Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 4804 at Tue May  2 16:07:27 UTC 2017
kill -USR1 4804
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 4804 killed at Tue May  2 16:07:27 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:07:27 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:07:27 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:27 UTC 2017
selfserv_9590 with PID 6226 started at Tue May  2 16:07:27 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:27 UTC 2017
ssl.sh: #10193: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:28 UTC 2017
ssl.sh: #10194: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:28 UTC 2017
ssl.sh: #10195: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:28 UTC 2017
ssl.sh: #10196: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:29 UTC 2017
ssl.sh: #10197: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:29 UTC 2017
ssl.sh: #10198: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:30 UTC 2017
ssl.sh: #10199: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:30 UTC 2017
ssl.sh: #10200: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:30 UTC 2017
ssl.sh: #10201: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:31 UTC 2017
ssl.sh: #10202: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:31 UTC 2017
ssl.sh: #10203: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:31 UTC 2017
ssl.sh: #10204: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:32 UTC 2017
ssl.sh: #10205: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:32 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10206: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:32 UTC 2017
ssl.sh: #10207: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:33 UTC 2017
ssl.sh: #10208: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:33 UTC 2017
ssl.sh: #10209: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:33 UTC 2017
ssl.sh: #10210: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:34 UTC 2017
ssl.sh: #10211: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:34 UTC 2017
ssl.sh: #10212: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:35 UTC 2017
ssl.sh: #10213: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:35 UTC 2017
ssl.sh: #10214: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:35 UTC 2017
ssl.sh: #10215: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:36 UTC 2017
ssl.sh: #10216: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:36 UTC 2017
ssl.sh: #10217: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:36 UTC 2017
ssl.sh: #10218: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:37 UTC 2017
ssl.sh: #10219: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:37 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10220: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:37 UTC 2017
ssl.sh: #10221: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:38 UTC 2017
ssl.sh: #10222: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:38 UTC 2017
ssl.sh: #10223: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:38 UTC 2017
ssl.sh: #10224: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:39 UTC 2017
ssl.sh: #10225: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:39 UTC 2017
ssl.sh: #10226: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:39 UTC 2017
ssl.sh: #10227: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:40 UTC 2017
ssl.sh: #10228: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:40 UTC 2017
ssl.sh: #10229: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:40 UTC 2017
ssl.sh: #10230: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:41 UTC 2017
ssl.sh: #10231: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:41 UTC 2017
ssl.sh: #10232: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 6226 >/dev/null 2>/dev/null
selfserv_9590 with PID 6226 found at Tue May  2 16:07:42 UTC 2017
ssl.sh: #10233: TLS 1.0 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 6226 at Tue May  2 16:07:42 UTC 2017
kill -USR1 6226
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 6226 killed at Tue May  2 16:07:42 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:07:42 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:07:42 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:42 UTC 2017
selfserv_9590 with PID 7649 started at Tue May  2 16:07:42 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:42 UTC 2017
ssl.sh: #10234: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:43 UTC 2017
ssl.sh: #10235: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:43 UTC 2017
ssl.sh: #10236: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:43 UTC 2017
ssl.sh: #10237: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:43 UTC 2017
ssl.sh: #10238: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:44 UTC 2017
ssl.sh: #10239: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:44 UTC 2017
ssl.sh: #10240: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:44 UTC 2017
ssl.sh: #10241: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:45 UTC 2017
ssl.sh: #10242: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:45 UTC 2017
ssl.sh: #10243: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:45 UTC 2017
ssl.sh: #10244: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:46 UTC 2017
ssl.sh: #10245: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:46 UTC 2017
ssl.sh: #10246: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:46 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10247: Load group 2 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:47 UTC 2017
ssl.sh: #10248: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:47 UTC 2017
ssl.sh: #10249: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:47 UTC 2017
ssl.sh: #10250: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:48 UTC 2017
ssl.sh: #10251: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:48 UTC 2017
ssl.sh: #10252: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:48 UTC 2017
ssl.sh: #10253: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:48 UTC 2017
ssl.sh: #10254: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:49 UTC 2017
ssl.sh: #10255: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:49 UTC 2017
ssl.sh: #10256: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:49 UTC 2017
ssl.sh: #10257: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:50 UTC 2017
ssl.sh: #10258: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:50 UTC 2017
ssl.sh: #10259: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:50 UTC 2017
ssl.sh: #10260: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:51 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10261: Load group 3 crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:51 UTC 2017
ssl.sh: #10262: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:51 UTC 2017
ssl.sh: #10263: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:52 UTC 2017
ssl.sh: #10264: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:52 UTC 2017
ssl.sh: #10265: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:52 UTC 2017
ssl.sh: #10266: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:52 UTC 2017
ssl.sh: #10267: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:53 UTC 2017
ssl.sh: #10268: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:53 UTC 2017
ssl.sh: #10269: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:53 UTC 2017
ssl.sh: #10270: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:54 UTC 2017
ssl.sh: #10271: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:54 UTC 2017
ssl.sh: #10272: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:54 UTC 2017
ssl.sh: #10273: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52 -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 7649 >/dev/null 2>/dev/null
selfserv_9590 with PID 7649 found at Tue May  2 16:07:55 UTC 2017
ssl.sh: #10274: SSL3 Require client auth on 2nd hs (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 7649 at Tue May  2 16:07:55 UTC 2017
kill -USR1 7649
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 7649 killed at Tue May  2 16:07:55 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (client auth) ----
selfserv_9590 starting at Tue May  2 16:07:55 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:07:55 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:55 UTC 2017
selfserv_9590 with PID 9077 started at Tue May  2 16:07:55 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:55 UTC 2017
ssl.sh: #10275: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:56 UTC 2017
ssl.sh: #10276: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:56 UTC 2017
ssl.sh: #10277: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:56 UTC 2017
ssl.sh: #10278: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:57 UTC 2017
ssl.sh: #10279: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:57 UTC 2017
ssl.sh: #10280: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:57 UTC 2017
ssl.sh: #10281: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:58 UTC 2017
ssl.sh: #10282: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:58 UTC 2017
ssl.sh: #10283: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:59 UTC 2017
ssl.sh: #10284: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:59 UTC 2017
ssl.sh: #10285: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:07:59 UTC 2017
ssl.sh: #10286: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:00 UTC 2017
ssl.sh: #10287: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:00 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10288: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:01 UTC 2017
ssl.sh: #10289: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:01 UTC 2017
ssl.sh: #10290: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:01 UTC 2017
ssl.sh: #10291: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:02 UTC 2017
ssl.sh: #10292: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:02 UTC 2017
ssl.sh: #10293: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:02 UTC 2017
ssl.sh: #10294: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:03 UTC 2017
ssl.sh: #10295: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:03 UTC 2017
ssl.sh: #10296: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:03 UTC 2017
ssl.sh: #10297: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:04 UTC 2017
ssl.sh: #10298: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:04 UTC 2017
ssl.sh: #10299: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:04 UTC 2017
ssl.sh: #10300: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:05 UTC 2017
ssl.sh: #10301: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:05 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10302: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:06 UTC 2017
ssl.sh: #10303: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:06 UTC 2017
ssl.sh: #10304: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:06 UTC 2017
ssl.sh: #10305: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:07 UTC 2017
ssl.sh: #10306: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:07 UTC 2017
ssl.sh: #10307: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:07 UTC 2017
ssl.sh: #10308: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:08 UTC 2017
ssl.sh: #10309: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:08 UTC 2017
ssl.sh: #10310: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:08 UTC 2017
ssl.sh: #10311: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:09 UTC 2017
ssl.sh: #10312: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:09 UTC 2017
ssl.sh: #10313: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:09 UTC 2017
ssl.sh: #10314: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.2 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 9077 >/dev/null 2>/dev/null
selfserv_9590 with PID 9077 found at Tue May  2 16:08:10 UTC 2017
ssl.sh: #10315: TLS Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 9077 at Tue May  2 16:08:10 UTC 2017
kill -USR1 9077
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 9077 killed at Tue May  2 16:08:10 UTC 2017
ssl.sh: TLS Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:08:10 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:08:10 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:10 UTC 2017
selfserv_9590 with PID 10499 started at Tue May  2 16:08:10 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:11 UTC 2017
ssl.sh: #10316: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:11 UTC 2017
ssl.sh: #10317: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:11 UTC 2017
ssl.sh: #10318: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:12 UTC 2017
ssl.sh: #10319: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:12 UTC 2017
ssl.sh: #10320: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:12 UTC 2017
ssl.sh: #10321: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:13 UTC 2017
ssl.sh: #10322: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:13 UTC 2017
ssl.sh: #10323: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:14 UTC 2017
ssl.sh: #10324: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:14 UTC 2017
ssl.sh: #10325: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:14 UTC 2017
ssl.sh: #10326: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:15 UTC 2017
ssl.sh: #10327: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:15 UTC 2017
ssl.sh: #10328: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:16 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10329: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:16 UTC 2017
ssl.sh: #10330: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:16 UTC 2017
ssl.sh: #10331: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:17 UTC 2017
ssl.sh: #10332: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:17 UTC 2017
ssl.sh: #10333: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:17 UTC 2017
ssl.sh: #10334: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:18 UTC 2017
ssl.sh: #10335: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:18 UTC 2017
ssl.sh: #10336: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:18 UTC 2017
ssl.sh: #10337: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:19 UTC 2017
ssl.sh: #10338: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:19 UTC 2017
ssl.sh: #10339: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:20 UTC 2017
ssl.sh: #10340: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:20 UTC 2017
ssl.sh: #10341: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:20 UTC 2017
ssl.sh: #10342: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:21 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10343: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser40-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:21 UTC 2017
ssl.sh: #10344: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser41-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:21 UTC 2017
ssl.sh: #10345: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser42-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:22 UTC 2017
ssl.sh: #10346: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser43-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:22 UTC 2017
ssl.sh: #10347: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser44-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:22 UTC 2017
ssl.sh: #10348: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser45-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:23 UTC 2017
ssl.sh: #10349: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser46-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:23 UTC 2017
ssl.sh: #10350: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser47-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:24 UTC 2017
ssl.sh: #10351: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser48-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:24 UTC 2017
ssl.sh: #10352: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser49-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:24 UTC 2017
ssl.sh: #10353: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser50-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:25 UTC 2017
ssl.sh: #10354: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser51-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:25 UTC 2017
ssl.sh: #10355: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:tls1.0 -w nss -n TestUser52-ec   < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 10499 >/dev/null 2>/dev/null
selfserv_9590 with PID 10499 found at Tue May  2 16:08:25 UTC 2017
ssl.sh: #10356: TLS 1.0 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 10499 at Tue May  2 16:08:25 UTC 2017
kill -USR1 10499
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 10499 killed at Tue May  2 16:08:25 UTC 2017
ssl.sh: TLS 1.0 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:08:25 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:08:25 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:25 UTC 2017
selfserv_9590 with PID 11923 started at Tue May  2 16:08:25 UTC 2017
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:26 UTC 2017
ssl.sh: #10357: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:26 UTC 2017
ssl.sh: #10358: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:27 UTC 2017
ssl.sh: #10359: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:27 UTC 2017
ssl.sh: #10360: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:27 UTC 2017
ssl.sh: #10361: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:28 UTC 2017
ssl.sh: #10362: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:28 UTC 2017
ssl.sh: #10363: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:28 UTC 2017
ssl.sh: #10364: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:29 UTC 2017
ssl.sh: #10365: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:29 UTC 2017
ssl.sh: #10366: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:29 UTC 2017
ssl.sh: #10367: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:30 UTC 2017
ssl.sh: #10368: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:30 UTC 2017
ssl.sh: #10369: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 43 - 48 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_43-48-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:30 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10370: Load group 2 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:31 UTC 2017
ssl.sh: #10371: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:31 UTC 2017
ssl.sh: #10372: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:31 UTC 2017
ssl.sh: #10373: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:32 UTC 2017
ssl.sh: #10374: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:32 UTC 2017
ssl.sh: #10375: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:32 UTC 2017
ssl.sh: #10376: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:33 UTC 2017
ssl.sh: #10377: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:33 UTC 2017
ssl.sh: #10378: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:33 UTC 2017
ssl.sh: #10379: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:34 UTC 2017
ssl.sh: #10380: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:34 UTC 2017
ssl.sh: #10381: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:34 UTC 2017
ssl.sh: #10382: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:35 UTC 2017
ssl.sh: #10383: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - not revoked) produced a returncode of 0, expected is 0 - PASSED
================= Reloading ECC CRL for group 49 - 52 =============
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
          -V ssl3:tls1.2 -w nss -n TestUser41-ec
Request:
GET crl:///builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/server/root.crl_49-52-ec
RELOAD time tests.*
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain-ec@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA (ECC),O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:35 UTC 2017
================= CRL Reloaded =============
ssl.sh: #10384: Load group 3 ECC crl  produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser40-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:35 UTC 2017
ssl.sh: #10385: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser40 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser41-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:36 UTC 2017
ssl.sh: #10386: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser41 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser42-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:36 UTC 2017
ssl.sh: #10387: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser42 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser43-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:36 UTC 2017
ssl.sh: #10388: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser43 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser44-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:37 UTC 2017
ssl.sh: #10389: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser44 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser45-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:37 UTC 2017
ssl.sh: #10390: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser45 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser46-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:37 UTC 2017
ssl.sh: #10391: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser46 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser47-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:38 UTC 2017
ssl.sh: #10392: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser47 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser48-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:38 UTC 2017
ssl.sh: #10393: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser48 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser49-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:38 UTC 2017
ssl.sh: #10394: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser49 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser50-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:38 UTC 2017
ssl.sh: #10395: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser50 - revoked) produced a returncode of 1, expected is 1 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser51-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 2 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:39 UTC 2017
ssl.sh: #10396: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser51 - not revoked) produced a returncode of 0, expected is 0 - PASSED
Server Args: -r_-r_-r_-r
tstclnt -p 9590 -h localhost.localdomain -f -d ../client  \
        -V ssl3:ssl3 -n TestUser52-ec -w nss  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: SSL_ForceHandshake returned error -8180:
Peer's Certificate has been revoked.
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
tstclnt: read from socket failed: SSL_ERROR_REVOKED_CERT_ALERT: SSL peer rejected your certificate as revoked.
kill -0 11923 >/dev/null 2>/dev/null
selfserv_9590 with PID 11923 found at Tue May  2 16:08:39 UTC 2017
ssl.sh: #10397: SSL3 Require client auth on 2nd hs (EC) (client auth)(cert TestUser52 - revoked) produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 11923 at Tue May  2 16:08:39 UTC 2017
kill -USR1 11923
selfserv: 0 cache hits; 82 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 11923 killed at Tue May  2 16:08:39 UTC 2017
ssl.sh: SSL3 Require client auth on 2nd hs (EC) (client auth) ----
selfserv_9590 starting at Tue May  2 16:08:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -r -r -r -r -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:08:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13346 >/dev/null 2>/dev/null
selfserv_9590 with PID 13346 found at Tue May  2 16:08:39 UTC 2017
selfserv_9590 with PID 13346 started at Tue May  2 16:08:39 UTC 2017
trying to kill selfserv_9590 with PID 13346 at Tue May  2 16:08:39 UTC 2017
kill -USR1 13346
./ssl.sh: line 183: 13346 User defined signal 1   ${PROFTOOL} ${BINDIR}/selfserv_9590 -D -p ${PORT} -d ${P_R_SERVERDIR} -n ${HOSTADDR} ${SERVER_OPTIONS} ${ECC_OPTIONS} -S ${HOSTADDR}-dsa -w nss ${sparam} -i ${R_SERVERPID} -V ssl3:tls1.2 $verbose -H 1
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13346 killed at Tue May  2 16:08:39 UTC 2017
ssl.sh: SSL POLICY  - server /client   - with ECC ===============================
Saving pkcs11.txt
selfserv_9590 starting at Tue May  2 16:08:39 UTC 2017
selfserv_9590 -D -p 9590 -d ../server -n localhost.localdomain  \
         -e localhost.localdomain-ecmixed -e localhost.localdomain-ec -S localhost.localdomain-dsa -w nss -c :C001:C002:C003:C004:C005:C006:C007:C008:C009:C00A:C00B:C00C:C00D:C00E:C00F:C010:C011:C012:C013:C014:C023:C024:C027:C028:C02B:C02C:C02F:C030:CCA8:CCA9:CCAA:0016:0032:0033:0038:0039:003B:003C:003D:0040:0041:0067:006A:006B:0084:009C:009D:009E:009F:00A2:00A3:CCAAcdeinvyz -i ../tests_pid.17356\
         -V ssl3:tls1.2  -H 1 &
trying to connect to selfserv_9590 at Tue May  2 16:08:39 UTC 2017
tstclnt -p 9590 -h localhost.localdomain  -q \
        -d ../client  < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
kill -0 13381 >/dev/null 2>/dev/null
selfserv_9590 with PID 13381 found at Tue May  2 16:08:39 UTC 2017
selfserv_9590 with PID 13381 started at Tue May  2 16:08:39 UTC 2017
ssl.sh: running Allowed by Narrow Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10398: Allowed by Narrow Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allowed by Strict Policy ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1/ssl,ssl-key-exchange:sha256/cert-signature:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10399: Allowed by Strict Policy produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Allow All Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
subject DN: CN=localhost.localdomain,E=localhost.localdomain@bogus.com,O=BOGUS NSS,L=Mountain View,ST=California,C=US
issuer  DN: CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US
0 cache hits; 1 cache misses, 0 cache not reusable
0 stateless resumes
Received 0 Cert Status items (OCSP stapled data)
HTTP/1.0 200 OK
Server: Generic Web Server
Date: Tue, 26 Aug 1997 22:10:05 GMT
Content-type: text/plain

GET / HTTP/1.0

EOF


ssl.sh: #10400: Allow All Explicitly produced a returncode of 0, expected is 0 - PASSED
ssl.sh: running Disallow All Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10401: Disallow All Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=sha256
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #10402: Disallow SHA256 Signatures Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:rsa/ssl-key-exchange:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
ssl.sh: #10403: Disallow SHA256 Signatures Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow SHA256 Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: authentication of server cert failed: SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED: The certificate was signed using a signature algorithm that is disabled because it is not secure.
selfserv: HDX PR_Read returned error -12271:
SSL peer cannot verify your certificate.
ssl.sh: #10404: Disallow SHA256 Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=des-ede3-cbc
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10405: Disallow Cipher Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10406: Disallow Cipher Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Cipher Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-verion-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10407: Disallow Cipher Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Explicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=hmac-sha1
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10408: Disallow HMAC Explicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md5:sha256:rsa:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10409: Disallow HMAC Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow HMAC Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10410: Disallow HMAC Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Explicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=rsa/ssl-key-exchange
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10411: Disallow Key Exchange Explicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchange Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:dh-dss:des-ede3-cbc:tls-version-min=ssl3.0:tls-version-max=ssl3.0
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10412: Disallow Key Exchange Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Key Exchnage Signatures Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=ssl2.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: write to SSL socket failed: SSL_ERROR_SSL_DISABLED: Cannot connect: SSL is disabled.
ssl.sh: #10413: Disallow Key Exchnage Signatures Implicitly. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Exlicitly ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=allow=tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #10414: Disallow Version Exlicitly produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly Narrow. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=hmac-sha1:sha256:rsa:des-ede3-cbc:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #10415: Disallow Version Implicitly Narrow. produced a returncode of 1, expected is 1 - PASSED
ssl.sh: running Disallow Version Implicitly. ----------------------------
******************************Testing with: 
library=
name=NSS Internal PKCS #11 Module
parameters=configdir='./client' certPrefix='' keyPrefix='' secmod='secmod.db' flags= updatedir='' updateCertPrefix='' updateKeyPrefix='' updateid='' updateTokenDescription=''
NSS=Flags=internal,critical trustOrder=75 cipherOrder=100 slotParams=(1={slotFlags=[RSA,DSA,DH,RC2,RC4,DES,RANDOM,SHA1,MD5,MD2,SSL,TLS,AES,Camellia,SEED,SHA256,SHA512] askpw=any timeout=30})
config=disallow=all allow=md2/all:md4/all:md5/all:sha1/all:sha256/all:sha384/all:sha512/all:hmac-sha1/all:hmac-sha224/all:hmac-sha256/all:hmac-sha384/all:hmac-sha512/all:hmac-md5/all:camellia128-cbc/all:camellia192-cbc/all:camellia256-cbc/all:seed-cbc/all:des-ede3-cbc/all:des-40-cbc/all:des-cbc/all:null-cipher/all:rc2/all:rc4/all:idea/all:rsa/all:rsa-export/all:dhe-rsa/all:dhe-dss/all:ecdhe-ecdsa/all:ecdhe-rsa/all:ecdh-ecdsa/all:ecdh-rsa/all:tls-version-min=tls1.0:tls-version-max=tls1.2
library=/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/lib/libnssckbi.so
name=RootCerts
NSS=trustOrder=100
******************************
tstclnt -p 9590 -h localhost.localdomain -c d -V ssl3:ssl3  \
        -f -d ../client  -w nss < /builddir/build/BUILD/nss-3.29.1/nss/tests/ssl/sslreq.dat
tstclnt: error setting SSL/TLS version range : SSL_ERROR_INVALID_VERSION_RANGE: SSL version range is not valid.
ssl.sh: #10416: Disallow Version Implicitly. produced a returncode of 1, expected is 1 - PASSED
trying to kill selfserv_9590 with PID 13381 at Tue May  2 16:08:43 UTC 2017
kill -USR1 13381
selfserv: 0 cache hits; 6 cache misses, 0 cache not reusable
          0 stateless resumes, 0 ticket parse failures
selfserv: normal termination
selfserv_9590 -b -p 9590 2>/dev/null;
selfserv_9590 with PID 13381 killed at Tue May  2 16:08:43 UTC 2017
TIMESTAMP ssl END: Tue May  2 16:08:43 UTC 2017
Running tests for merge
TIMESTAMP merge BEGIN: Tue May  2 16:08:43 UTC 2017
sdr.sh: SDR Tests ===============================
sdr.sh: Creating an SDR key/SDR Encrypt - Value 1
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v1.17356 -t "Test1"
sdr.sh: #10417: Creating SDR Key/Encrypt - Value 1  - PASSED
sdr.sh: SDR Encrypt - Value 2
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v2.17356 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #10418: Encrypt - Value 2  - PASSED
sdr.sh: SDR Encrypt - Value 3
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.17356 -t "1234567"
sdr.sh: #10419: Encrypt - Value 3  - PASSED
sdr.sh: SDR Decrypt - Value 1
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v1.17356 -t "Test1"
sdr.sh: #10420: Decrypt - Value 1  - PASSED
sdr.sh: SDR Decrypt - Value 2
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v2.17356 -t "The quick brown fox jumped over the lazy dog"
sdr.sh: #10421: Decrypt - Value 2  - PASSED
sdr.sh: SDR Decrypt - Value 3
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.17356 -t "1234567"
sdr.sh: #10422: Decrypt - Value 3  - PASSED
merge.sh: Merge Tests ===============================
merge.sh: Creating an SDR key & Encrypt
sdrtest -d . -o /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.17356 -t Test2 -f ../tests.pw
merge.sh: #10423: Creating SDR Key  - PASSED
merge.sh: Merging in Key for Existing user
certutil --merge --source-dir ../dave -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10424: Merging Dave  - PASSED
merge.sh: Merging in new user 
certutil --merge --source-dir ../server -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10425: Merging server  - PASSED
merge.sh: Merging in new chain 
certutil --merge --source-dir ../ext_client -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10426: Merging ext_client  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict1 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10427: Merging conflicting nicknames 1  - PASSED
merge.sh: Merging in conflicting nicknames 1
certutil --merge --source-dir conflict2 -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10428: Merging conflicting nicknames 2  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #4)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 45 (0x2d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:01:52 2017
            Not After : Mon May 02 16:01:52 2022
        Subject: "CN=TestUser45,E=TestUser45@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:42:4f:9d:56:dd:ff:de:e8:8b:8f:bf:54:dc:11:ab:
                    a5:ec:69:4f:98:ec:01:5f:6e:63:7b:31:47:db:3c:26:
                    40:c7:da:86:62:56:fc:3a:1f:d0:ce:cc:a6:d3:26:a4:
                    ac:ec:95:54:ec:1b:cc:af:ed:c5:d8:5e:13:2f:7d:df:
                    c7:6f:d5:be:23:b0:fb:7e:e1:f3:08:b8:ec:2c:b0:ce:
                    dd:fa:9f:2b:86:aa:3b:75:72:e2:99:3b:30:1b:26:e3:
                    ac:ce:0f:55:94:25:f7:d2:50:e8:2b:21:72:17:cf:9c:
                    d1:5d:a9:c5:e3:ca:fc:d0:dd:66:34:5c:e0:99:64:eb:
                    9e:e3:fe:09:07:ed:ce:ad:47:b1:5f:5e:9a:fc:21:ba:
                    fe:af:ae:99:01:99:ba:e9:71:74:d5:1a:36:ef:6e:18:
                    8e:62:d7:99:84:14:be:5e:02:c2:ba:96:e8:d3:0b:dc:
                    90:53:a7:96:06:3d:a5:1f:61:7f:3a:8e:6a:a3:ed:99:
                    3c:e4:61:b6:12:92:60:7a:53:c2:b2:8e:58:cb:80:95:
                    4b:1f:e8:40:3e:f8:44:c3:7b:ea:e7:51:e4:b6:0a:f8:
                    39:ef:47:7b:db:3a:f5:88:08:92:4d:a8:b1:f6:de:73:
                    68:fc:5f:a4:1e:c6:ab:a4:f7:98:32:d8:39:ba:58:e1
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9f:99:29:02:b1:11:51:1c:fd:b2:7d:22:10:a7:c9:35:
        4a:3f:87:d1:be:8f:56:75:2e:74:3e:60:d8:ed:f1:d4:
        2a:30:bb:0f:2b:6a:91:60:07:5a:c7:27:e9:11:5e:ea:
        6c:cb:45:88:02:fd:de:b0:cc:33:30:53:a8:95:d7:55:
        b3:b9:2a:2e:d4:ed:93:c7:95:bc:66:78:0e:e4:01:b1:
        42:2b:d7:af:e2:c3:cb:b6:cf:a8:fc:1b:a0:60:05:9d:
        40:fb:b7:39:86:a2:a9:e3:a4:39:e3:aa:ce:aa:5e:52:
        d3:cd:e1:6b:97:a0:d7:95:11:1e:43:c3:76:f5:df:f1:
        b6:11:b3:9e:04:10:e1:ef:c3:ef:9f:4f:dd:3f:6c:be:
        ca:da:a6:42:d3:fd:80:8e:c2:f5:2b:af:06:07:83:d0:
        17:00:3b:d8:5a:40:2b:a4:b3:55:86:92:48:27:84:9b:
        ec:c1:5d:6b:2e:58:65:be:24:2a:a3:2a:6d:96:98:77:
        ae:e5:7e:53:e2:a5:d8:7f:01:1e:c8:3d:8f:0d:ad:42:
        bf:ae:70:1a:3d:9d:6a:be:62:74:c4:bb:bb:b5:4e:69:
        de:86:e4:b7:ec:1b:2c:e0:05:ab:63:3d:b8:52:25:62:
        ef:d9:21:a2:dd:23:45:95:9b:19:d4:65:f0:90:81:15
    Fingerprint (SHA-256):
        A6:C0:C9:1D:4A:E9:6B:3A:F7:83:11:13:4C:32:50:08:DD:82:F6:62:9A:91:8A:54:68:F4:CB:7A:2C:D5:CF:E4
    Fingerprint (SHA1):
        30:E0:54:11:41:A9:BF:EA:36:F4:85:8C:79:41:65:85:DB:D0:3E:D6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10429: Verify nicknames were deconflicted (Alice #4)  - PASSED
merge.sh: Verify nicknames were deconflicted (Alice #100)
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 46 (0x2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Tue May 02 16:01:55 2017
            Not After : Mon May 02 16:01:55 2022
        Subject: "CN=TestUser46,E=TestUser46@bogus.com,O=BOGUS NSS,L=Mountain
             View,ST=California,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:5e:80:e7:ab:56:71:6e:09:90:9f:48:0c:45:2d:e4:
                    6e:80:e5:b9:c3:cb:66:c3:23:09:a5:9b:dc:8a:38:ae:
                    03:d7:ee:f6:78:22:3f:75:6b:e3:7c:5c:29:a8:f9:5c:
                    5a:5e:0e:72:99:b8:27:b5:a7:84:bd:40:44:1d:81:0f:
                    9e:f8:13:df:9b:ed:55:1d:99:d1:81:8f:6d:3c:9e:68:
                    cf:2a:f1:79:40:5e:18:d2:10:04:86:32:09:d9:cc:23:
                    7a:e5:e5:b5:94:50:23:7d:fc:2c:33:35:99:45:f2:07:
                    5f:10:c8:ac:87:09:e4:0f:9a:80:8b:6f:99:a4:c7:fa:
                    f2:aa:81:ed:08:9c:d4:70:a1:ff:1b:ad:da:f8:60:06:
                    08:40:5a:f5:a0:a3:e5:8c:ae:73:04:b9:01:67:05:19:
                    85:c6:56:d6:94:31:a5:db:9a:03:a2:85:18:f2:07:ac:
                    34:fd:a5:91:fe:7a:98:dd:b8:d5:09:3e:18:72:e8:2d:
                    0a:d2:f5:a9:d5:4a:08:cf:43:cf:48:6d:ef:0f:8e:20:
                    07:9a:6e:d2:10:39:8f:2d:02:bf:c5:40:66:ba:31:f6:
                    a6:14:ee:b5:99:f0:b1:d2:ff:8c:00:b8:1f:7f:b7:f0:
                    7e:2f:0e:bb:89:ac:69:96:d3:6d:04:82:8f:46:c7:ab
                Exponent: 65537 (0x10001)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        03:2b:ab:58:5b:48:64:29:5a:eb:e5:ef:c7:65:f7:ac:
        3d:5f:ec:69:d4:02:59:13:94:00:24:7c:4b:33:0e:06:
        67:f7:db:ab:08:0f:17:08:34:ba:fb:85:df:d4:eb:14:
        e9:bc:d4:da:8d:29:4e:93:cd:2d:9c:8a:79:6c:86:a2:
        ce:f8:d7:af:30:51:20:57:61:06:0a:d5:07:dd:e9:b0:
        cb:5d:e0:aa:24:1b:c2:d7:c6:1d:7e:49:e1:44:b0:e4:
        a5:01:c6:a2:1f:71:e4:86:8a:11:b0:d6:44:d5:12:7b:
        36:6f:d5:53:60:3d:b8:37:80:b4:cb:e0:51:49:14:3b:
        66:b9:37:ef:3e:4b:c9:31:6a:42:6b:85:f9:e3:ba:c6:
        71:af:83:53:ac:15:76:84:c0:57:76:ab:31:29:86:e1:
        4d:02:a5:5d:55:51:9f:21:77:37:ff:0c:f5:77:06:12:
        ad:65:bf:97:ee:a5:03:b5:ab:3f:63:11:1e:30:f3:1c:
        43:c1:34:1e:d6:a2:ff:bc:08:13:f5:9b:72:04:86:85:
        bc:92:1d:37:64:92:2e:3f:24:33:6a:b9:3e:ab:6b:a9:
        57:c0:8f:45:7d:a0:37:3a:06:83:24:17:c8:92:76:20:
        35:ba:7f:ab:b6:3d:a1:ac:c7:9f:13:38:9a:73:e2:7d
    Fingerprint (SHA-256):
        53:09:9A:7D:2E:6A:C1:E6:DA:3F:5F:3D:B3:6E:AB:46:9A:41:B1:EB:5A:9A:95:97:19:B9:49:AE:EE:F4:DC:AE
    Fingerprint (SHA1):
        39:1B:CB:52:99:03:75:BC:C1:4E:7F:69:68:72:EB:1A:06:09:60:38
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
merge.sh: #10430: Verify nicknames were deconflicted (Alice #100)  - PASSED
merge.sh: Merging in SDR 
certutil --merge --source-dir ../SDR -d . -f ../tests.pw -@ ../tests.pw
merge.sh: #10431: Merging SDR  - PASSED
Certificate Nickname                                         Trust Attributes
                                                             SSL,S/MIME,JAR/XPI
TestCA                                                       CT,C,C
TestCA-dsa                                                   CT,C,C
TestCA-ec                                                    CT,C,C
Alice                                                        u,u,u
Alice-dsa                                                    u,u,u
Alice-dsamixed                                               u,u,u
Alice-ec                                                     u,u,u
Alice-ecmixed                                                u,u,u
bob@bogus.com                                                ,,   
Dave                                                         u,u,u
eve@bogus.com                                                ,,   
bob-ec@bogus.com                                             ,,   
Dave-ec                                                      u,u,u
Dave-dsa                                                     u,u,u
Dave-dsamixed                                                u,u,u
Dave-ecmixed                                                 u,u,u
localhost.localdomain                                        u,u,u
localhost.localdomain-dsa                                    u,u,u
localhost.localdomain-dsamixed                               u,u,u
localhost.localdomain-ec                                     u,u,u
localhost.localdomain-ecmixed                                u,u,u
localhost-sni.localdomain                                    u,u,u
localhost-sni.localdomain-dsa                                u,u,u
localhost-sni.localdomain-dsamixed                           u,u,u
localhost-sni.localdomain-ec                                 u,u,u
localhost-sni.localdomain-ecmixed                            u,u,u
ExtendedSSLUser                                              u,u,u
serverCA                                                     C,C,C
ExtendedSSLUser-dsa                                          u,u,u
serverCA-dsa                                                 C,C,C
ExtendedSSLUser-dsamixed                                     u,u,u
ExtendedSSLUser-ec                                           u,u,u
serverCA-ec                                                  C,C,C
ExtendedSSLUser-ecmixed                                      u,u,u
clientCA-ec                                                  T,C,C
chain-2-clientCA-ec                                          ,,   
chain-1-clientCA-ec                                          ,,   
chain-2-clientCA-dsa                                         ,,   
chain-1-clientCA                                             ,,   
clientCA-dsa                                                 T,C,C
clientCA                                                     T,C,C
chain-2-clientCA                                             ,,   
chain-1-clientCA-dsa                                         ,,   
Alice #2                                                     ,,   
Alice #1                                                     ,,   
Alice #99                                                    ,,   
Alice #3                                                     ,,   
Alice #4                                                     ,,   
Alice #100                                                   ,,   
CRL names                                CRL Type
TestCA                                   CRL  
TestCA-ec                                CRL  
merge.sh: Decrypt - With Original SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v3.17356 -t Test2 -f ../tests.pw
merge.sh: #10432: Decrypt - Value 3  - PASSED
merge.sh: Decrypt - With Merged SDR Key
sdrtest -d . -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests.v1.17356 -t Test1 -f ../tests.pw
merge.sh: #10433: Decrypt - Value 1  - PASSED
merge.sh: Signing with merged key  ------------------
cmsutil -S -T -N Dave -H SHA1 -i alice.txt -d . -p nss -o dave.dsig
merge.sh: #10434: Create Detached Signature Dave . - PASSED
cmsutil -D -i dave.dsig -c alice.txt -d . 
Date: Wed, 20 Sep 2000 00:00:01 -0700 (PDT)
From: alice@bogus.com
Subject: message Alice --> Bob
To: bob@bogus.com
This is a test message from Alice to Bob.
merge.sh: #10435: Verifying Dave's Detached Signature  - PASSED
merge.sh: verifying  merged cert  ------------------
certutil -V -n ExtendedSSLUser -u C -d .
certutil: certificate is valid
merge.sh: #10436: Verifying ExtendedSSL User Cert  - PASSED
merge.sh: verifying  merged crl  ------------------
crlutil -L -n TestCA -d .
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US"
    This Update: Tue May 02 16:02:28 2017
    Entry 1 (0x1):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 15:59:52 2017
        Entry Extensions:
            Name: CRL reason code
    Entry 2 (0x2):
        Serial Number: 42 (0x2a)
        Revocation Date: Tue May 02 16:02:24 2017
    CRL Extensions:
        Name: Certificate Issuer Alt Name
        RFC822 Name: "caemail@ca.com"
        DNS name: "ca.com"
        Directory Name: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=Califo
            rnia,C=US"
        URI: "http://ca.com"
        IP Address:
            87:0b:31:39:32:2e:31:36:38:2e:30:2e:31
merge.sh: #10437: Verifying TestCA CRL  - PASSED
TEST_MODE=SHARED_DB
NSS_DEFAULT_DB_TYPE=sql
TIMESTAMP merge END: Tue May  2 16:08:55 UTC 2017
Running tests for chains
TIMESTAMP chains BEGIN: Tue May  2 16:08:55 UTC 2017
chains.sh: Certificate Chains Tests ===============================
chains.sh: Creating DB OCSPRootDB
certutil -N -d OCSPRootDB -f OCSPRootDB/dbpasswd
chains.sh: #10438: OCSPD: Creating DB OCSPRootDB  - PASSED
chains.sh: Creating Root CA OCSPRoot
certutil -s "CN=OCSPRoot ROOT CA, O=OCSPRoot, C=US" -S -n OCSPRoot  -t CTu,CTu,CTu -v 600 -x -d OCSPRootDB -1 -2 -5 -f OCSPRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160856 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10439: OCSPD: Creating Root CA OCSPRoot  - PASSED
chains.sh: Exporting Root CA OCSPRoot.der
certutil -L -d OCSPRootDB -r -n OCSPRoot -o OCSPRoot.der
chains.sh: #10440: OCSPD: Exporting Root CA OCSPRoot.der  - PASSED
chains.sh: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPRootDB -o OCSPRoot.p12 -n OCSPRoot -k OCSPRootDB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10441: OCSPD: Exporting OCSPRoot as OCSPRoot.p12 from OCSPRootDB database  - PASSED
chains.sh: Creating DB OCSPCA1DB
certutil -N -d OCSPCA1DB -f OCSPCA1DB/dbpasswd
chains.sh: #10442: OCSPD: Creating DB OCSPCA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA1Req.der
certutil -s "CN=OCSPCA1 Intermediate, O=OCSPCA1, C=US"  -R -2 -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10443: OCSPD: Creating Intermediate certifiate request OCSPCA1Req.der  - PASSED
chains.sh: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA1Req.der -o OCSPCA1OCSPRoot.der -f OCSPRootDB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10444: OCSPD: Creating certficate OCSPCA1OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database
certutil -A -n OCSPCA1 -t u,u,u -d OCSPCA1DB -f OCSPCA1DB/dbpasswd -i OCSPCA1OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10445: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to OCSPCA1DB database  - PASSED
chains.sh: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA1DB -o OCSPCA1.p12 -n OCSPCA1 -k OCSPCA1DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10446: OCSPD: Exporting OCSPCA1 as OCSPCA1.p12 from OCSPCA1DB database  - PASSED
chains.sh: Creating DB OCSPCA2DB
certutil -N -d OCSPCA2DB -f OCSPCA2DB/dbpasswd
chains.sh: #10447: OCSPD: Creating DB OCSPCA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA2Req.der
certutil -s "CN=OCSPCA2 Intermediate, O=OCSPCA2, C=US"  -R -2 -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10448: OCSPD: Creating Intermediate certifiate request OCSPCA2Req.der  - PASSED
chains.sh: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA2Req.der -o OCSPCA2OCSPRoot.der -f OCSPRootDB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10449: OCSPD: Creating certficate OCSPCA2OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database
certutil -A -n OCSPCA2 -t u,u,u -d OCSPCA2DB -f OCSPCA2DB/dbpasswd -i OCSPCA2OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10450: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to OCSPCA2DB database  - PASSED
chains.sh: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA2DB -o OCSPCA2.p12 -n OCSPCA2 -k OCSPCA2DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10451: OCSPD: Exporting OCSPCA2 as OCSPCA2.p12 from OCSPCA2DB database  - PASSED
chains.sh: Creating DB OCSPCA3DB
certutil -N -d OCSPCA3DB -f OCSPCA3DB/dbpasswd
chains.sh: #10452: OCSPD: Creating DB OCSPCA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request OCSPCA3Req.der
certutil -s "CN=OCSPCA3 Intermediate, O=OCSPCA3, C=US"  -R -2 -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPCA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10453: OCSPD: Creating Intermediate certifiate request OCSPCA3Req.der  - PASSED
chains.sh: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot
certutil -C -c OCSPRoot -v 60 -d OCSPRootDB -i OCSPCA3Req.der -o OCSPCA3OCSPRoot.der -f OCSPRootDB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10454: OCSPD: Creating certficate OCSPCA3OCSPRoot.der signed by OCSPRoot  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database
certutil -A -n OCSPCA3 -t u,u,u -d OCSPCA3DB -f OCSPCA3DB/dbpasswd -i OCSPCA3OCSPRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10455: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to OCSPCA3DB database  - PASSED
chains.sh: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d OCSPCA3DB -o OCSPCA3.p12 -n OCSPCA3 -k OCSPCA3DB/dbpasswd -W nssnss
pk12util: PKCS12 EXPORT SUCCESSFUL
chains.sh: #10456: OCSPD: Exporting OCSPCA3 as OCSPCA3.p12 from OCSPCA3DB database  - PASSED
chains.sh: Creating DB OCSPEE11DB
certutil -N -d OCSPEE11DB -f OCSPEE11DB/dbpasswd
chains.sh: #10457: OCSPD: Creating DB OCSPEE11DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE11Req.der
certutil -s "CN=OCSPEE11 EE, O=OCSPEE11, C=US"  -R  -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10458: OCSPD: Creating EE certifiate request OCSPEE11Req.der  - PASSED
chains.sh: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE11Req.der -o OCSPEE11OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10459: OCSPD: Creating certficate OCSPEE11OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database
certutil -A -n OCSPEE11 -t u,u,u -d OCSPEE11DB -f OCSPEE11DB/dbpasswd -i OCSPEE11OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10460: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to OCSPEE11DB database  - PASSED
chains.sh: Creating DB OCSPEE12DB
certutil -N -d OCSPEE12DB -f OCSPEE12DB/dbpasswd
chains.sh: #10461: OCSPD: Creating DB OCSPEE12DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE12Req.der
certutil -s "CN=OCSPEE12 EE, O=OCSPEE12, C=US"  -R  -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10462: OCSPD: Creating EE certifiate request OCSPEE12Req.der  - PASSED
chains.sh: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE12Req.der -o OCSPEE12OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10463: OCSPD: Creating certficate OCSPEE12OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database
certutil -A -n OCSPEE12 -t u,u,u -d OCSPEE12DB -f OCSPEE12DB/dbpasswd -i OCSPEE12OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10464: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to OCSPEE12DB database  - PASSED
chains.sh: Creating DB OCSPEE13DB
certutil -N -d OCSPEE13DB -f OCSPEE13DB/dbpasswd
chains.sh: #10465: OCSPD: Creating DB OCSPEE13DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE13Req.der
certutil -s "CN=OCSPEE13 EE, O=OCSPEE13, C=US"  -R  -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10466: OCSPD: Creating EE certifiate request OCSPEE13Req.der  - PASSED
chains.sh: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE13Req.der -o OCSPEE13OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10467: OCSPD: Creating certficate OCSPEE13OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database
certutil -A -n OCSPEE13 -t u,u,u -d OCSPEE13DB -f OCSPEE13DB/dbpasswd -i OCSPEE13OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10468: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to OCSPEE13DB database  - PASSED
chains.sh: Creating DB OCSPEE14DB
certutil -N -d OCSPEE14DB -f OCSPEE14DB/dbpasswd
chains.sh: #10469: OCSPD: Creating DB OCSPEE14DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE14Req.der
certutil -s "CN=OCSPEE14 EE, O=OCSPEE14, C=US"  -R  -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE14Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10470: OCSPD: Creating EE certifiate request OCSPEE14Req.der  - PASSED
chains.sh: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE14Req.der -o OCSPEE14OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 4   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10471: OCSPD: Creating certficate OCSPEE14OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database
certutil -A -n OCSPEE14 -t u,u,u -d OCSPEE14DB -f OCSPEE14DB/dbpasswd -i OCSPEE14OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10472: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to OCSPEE14DB database  - PASSED
chains.sh: Creating DB OCSPEE15DB
certutil -N -d OCSPEE15DB -f OCSPEE15DB/dbpasswd
chains.sh: #10473: OCSPD: Creating DB OCSPEE15DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE15Req.der
certutil -s "CN=OCSPEE15 EE, O=OCSPEE15, C=US"  -R  -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE15Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10474: OCSPD: Creating EE certifiate request OCSPEE15Req.der  - PASSED
chains.sh: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1
certutil -C -c OCSPCA1 -v 60 -d OCSPCA1DB -i OCSPEE15Req.der -o OCSPEE15OCSPCA1.der -f OCSPCA1DB/dbpasswd -m 5   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10475: OCSPD: Creating certficate OCSPEE15OCSPCA1.der signed by OCSPCA1  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database
certutil -A -n OCSPEE15 -t u,u,u -d OCSPEE15DB -f OCSPEE15DB/dbpasswd -i OCSPEE15OCSPCA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10476: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to OCSPEE15DB database  - PASSED
chains.sh: Creating DB OCSPEE21DB
certutil -N -d OCSPEE21DB -f OCSPEE21DB/dbpasswd
chains.sh: #10477: OCSPD: Creating DB OCSPEE21DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE21Req.der
certutil -s "CN=OCSPEE21 EE, O=OCSPEE21, C=US"  -R  -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10478: OCSPD: Creating EE certifiate request OCSPEE21Req.der  - PASSED
chains.sh: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE21Req.der -o OCSPEE21OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10479: OCSPD: Creating certficate OCSPEE21OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database
certutil -A -n OCSPEE21 -t u,u,u -d OCSPEE21DB -f OCSPEE21DB/dbpasswd -i OCSPEE21OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10480: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to OCSPEE21DB database  - PASSED
chains.sh: Creating DB OCSPEE22DB
certutil -N -d OCSPEE22DB -f OCSPEE22DB/dbpasswd
chains.sh: #10481: OCSPD: Creating DB OCSPEE22DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE22Req.der
certutil -s "CN=OCSPEE22 EE, O=OCSPEE22, C=US"  -R  -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10482: OCSPD: Creating EE certifiate request OCSPEE22Req.der  - PASSED
chains.sh: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE22Req.der -o OCSPEE22OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10483: OCSPD: Creating certficate OCSPEE22OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database
certutil -A -n OCSPEE22 -t u,u,u -d OCSPEE22DB -f OCSPEE22DB/dbpasswd -i OCSPEE22OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10484: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to OCSPEE22DB database  - PASSED
chains.sh: Creating DB OCSPEE23DB
certutil -N -d OCSPEE23DB -f OCSPEE23DB/dbpasswd
chains.sh: #10485: OCSPD: Creating DB OCSPEE23DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE23Req.der
certutil -s "CN=OCSPEE23 EE, O=OCSPEE23, C=US"  -R  -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10486: OCSPD: Creating EE certifiate request OCSPEE23Req.der  - PASSED
chains.sh: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2
certutil -C -c OCSPCA2 -v 60 -d OCSPCA2DB -i OCSPEE23Req.der -o OCSPEE23OCSPCA2.der -f OCSPCA2DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10487: OCSPD: Creating certficate OCSPEE23OCSPCA2.der signed by OCSPCA2  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database
certutil -A -n OCSPEE23 -t u,u,u -d OCSPEE23DB -f OCSPEE23DB/dbpasswd -i OCSPEE23OCSPCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10488: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to OCSPEE23DB database  - PASSED
chains.sh: Creating DB OCSPEE31DB
certutil -N -d OCSPEE31DB -f OCSPEE31DB/dbpasswd
chains.sh: #10489: OCSPD: Creating DB OCSPEE31DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE31Req.der
certutil -s "CN=OCSPEE31 EE, O=OCSPEE31, C=US"  -R  -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE31Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10490: OCSPD: Creating EE certifiate request OCSPEE31Req.der  - PASSED
chains.sh: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE31Req.der -o OCSPEE31OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 1   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10491: OCSPD: Creating certficate OCSPEE31OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database
certutil -A -n OCSPEE31 -t u,u,u -d OCSPEE31DB -f OCSPEE31DB/dbpasswd -i OCSPEE31OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10492: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to OCSPEE31DB database  - PASSED
chains.sh: Creating DB OCSPEE32DB
certutil -N -d OCSPEE32DB -f OCSPEE32DB/dbpasswd
chains.sh: #10493: OCSPD: Creating DB OCSPEE32DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE32Req.der
certutil -s "CN=OCSPEE32 EE, O=OCSPEE32, C=US"  -R  -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10494: OCSPD: Creating EE certifiate request OCSPEE32Req.der  - PASSED
chains.sh: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE32Req.der -o OCSPEE32OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 2   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9600/ocsp
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10495: OCSPD: Creating certficate OCSPEE32OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database
certutil -A -n OCSPEE32 -t u,u,u -d OCSPEE32DB -f OCSPEE32DB/dbpasswd -i OCSPEE32OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10496: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to OCSPEE32DB database  - PASSED
chains.sh: Creating DB OCSPEE33DB
certutil -N -d OCSPEE33DB -f OCSPEE33DB/dbpasswd
chains.sh: #10497: OCSPD: Creating DB OCSPEE33DB  - PASSED
chains.sh: Creating EE certifiate request OCSPEE33Req.der
certutil -s "CN=OCSPEE33 EE, O=OCSPEE33, C=US"  -R  -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OCSPEE33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10498: OCSPD: Creating EE certifiate request OCSPEE33Req.der  - PASSED
chains.sh: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3
certutil -C -c OCSPCA3 -v 60 -d OCSPCA3DB -i OCSPEE33Req.der -o OCSPEE33OCSPCA3.der -f OCSPCA3DB/dbpasswd -m 3   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
2
7
http://localhost.localdomain:9601
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #10499: OCSPD: Creating certficate OCSPEE33OCSPCA3.der signed by OCSPCA3  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database
certutil -A -n OCSPEE33 -t u,u,u -d OCSPEE33DB -f OCSPEE33DB/dbpasswd -i OCSPEE33OCSPCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10500: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to OCSPEE33DB database  - PASSED
chains.sh: Create CRL for OCSPRootDB
crlutil -G -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502160919Z
nextupdate=20180502160919Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 16:09:19 2017
    Next Update: Wed May 02 16:09:19 2018
    CRL Extensions:
chains.sh: #10501: OCSPD: Create CRL for OCSPRootDB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPRoot
crlutil -M -d OCSPRootDB -n OCSPRoot -f OCSPRootDB/dbpasswd -o OCSPRoot.crl
=== Crlutil input data ===
update=20170502160920Z
addcert 2 20170502160920Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
    This Update: Tue May 02 16:09:20 2017
    Next Update: Wed May 02 16:09:19 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 16:09:20 2017
    CRL Extensions:
chains.sh: #10502: OCSPD: Revoking certificate with SN 2 issued by OCSPRoot  - PASSED
chains.sh: Create CRL for OCSPCA1DB
crlutil -G -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502160921Z
nextupdate=20180502160921Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 16:09:21 2017
    Next Update: Wed May 02 16:09:21 2018
    CRL Extensions:
chains.sh: #10503: OCSPD: Create CRL for OCSPCA1DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502160922Z
addcert 2 20170502160922Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 16:09:22 2017
    Next Update: Wed May 02 16:09:21 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 16:09:22 2017
    CRL Extensions:
chains.sh: #10504: OCSPD: Revoking certificate with SN 2 issued by OCSPCA1  - PASSED
chains.sh: Revoking certificate with SN 4 issued by OCSPCA1
crlutil -M -d OCSPCA1DB -n OCSPCA1 -f OCSPCA1DB/dbpasswd -o OCSPCA1.crl
=== Crlutil input data ===
update=20170502160923Z
addcert 4 20170502160923Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
    This Update: Tue May 02 16:09:23 2017
    Next Update: Wed May 02 16:09:21 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 16:09:22 2017
    Entry 2 (0x2):
        Serial Number: 4 (0x4)
        Revocation Date: Tue May 02 16:09:23 2017
    CRL Extensions:
chains.sh: #10505: OCSPD: Revoking certificate with SN 4 issued by OCSPCA1  - PASSED
chains.sh: Create CRL for OCSPCA2DB
crlutil -G -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502160923Z
nextupdate=20180502160923Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 16:09:23 2017
    Next Update: Wed May 02 16:09:23 2018
    CRL Extensions:
chains.sh: #10506: OCSPD: Create CRL for OCSPCA2DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502160924Z
addcert 2 20170502160924Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 16:09:24 2017
    Next Update: Wed May 02 16:09:23 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 16:09:24 2017
    CRL Extensions:
chains.sh: #10507: OCSPD: Revoking certificate with SN 2 issued by OCSPCA2  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA2
crlutil -M -d OCSPCA2DB -n OCSPCA2 -f OCSPCA2DB/dbpasswd -o OCSPCA2.crl
=== Crlutil input data ===
update=20170502160925Z
addcert 3 20170502160925Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA2 Intermediate,O=OCSPCA2,C=US"
    This Update: Tue May 02 16:09:25 2017
    Next Update: Wed May 02 16:09:23 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 16:09:24 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 16:09:25 2017
    CRL Extensions:
chains.sh: #10508: OCSPD: Revoking certificate with SN 3 issued by OCSPCA2  - PASSED
chains.sh: Create CRL for OCSPCA3DB
crlutil -G -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502160925Z
nextupdate=20180502160925Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 16:09:25 2017
    Next Update: Wed May 02 16:09:25 2018
    CRL Extensions:
chains.sh: #10509: OCSPD: Create CRL for OCSPCA3DB  - PASSED
chains.sh: Revoking certificate with SN 2 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502160926Z
addcert 2 20170502160926Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 16:09:26 2017
    Next Update: Wed May 02 16:09:25 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 16:09:26 2017
    CRL Extensions:
chains.sh: #10510: OCSPD: Revoking certificate with SN 2 issued by OCSPCA3  - PASSED
chains.sh: Revoking certificate with SN 3 issued by OCSPCA3
crlutil -M -d OCSPCA3DB -n OCSPCA3 -f OCSPCA3DB/dbpasswd -o OCSPCA3.crl
=== Crlutil input data ===
update=20170502160927Z
addcert 3 20170502160927Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=OCSPCA3 Intermediate,O=OCSPCA3,C=US"
    This Update: Tue May 02 16:09:27 2017
    Next Update: Wed May 02 16:09:25 2018
    Entry 1 (0x1):
        Serial Number: 2 (0x2)
        Revocation Date: Tue May 02 16:09:26 2017
    Entry 2 (0x2):
        Serial Number: 3 (0x3)
        Revocation Date: Tue May 02 16:09:27 2017
    CRL Extensions:
chains.sh: #10511: OCSPD: Revoking certificate with SN 3 issued by OCSPCA3  - PASSED
chains.sh: Creating DB ServerDB
certutil -N -d ServerDB -f ServerDB/dbpasswd
chains.sh: #10512: OCSPD: Creating DB ServerDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ServerDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.der
chains.sh: #10513: OCSPD: Importing certificate OCSPRoot.der to ServerDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ServerDB database
crlutil -I -d ServerDB -f ServerDB/dbpasswd -i OCSPRoot.crl
chains.sh: #10514: OCSPD: Importing CRL OCSPRoot.crl to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPRoot.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPRoot.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10515: OCSPD: Importing p12 key OCSPRoot.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA1.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA1.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10516: OCSPD: Importing p12 key OCSPCA1.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA2.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA2.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10517: OCSPD: Importing p12 key OCSPCA2.p12 to ServerDB database  - PASSED
chains.sh: Importing p12 key OCSPCA3.p12 to ServerDB database
/builddir/build/BUILD/nss-3.29.1/dist/Linux4.10_aarch64_cc_glibc_PTH_64_OPT.OBJ/bin/pk12util -d ServerDB -i ../OCSPD/OCSPCA3.p12 -k ServerDB/dbpasswd -W nssnss
pk12util: PKCS12 IMPORT SUCCESSFUL
chains.sh: #10518: OCSPD: Importing p12 key OCSPCA3.p12 to ServerDB database  - PASSED
chains.sh: Creating DB ClientDB
certutil -N -d ClientDB -f ClientDB/dbpasswd
chains.sh: #10519: OCSPD: Creating DB ClientDB  - PASSED
chains.sh: Importing certificate OCSPRoot.der to ClientDB database
certutil -A -n OCSPRoot  -t "CT,C,C" -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.der
chains.sh: #10520: OCSPD: Importing certificate OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing CRL OCSPRoot.crl to ClientDB database
crlutil -I -d ClientDB -f ClientDB/dbpasswd -i OCSPRoot.crl
chains.sh: #10521: OCSPD: Importing CRL OCSPRoot.crl to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA1OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA1OCSPRoot.der
chains.sh: #10522: OCSPD: Importing certificate OCSPCA1OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA2OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA2OCSPRoot.der
chains.sh: #10523: OCSPD: Importing certificate OCSPCA2OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database
certutil -A -n OCSPCA3OCSPRoot  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPCA3OCSPRoot.der
chains.sh: #10524: OCSPD: Importing certificate OCSPCA3OCSPRoot.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE11OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE11OCSPCA1.der
chains.sh: #10525: OCSPD: Importing certificate OCSPEE11OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE12OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE12OCSPCA1.der
chains.sh: #10526: OCSPD: Importing certificate OCSPEE12OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE13OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE13OCSPCA1.der
chains.sh: #10527: OCSPD: Importing certificate OCSPEE13OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE14OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE14OCSPCA1.der
chains.sh: #10528: OCSPD: Importing certificate OCSPEE14OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database
certutil -A -n OCSPEE15OCSPCA1  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE15OCSPCA1.der
chains.sh: #10529: OCSPD: Importing certificate OCSPEE15OCSPCA1.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE21OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE21OCSPCA2.der
chains.sh: #10530: OCSPD: Importing certificate OCSPEE21OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE22OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE22OCSPCA2.der
chains.sh: #10531: OCSPD: Importing certificate OCSPEE22OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database
certutil -A -n OCSPEE23OCSPCA2  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE23OCSPCA2.der
chains.sh: #10532: OCSPD: Importing certificate OCSPEE23OCSPCA2.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE31OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE31OCSPCA3.der
chains.sh: #10533: OCSPD: Importing certificate OCSPEE31OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE32OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE32OCSPCA3.der
chains.sh: #10534: OCSPD: Importing certificate OCSPEE32OCSPCA3.der to ClientDB database  - PASSED
chains.sh: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database
certutil -A -n OCSPEE33OCSPCA3  -t "" -d ClientDB -f ClientDB/dbpasswd -i OCSPEE33OCSPCA3.der
chains.sh: #10535: OCSPD: Importing certificate OCSPEE33OCSPCA3.der to ClientDB database  - PASSED
httpserv starting at Tue May  2 16:09:34 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 16:09:34 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 15901 >/dev/null 2>/dev/null
httpserv with PID 15901 found at Tue May  2 16:09:34 UTC 2017
httpserv with PID 15901 started at Tue May  2 16:09:34 UTC 2017
tstclnt -h localhost.localdomain -p 9600 -q -t 20
chains.sh: #10536: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160856 (0x1dee5dd8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 16:08:57 2017
            Not After : Mon May 02 16:08:57 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:e6:68:04:cc:ab:bf:8d:66:97:01:5a:9a:b7:0b:d5:
                    dd:bc:97:e6:8e:cb:9f:6f:a6:ec:3f:54:6b:bf:a7:a2:
                    6b:37:c8:68:28:8b:2f:91:57:33:ff:12:ac:c5:8b:c2:
                    39:77:da:a3:66:ef:31:a7:d1:48:64:f0:d1:bb:eb:29:
                    c4:00:23:7f:5b:f8:78:46:db:02:f5:ce:3e:93:a2:f4:
                    e6:8a:9b:1e:15:f3:c2:15:63:e8:95:88:72:37:68:02:
                    ac:27:b5:60:cb:ff:72:ad:c7:fa:18:dc:14:94:27:fc:
                    04:39:92:91:7d:37:c2:f4:e0:64:3b:15:f3:2b:aa:fa:
                    de:b9:20:85:80:df:4d:0b:0d:04:c9:f1:b3:45:50:db:
                    e7:4b:13:2d:6c:a2:21:51:24:23:3e:d8:26:67:b8:3b:
                    ef:69:07:0b:60:4d:48:c7:15:37:33:6a:d3:de:c5:f0:
                    f2:76:25:60:72:1a:12:f0:98:27:89:bf:46:43:f2:f3:
                    ef:3a:32:85:da:a0:49:87:33:4b:a2:f3:88:99:ab:41:
                    27:73:12:37:cd:7d:a5:5c:65:d9:b9:ee:83:a8:22:11:
                    5c:3f:67:bb:ba:0c:70:78:2a:94:85:77:53:07:3b:b1:
                    8d:3a:15:e3:52:44:35:20:89:7c:27:21:ce:bd:f8:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:dc:6b:d2:cd:26:ab:79:bc:aa:b1:45:c5:89:37:ca:
        9c:0f:6c:e7:bd:e7:69:6f:30:53:27:cb:e9:36:73:1f:
        a3:55:60:3b:83:4a:aa:bc:75:6d:be:ba:60:ec:33:08:
        ee:ce:e4:4c:ca:84:ca:ed:16:cc:8e:3f:59:7b:26:d5:
        1d:d7:8d:5f:b5:ee:c2:81:70:4b:79:29:02:b4:a6:7b:
        af:03:db:35:ab:49:35:46:6b:ec:b2:d3:92:68:1d:1e:
        b7:a7:2e:46:e2:26:6a:b3:ad:1b:4f:62:9c:1a:7d:0a:
        91:49:72:93:8a:f4:3c:65:f5:fe:5b:f1:10:4d:91:47:
        87:d3:cf:c3:ab:fd:fb:0f:9d:10:cf:81:ca:f8:83:a2:
        2d:f2:b4:95:a8:79:62:f1:32:90:7f:59:94:6e:bc:ec:
        38:dd:21:3a:32:38:1b:19:60:6d:1b:d8:60:3d:e4:9c:
        6f:94:4c:c3:c8:40:e8:5a:c5:ea:34:ee:e4:04:a3:fe:
        5d:54:94:fd:15:cf:55:df:d3:41:44:dd:59:33:92:53:
        70:69:c0:47:65:2a:a3:5c:07:b3:50:f4:11:ab:1d:0a:
        93:1d:2f:f1:0c:b6:6f:08:5f:65:4e:9a:b7:b0:1e:79:
        a2:e0:fb:23:97:79:78:ec:c4:d8:d7:94:a2:5f:63:6b
    Fingerprint (SHA-256):
        3D:89:67:6C:57:0F:3F:A6:42:F4:1C:1A:0F:01:66:26:67:37:EB:B2:C9:F3:D3:AA:43:BA:CD:4E:DB:BA:11:A2
    Fingerprint (SHA1):
        78:6F:5B:5D:B5:C7:3F:31:8A:5E:FA:02:B8:DD:EB:66:F8:41:5B:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10537: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10538: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10539: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 15901 at Tue May  2 16:09:35 UTC 2017
kill -USR1 15901
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 15901 killed at Tue May  2 16:09:35 UTC 2017
httpserv starting at Tue May  2 16:09:35 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O post -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 16:09:35 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 16070 >/dev/null 2>/dev/null
httpserv with PID 16070 found at Tue May  2 16:09:35 UTC 2017
httpserv with PID 16070 started at Tue May  2 16:09:35 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10540: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. OCSPEE12OCSPCA1 :
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10541: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10542: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
tstclnt -h localhost.localdomain -p 9600 -q -t 20
chains.sh: #10543: Test that OCSP server is reachable - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160856 (0x1dee5dd8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Validity:
            Not Before: Tue May 02 16:08:57 2017
            Not After : Mon May 02 16:08:57 2067
        Subject: "CN=OCSPRoot ROOT CA,O=OCSPRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    eb:e6:68:04:cc:ab:bf:8d:66:97:01:5a:9a:b7:0b:d5:
                    dd:bc:97:e6:8e:cb:9f:6f:a6:ec:3f:54:6b:bf:a7:a2:
                    6b:37:c8:68:28:8b:2f:91:57:33:ff:12:ac:c5:8b:c2:
                    39:77:da:a3:66:ef:31:a7:d1:48:64:f0:d1:bb:eb:29:
                    c4:00:23:7f:5b:f8:78:46:db:02:f5:ce:3e:93:a2:f4:
                    e6:8a:9b:1e:15:f3:c2:15:63:e8:95:88:72:37:68:02:
                    ac:27:b5:60:cb:ff:72:ad:c7:fa:18:dc:14:94:27:fc:
                    04:39:92:91:7d:37:c2:f4:e0:64:3b:15:f3:2b:aa:fa:
                    de:b9:20:85:80:df:4d:0b:0d:04:c9:f1:b3:45:50:db:
                    e7:4b:13:2d:6c:a2:21:51:24:23:3e:d8:26:67:b8:3b:
                    ef:69:07:0b:60:4d:48:c7:15:37:33:6a:d3:de:c5:f0:
                    f2:76:25:60:72:1a:12:f0:98:27:89:bf:46:43:f2:f3:
                    ef:3a:32:85:da:a0:49:87:33:4b:a2:f3:88:99:ab:41:
                    27:73:12:37:cd:7d:a5:5c:65:d9:b9:ee:83:a8:22:11:
                    5c:3f:67:bb:ba:0c:70:78:2a:94:85:77:53:07:3b:b1:
                    8d:3a:15:e3:52:44:35:20:89:7c:27:21:ce:bd:f8:6f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:dc:6b:d2:cd:26:ab:79:bc:aa:b1:45:c5:89:37:ca:
        9c:0f:6c:e7:bd:e7:69:6f:30:53:27:cb:e9:36:73:1f:
        a3:55:60:3b:83:4a:aa:bc:75:6d:be:ba:60:ec:33:08:
        ee:ce:e4:4c:ca:84:ca:ed:16:cc:8e:3f:59:7b:26:d5:
        1d:d7:8d:5f:b5:ee:c2:81:70:4b:79:29:02:b4:a6:7b:
        af:03:db:35:ab:49:35:46:6b:ec:b2:d3:92:68:1d:1e:
        b7:a7:2e:46:e2:26:6a:b3:ad:1b:4f:62:9c:1a:7d:0a:
        91:49:72:93:8a:f4:3c:65:f5:fe:5b:f1:10:4d:91:47:
        87:d3:cf:c3:ab:fd:fb:0f:9d:10:cf:81:ca:f8:83:a2:
        2d:f2:b4:95:a8:79:62:f1:32:90:7f:59:94:6e:bc:ec:
        38:dd:21:3a:32:38:1b:19:60:6d:1b:d8:60:3d:e4:9c:
        6f:94:4c:c3:c8:40:e8:5a:c5:ea:34:ee:e4:04:a3:fe:
        5d:54:94:fd:15:cf:55:df:d3:41:44:dd:59:33:92:53:
        70:69:c0:47:65:2a:a3:5c:07:b3:50:f4:11:ab:1d:0a:
        93:1d:2f:f1:0c:b6:6f:08:5f:65:4e:9a:b7:b0:1e:79:
        a2:e0:fb:23:97:79:78:ec:c4:d8:d7:94:a2:5f:63:6b
    Fingerprint (SHA-256):
        3D:89:67:6C:57:0F:3F:A6:42:F4:1C:1A:0F:01:66:26:67:37:EB:B2:C9:F3:D3:AA:43:BA:CD:4E:DB:BA:11:A2
    Fingerprint (SHA1):
        78:6F:5B:5D:B5:C7:3F:31:8A:5E:FA:02:B8:DD:EB:66:F8:41:5B:1A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=OCSPEE11 EE,O=OCSPEE11,C=US"
Certificate 2 Subject: "CN=OCSPCA1 Intermediate,O=OCSPCA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10544: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB  -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10545: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB    -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -p -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE11OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is good!
Returned value is 0, expected result is pass
chains.sh: #10546: Method: Verifying certificate(s)  OCSPEE11OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -p   -g leaf -h requireFreshInfo -m ocsp     - PASSED
trying to kill httpserv with PID 16070 at Tue May  2 16:09:36 UTC 2017
kill -USR1 16070
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 16070 killed at Tue May  2 16:09:36 UTC 2017
httpserv starting at Tue May  2 16:09:36 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O random -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 16:09:36 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 16317 >/dev/null 2>/dev/null
httpserv with PID 16317 found at Tue May  2 16:09:36 UTC 2017
httpserv with PID 16317 started at Tue May  2 16:09:36 UTC 2017
chains.sh: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp    
vfychain -d ../OCSPD/ClientDB -pp -vv   -g leaf -h requireFreshInfo -m ocsp     ../OCSPD/OCSPEE12OCSPCA1.der ../OCSPD/OCSPCA1OCSPRoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. OCSPRoot [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #10547: Verifying certificate(s)  OCSPEE12OCSPCA1.cert OCSPCA1OCSPRoot.cert with flags -d ../OCSPD/ClientDB -pp   -g leaf -h requireFreshInfo -m ocsp     - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #10548: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160857 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10549: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #10550: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #10551: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160858 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10552: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #10553: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #10554: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10555: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502160859 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10556: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10557: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502160860 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10558: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10559: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #10560: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10561: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10562: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502160861   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10563: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10564: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10565: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #10566: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #10567: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160858 (0x1dee5dda)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:09:39 2017
            Not After : Mon May 02 16:09:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:9f:30:b1:e1:e1:8c:7c:2e:e2:34:55:df:ff:75:9c:
                    83:06:c5:24:1e:88:27:7d:33:9e:05:b9:0d:e0:79:ee:
                    60:41:46:0d:a9:27:cf:95:f9:e7:bd:0e:7e:a7:78:e6:
                    06:48:10:91:8e:7b:44:8c:bd:74:82:be:a2:34:04:0d:
                    72:17:c6:c7:3f:fb:f5:5b:d0:79:a5:02:3a:da:09:88:
                    da:a2:1e:da:9d:3e:ce:70:ec:54:d8:b6:99:36:6a:3f:
                    68:28:0a:8a:bf:e6:4e:34:5f:b2:5a:0f:0a:28:4f:48:
                    20:0a:90:65:83:57:01:cc:d8:9d:b1:5f:1f:fb:20:9b:
                    4a:6c:db:3e:b4:02:b2:36:1d:0a:10:46:16:be:7a:17:
                    58:15:6d:0a:93:8d:93:e6:a5:74:09:26:01:f9:2f:16:
                    75:be:ad:a8:16:bc:5f:6d:64:da:8f:c8:a7:c8:cb:16:
                    0b:8b:44:af:06:ad:cd:37:ed:fc:7e:a6:47:ae:2c:64:
                    6c:83:80:9f:11:4c:e6:be:be:da:f6:85:fd:37:f0:2c:
                    35:49:ea:3f:e9:37:8a:94:ef:42:fc:28:27:03:28:55:
                    7c:dd:bf:a7:03:25:ea:89:9f:5b:c3:05:93:ee:8b:24:
                    99:68:2a:b9:fe:42:15:a8:0c:4e:28:8c:f7:64:fc:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:7c:cc:d7:69:3f:8f:31:0c:8d:c7:6d:0d:ab:73:24:
        4e:7d:a3:5a:a1:9c:4f:e3:24:cc:6b:d2:63:ca:77:de:
        95:4b:cf:17:50:3a:60:25:ff:d5:9b:6d:3f:5b:8a:b9:
        c8:0b:c1:0c:1a:6c:2a:ef:c6:b5:2b:6c:ac:d2:bf:ed:
        83:4f:51:bc:94:03:9c:5b:e2:73:9a:0e:a7:68:5f:cd:
        d6:39:47:07:a3:53:6f:44:6c:a5:c3:98:37:90:9b:7c:
        8f:ff:8b:69:18:a5:d5:17:1d:e3:48:9e:4a:3b:6c:6c:
        98:fb:6b:14:f5:83:59:07:5a:e6:63:77:b0:b7:ef:2a:
        1e:4e:ef:f3:b7:48:75:f3:ed:4d:44:e0:f9:28:2f:79:
        58:94:70:14:86:c7:97:13:9a:9b:7b:77:d7:a9:45:ec:
        bd:ea:d5:08:a9:d8:10:b0:1b:42:71:eb:8e:6f:54:9a:
        ba:a5:cf:72:21:b1:34:9f:4b:e8:00:08:37:1b:54:b2:
        a0:0d:cf:9f:b6:8d:8f:17:96:32:7f:79:18:46:3d:cb:
        4a:a3:2f:a0:70:f0:cc:93:99:1b:c4:00:ec:54:f6:1a:
        e6:06:ee:b5:c3:32:ea:8b:c0:fc:2f:7c:73:f0:47:1b:
        f1:67:3f:36:e5:1d:2b:33:e2:fc:b1:0b:22:fc:55:48
    Fingerprint (SHA-256):
        6C:A5:8A:E5:57:34:EF:ED:17:8F:64:8C:BB:EC:9D:74:C8:35:46:9F:7F:56:17:56:85:DD:58:4B:2F:5E:2D:B9
    Fingerprint (SHA1):
        2E:18:86:D5:34:BD:EE:E9:98:B7:62:68:71:10:44:B8:68:E1:EA:1C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10568: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160857 (0x1dee5dd9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:09:37 2017
            Not After : Mon May 02 16:09:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:bc:66:4b:41:56:8b:6f:47:56:91:8e:f1:33:93:92:
                    96:9f:f4:ee:28:8d:3d:07:01:48:89:54:07:4c:09:bc:
                    cd:41:96:92:f0:ba:37:44:5d:ff:1b:01:2c:f5:52:fd:
                    70:4a:fc:3d:9f:93:6b:41:11:67:c3:31:2a:64:41:26:
                    02:41:42:af:df:f6:79:a6:58:bd:b6:c5:ce:9d:e9:fb:
                    50:cd:1a:cd:61:08:a9:02:20:02:23:43:f2:06:9a:5e:
                    ca:cc:b2:46:b3:4a:3e:d8:09:46:28:ff:6e:a2:d6:43:
                    63:1f:69:6d:f2:ee:4f:a8:91:79:b6:45:79:6a:05:70:
                    45:96:e2:e7:ec:e6:95:40:de:d2:ca:f0:9e:c5:ad:14:
                    45:b3:a8:ba:fc:73:25:68:80:53:a0:0b:12:b5:aa:1f:
                    8d:fb:39:3e:ab:71:92:75:c6:5a:df:67:92:2e:ad:fb:
                    b7:cb:0c:27:b9:f1:4e:a9:03:b4:23:24:0f:78:c1:0a:
                    25:76:ea:32:aa:d8:0f:8b:29:7c:d1:75:16:67:8d:5e:
                    91:76:c2:74:d8:75:be:aa:56:bb:55:95:00:13:70:28:
                    d5:1b:fd:f7:b7:c0:1d:13:1b:8f:05:36:ea:cd:a1:67:
                    b3:71:c5:26:28:94:ce:36:e2:a3:75:18:0a:a4:db:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:a5:59:ce:24:f3:ba:89:e4:fa:58:12:78:94:1b:cd:
        e9:63:e0:9c:b2:21:40:ca:bf:b0:19:58:22:18:3c:db:
        7d:64:63:df:7e:3d:b3:74:fa:37:cc:4c:ba:ee:3b:04:
        6e:6c:f8:f9:2a:8e:2a:27:33:16:ae:e8:5b:2f:d3:c1:
        c5:50:39:e4:80:a8:69:2d:f4:e9:de:66:58:be:67:1a:
        1c:b8:9f:54:e6:6f:10:27:d7:27:48:c8:40:d1:ab:f6:
        d1:05:4a:e8:ff:8b:56:48:fc:b4:fb:9b:c3:c3:ad:a0:
        4c:14:a1:c8:72:a0:92:53:fb:a8:67:34:2a:e7:fe:a7:
        6b:bb:b5:b2:24:e3:6c:07:b9:73:df:02:c1:aa:d1:0a:
        c6:3a:8d:0b:23:1c:d2:a9:af:92:2b:8c:52:8f:6d:88:
        06:bc:b1:4f:03:c2:46:89:80:a7:ae:b6:a7:16:7d:a7:
        9b:4d:26:78:54:fd:04:31:95:03:f7:da:29:e4:83:59:
        37:c0:e5:04:c4:9c:cc:29:7a:85:db:f8:fc:ad:d3:f1:
        5a:a4:18:91:34:e1:f6:66:50:ac:40:8b:f2:e3:db:91:
        83:8a:be:59:2a:ab:27:b2:d3:99:2d:88:f6:3c:62:aa:
        fa:6e:e9:05:a3:f3:63:79:96:30:7f:1c:f0:db:bf:e8
    Fingerprint (SHA-256):
        4C:C1:60:97:C1:65:98:A5:A9:27:13:45:AC:FF:A0:39:88:D9:EA:C3:EB:CC:22:DC:CD:55:05:76:59:55:66:CB
    Fingerprint (SHA1):
        32:C3:40:3A:20:17:2B:04:06:99:E3:22:37:6F:7D:29:FF:DC:97:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10569: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10570: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #10571: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #10572: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160857 (0x1dee5dd9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:09:37 2017
            Not After : Mon May 02 16:09:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:bc:66:4b:41:56:8b:6f:47:56:91:8e:f1:33:93:92:
                    96:9f:f4:ee:28:8d:3d:07:01:48:89:54:07:4c:09:bc:
                    cd:41:96:92:f0:ba:37:44:5d:ff:1b:01:2c:f5:52:fd:
                    70:4a:fc:3d:9f:93:6b:41:11:67:c3:31:2a:64:41:26:
                    02:41:42:af:df:f6:79:a6:58:bd:b6:c5:ce:9d:e9:fb:
                    50:cd:1a:cd:61:08:a9:02:20:02:23:43:f2:06:9a:5e:
                    ca:cc:b2:46:b3:4a:3e:d8:09:46:28:ff:6e:a2:d6:43:
                    63:1f:69:6d:f2:ee:4f:a8:91:79:b6:45:79:6a:05:70:
                    45:96:e2:e7:ec:e6:95:40:de:d2:ca:f0:9e:c5:ad:14:
                    45:b3:a8:ba:fc:73:25:68:80:53:a0:0b:12:b5:aa:1f:
                    8d:fb:39:3e:ab:71:92:75:c6:5a:df:67:92:2e:ad:fb:
                    b7:cb:0c:27:b9:f1:4e:a9:03:b4:23:24:0f:78:c1:0a:
                    25:76:ea:32:aa:d8:0f:8b:29:7c:d1:75:16:67:8d:5e:
                    91:76:c2:74:d8:75:be:aa:56:bb:55:95:00:13:70:28:
                    d5:1b:fd:f7:b7:c0:1d:13:1b:8f:05:36:ea:cd:a1:67:
                    b3:71:c5:26:28:94:ce:36:e2:a3:75:18:0a:a4:db:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:a5:59:ce:24:f3:ba:89:e4:fa:58:12:78:94:1b:cd:
        e9:63:e0:9c:b2:21:40:ca:bf:b0:19:58:22:18:3c:db:
        7d:64:63:df:7e:3d:b3:74:fa:37:cc:4c:ba:ee:3b:04:
        6e:6c:f8:f9:2a:8e:2a:27:33:16:ae:e8:5b:2f:d3:c1:
        c5:50:39:e4:80:a8:69:2d:f4:e9:de:66:58:be:67:1a:
        1c:b8:9f:54:e6:6f:10:27:d7:27:48:c8:40:d1:ab:f6:
        d1:05:4a:e8:ff:8b:56:48:fc:b4:fb:9b:c3:c3:ad:a0:
        4c:14:a1:c8:72:a0:92:53:fb:a8:67:34:2a:e7:fe:a7:
        6b:bb:b5:b2:24:e3:6c:07:b9:73:df:02:c1:aa:d1:0a:
        c6:3a:8d:0b:23:1c:d2:a9:af:92:2b:8c:52:8f:6d:88:
        06:bc:b1:4f:03:c2:46:89:80:a7:ae:b6:a7:16:7d:a7:
        9b:4d:26:78:54:fd:04:31:95:03:f7:da:29:e4:83:59:
        37:c0:e5:04:c4:9c:cc:29:7a:85:db:f8:fc:ad:d3:f1:
        5a:a4:18:91:34:e1:f6:66:50:ac:40:8b:f2:e3:db:91:
        83:8a:be:59:2a:ab:27:b2:d3:99:2d:88:f6:3c:62:aa:
        fa:6e:e9:05:a3:f3:63:79:96:30:7f:1c:f0:db:bf:e8
    Fingerprint (SHA-256):
        4C:C1:60:97:C1:65:98:A5:A9:27:13:45:AC:FF:A0:39:88:D9:EA:C3:EB:CC:22:DC:CD:55:05:76:59:55:66:CB
    Fingerprint (SHA1):
        32:C3:40:3A:20:17:2B:04:06:99:E3:22:37:6F:7D:29:FF:DC:97:5C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10573: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160858 (0x1dee5dda)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:09:39 2017
            Not After : Mon May 02 16:09:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:9f:30:b1:e1:e1:8c:7c:2e:e2:34:55:df:ff:75:9c:
                    83:06:c5:24:1e:88:27:7d:33:9e:05:b9:0d:e0:79:ee:
                    60:41:46:0d:a9:27:cf:95:f9:e7:bd:0e:7e:a7:78:e6:
                    06:48:10:91:8e:7b:44:8c:bd:74:82:be:a2:34:04:0d:
                    72:17:c6:c7:3f:fb:f5:5b:d0:79:a5:02:3a:da:09:88:
                    da:a2:1e:da:9d:3e:ce:70:ec:54:d8:b6:99:36:6a:3f:
                    68:28:0a:8a:bf:e6:4e:34:5f:b2:5a:0f:0a:28:4f:48:
                    20:0a:90:65:83:57:01:cc:d8:9d:b1:5f:1f:fb:20:9b:
                    4a:6c:db:3e:b4:02:b2:36:1d:0a:10:46:16:be:7a:17:
                    58:15:6d:0a:93:8d:93:e6:a5:74:09:26:01:f9:2f:16:
                    75:be:ad:a8:16:bc:5f:6d:64:da:8f:c8:a7:c8:cb:16:
                    0b:8b:44:af:06:ad:cd:37:ed:fc:7e:a6:47:ae:2c:64:
                    6c:83:80:9f:11:4c:e6:be:be:da:f6:85:fd:37:f0:2c:
                    35:49:ea:3f:e9:37:8a:94:ef:42:fc:28:27:03:28:55:
                    7c:dd:bf:a7:03:25:ea:89:9f:5b:c3:05:93:ee:8b:24:
                    99:68:2a:b9:fe:42:15:a8:0c:4e:28:8c:f7:64:fc:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:7c:cc:d7:69:3f:8f:31:0c:8d:c7:6d:0d:ab:73:24:
        4e:7d:a3:5a:a1:9c:4f:e3:24:cc:6b:d2:63:ca:77:de:
        95:4b:cf:17:50:3a:60:25:ff:d5:9b:6d:3f:5b:8a:b9:
        c8:0b:c1:0c:1a:6c:2a:ef:c6:b5:2b:6c:ac:d2:bf:ed:
        83:4f:51:bc:94:03:9c:5b:e2:73:9a:0e:a7:68:5f:cd:
        d6:39:47:07:a3:53:6f:44:6c:a5:c3:98:37:90:9b:7c:
        8f:ff:8b:69:18:a5:d5:17:1d:e3:48:9e:4a:3b:6c:6c:
        98:fb:6b:14:f5:83:59:07:5a:e6:63:77:b0:b7:ef:2a:
        1e:4e:ef:f3:b7:48:75:f3:ed:4d:44:e0:f9:28:2f:79:
        58:94:70:14:86:c7:97:13:9a:9b:7b:77:d7:a9:45:ec:
        bd:ea:d5:08:a9:d8:10:b0:1b:42:71:eb:8e:6f:54:9a:
        ba:a5:cf:72:21:b1:34:9f:4b:e8:00:08:37:1b:54:b2:
        a0:0d:cf:9f:b6:8d:8f:17:96:32:7f:79:18:46:3d:cb:
        4a:a3:2f:a0:70:f0:cc:93:99:1b:c4:00:ec:54:f6:1a:
        e6:06:ee:b5:c3:32:ea:8b:c0:fc:2f:7c:73:f0:47:1b:
        f1:67:3f:36:e5:1d:2b:33:e2:fc:b1:0b:22:fc:55:48
    Fingerprint (SHA-256):
        6C:A5:8A:E5:57:34:EF:ED:17:8F:64:8C:BB:EC:9D:74:C8:35:46:9F:7F:56:17:56:85:DD:58:4B:2F:5E:2D:B9
    Fingerprint (SHA1):
        2E:18:86:D5:34:BD:EE:E9:98:B7:62:68:71:10:44:B8:68:E1:EA:1C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10574: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #10575: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #10576: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #10577: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10578: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #10579: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160858 (0x1dee5dda)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:09:39 2017
            Not After : Mon May 02 16:09:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:9f:30:b1:e1:e1:8c:7c:2e:e2:34:55:df:ff:75:9c:
                    83:06:c5:24:1e:88:27:7d:33:9e:05:b9:0d:e0:79:ee:
                    60:41:46:0d:a9:27:cf:95:f9:e7:bd:0e:7e:a7:78:e6:
                    06:48:10:91:8e:7b:44:8c:bd:74:82:be:a2:34:04:0d:
                    72:17:c6:c7:3f:fb:f5:5b:d0:79:a5:02:3a:da:09:88:
                    da:a2:1e:da:9d:3e:ce:70:ec:54:d8:b6:99:36:6a:3f:
                    68:28:0a:8a:bf:e6:4e:34:5f:b2:5a:0f:0a:28:4f:48:
                    20:0a:90:65:83:57:01:cc:d8:9d:b1:5f:1f:fb:20:9b:
                    4a:6c:db:3e:b4:02:b2:36:1d:0a:10:46:16:be:7a:17:
                    58:15:6d:0a:93:8d:93:e6:a5:74:09:26:01:f9:2f:16:
                    75:be:ad:a8:16:bc:5f:6d:64:da:8f:c8:a7:c8:cb:16:
                    0b:8b:44:af:06:ad:cd:37:ed:fc:7e:a6:47:ae:2c:64:
                    6c:83:80:9f:11:4c:e6:be:be:da:f6:85:fd:37:f0:2c:
                    35:49:ea:3f:e9:37:8a:94:ef:42:fc:28:27:03:28:55:
                    7c:dd:bf:a7:03:25:ea:89:9f:5b:c3:05:93:ee:8b:24:
                    99:68:2a:b9:fe:42:15:a8:0c:4e:28:8c:f7:64:fc:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:7c:cc:d7:69:3f:8f:31:0c:8d:c7:6d:0d:ab:73:24:
        4e:7d:a3:5a:a1:9c:4f:e3:24:cc:6b:d2:63:ca:77:de:
        95:4b:cf:17:50:3a:60:25:ff:d5:9b:6d:3f:5b:8a:b9:
        c8:0b:c1:0c:1a:6c:2a:ef:c6:b5:2b:6c:ac:d2:bf:ed:
        83:4f:51:bc:94:03:9c:5b:e2:73:9a:0e:a7:68:5f:cd:
        d6:39:47:07:a3:53:6f:44:6c:a5:c3:98:37:90:9b:7c:
        8f:ff:8b:69:18:a5:d5:17:1d:e3:48:9e:4a:3b:6c:6c:
        98:fb:6b:14:f5:83:59:07:5a:e6:63:77:b0:b7:ef:2a:
        1e:4e:ef:f3:b7:48:75:f3:ed:4d:44:e0:f9:28:2f:79:
        58:94:70:14:86:c7:97:13:9a:9b:7b:77:d7:a9:45:ec:
        bd:ea:d5:08:a9:d8:10:b0:1b:42:71:eb:8e:6f:54:9a:
        ba:a5:cf:72:21:b1:34:9f:4b:e8:00:08:37:1b:54:b2:
        a0:0d:cf:9f:b6:8d:8f:17:96:32:7f:79:18:46:3d:cb:
        4a:a3:2f:a0:70:f0:cc:93:99:1b:c4:00:ec:54:f6:1a:
        e6:06:ee:b5:c3:32:ea:8b:c0:fc:2f:7c:73:f0:47:1b:
        f1:67:3f:36:e5:1d:2b:33:e2:fc:b1:0b:22:fc:55:48
    Fingerprint (SHA-256):
        6C:A5:8A:E5:57:34:EF:ED:17:8F:64:8C:BB:EC:9D:74:C8:35:46:9F:7F:56:17:56:85:DD:58:4B:2F:5E:2D:B9
    Fingerprint (SHA1):
        2E:18:86:D5:34:BD:EE:E9:98:B7:62:68:71:10:44:B8:68:E1:EA:1C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10580: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160858 (0x1dee5dda)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:09:39 2017
            Not After : Mon May 02 16:09:39 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b5:9f:30:b1:e1:e1:8c:7c:2e:e2:34:55:df:ff:75:9c:
                    83:06:c5:24:1e:88:27:7d:33:9e:05:b9:0d:e0:79:ee:
                    60:41:46:0d:a9:27:cf:95:f9:e7:bd:0e:7e:a7:78:e6:
                    06:48:10:91:8e:7b:44:8c:bd:74:82:be:a2:34:04:0d:
                    72:17:c6:c7:3f:fb:f5:5b:d0:79:a5:02:3a:da:09:88:
                    da:a2:1e:da:9d:3e:ce:70:ec:54:d8:b6:99:36:6a:3f:
                    68:28:0a:8a:bf:e6:4e:34:5f:b2:5a:0f:0a:28:4f:48:
                    20:0a:90:65:83:57:01:cc:d8:9d:b1:5f:1f:fb:20:9b:
                    4a:6c:db:3e:b4:02:b2:36:1d:0a:10:46:16:be:7a:17:
                    58:15:6d:0a:93:8d:93:e6:a5:74:09:26:01:f9:2f:16:
                    75:be:ad:a8:16:bc:5f:6d:64:da:8f:c8:a7:c8:cb:16:
                    0b:8b:44:af:06:ad:cd:37:ed:fc:7e:a6:47:ae:2c:64:
                    6c:83:80:9f:11:4c:e6:be:be:da:f6:85:fd:37:f0:2c:
                    35:49:ea:3f:e9:37:8a:94:ef:42:fc:28:27:03:28:55:
                    7c:dd:bf:a7:03:25:ea:89:9f:5b:c3:05:93:ee:8b:24:
                    99:68:2a:b9:fe:42:15:a8:0c:4e:28:8c:f7:64:fc:67
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b1:7c:cc:d7:69:3f:8f:31:0c:8d:c7:6d:0d:ab:73:24:
        4e:7d:a3:5a:a1:9c:4f:e3:24:cc:6b:d2:63:ca:77:de:
        95:4b:cf:17:50:3a:60:25:ff:d5:9b:6d:3f:5b:8a:b9:
        c8:0b:c1:0c:1a:6c:2a:ef:c6:b5:2b:6c:ac:d2:bf:ed:
        83:4f:51:bc:94:03:9c:5b:e2:73:9a:0e:a7:68:5f:cd:
        d6:39:47:07:a3:53:6f:44:6c:a5:c3:98:37:90:9b:7c:
        8f:ff:8b:69:18:a5:d5:17:1d:e3:48:9e:4a:3b:6c:6c:
        98:fb:6b:14:f5:83:59:07:5a:e6:63:77:b0:b7:ef:2a:
        1e:4e:ef:f3:b7:48:75:f3:ed:4d:44:e0:f9:28:2f:79:
        58:94:70:14:86:c7:97:13:9a:9b:7b:77:d7:a9:45:ec:
        bd:ea:d5:08:a9:d8:10:b0:1b:42:71:eb:8e:6f:54:9a:
        ba:a5:cf:72:21:b1:34:9f:4b:e8:00:08:37:1b:54:b2:
        a0:0d:cf:9f:b6:8d:8f:17:96:32:7f:79:18:46:3d:cb:
        4a:a3:2f:a0:70:f0:cc:93:99:1b:c4:00:ec:54:f6:1a:
        e6:06:ee:b5:c3:32:ea:8b:c0:fc:2f:7c:73:f0:47:1b:
        f1:67:3f:36:e5:1d:2b:33:e2:fc:b1:0b:22:fc:55:48
    Fingerprint (SHA-256):
        6C:A5:8A:E5:57:34:EF:ED:17:8F:64:8C:BB:EC:9D:74:C8:35:46:9F:7F:56:17:56:85:DD:58:4B:2F:5E:2D:B9
    Fingerprint (SHA1):
        2E:18:86:D5:34:BD:EE:E9:98:B7:62:68:71:10:44:B8:68:E1:EA:1C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10581: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #10582: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #10583: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #10584: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #10585: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #10586: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160857 (0x1dee5dd9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:09:37 2017
            Not After : Mon May 02 16:09:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:bc:66:4b:41:56:8b:6f:47:56:91:8e:f1:33:93:92:
                    96:9f:f4:ee:28:8d:3d:07:01:48:89:54:07:4c:09:bc:
                    cd:41:96:92:f0:ba:37:44:5d:ff:1b:01:2c:f5:52:fd:
                    70:4a:fc:3d:9f:93:6b:41:11:67:c3:31:2a:64:41:26:
                    02:41:42:af:df:f6:79:a6:58:bd:b6:c5:ce:9d:e9:fb:
                    50:cd:1a:cd:61:08:a9:02:20:02:23:43:f2:06:9a:5e:
                    ca:cc:b2:46:b3:4a:3e:d8:09:46:28:ff:6e:a2:d6:43:
                    63:1f:69:6d:f2:ee:4f:a8:91:79:b6:45:79:6a:05:70:
                    45:96:e2:e7:ec:e6:95:40:de:d2:ca:f0:9e:c5:ad:14:
                    45:b3:a8:ba:fc:73:25:68:80:53:a0:0b:12:b5:aa:1f:
                    8d:fb:39:3e:ab:71:92:75:c6:5a:df:67:92:2e:ad:fb:
                    b7:cb:0c:27:b9:f1:4e:a9:03:b4:23:24:0f:78:c1:0a:
                    25:76:ea:32:aa:d8:0f:8b:29:7c:d1:75:16:67:8d:5e:
                    91:76:c2:74:d8:75:be:aa:56:bb:55:95:00:13:70:28:
                    d5:1b:fd:f7:b7:c0:1d:13:1b:8f:05:36:ea:cd:a1:67:
                    b3:71:c5:26:28:94:ce:36:e2:a3:75:18:0a:a4:db:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:a5:59:ce:24:f3:ba:89:e4:fa:58:12:78:94:1b:cd:
        e9:63:e0:9c:b2:21:40:ca:bf:b0:19:58:22:18:3c:db:
        7d:64:63:df:7e:3d:b3:74:fa:37:cc:4c:ba:ee:3b:04:
        6e:6c:f8:f9:2a:8e:2a:27:33:16:ae:e8:5b:2f:d3:c1:
        c5:50:39:e4:80:a8:69:2d:f4:e9:de:66:58:be:67:1a:
        1c:b8:9f:54:e6:6f:10:27:d7:27:48:c8:40:d1:ab:f6:
        d1:05:4a:e8:ff:8b:56:48:fc:b4:fb:9b:c3:c3:ad:a0:
        4c:14:a1:c8:72:a0:92:53:fb:a8:67:34:2a:e7:fe:a7:
        6b:bb:b5:b2:24:e3:6c:07:b9:73:df:02:c1:aa:d1:0a:
        c6:3a:8d:0b:23:1c:d2:a9:af:92:2b:8c:52:8f:6d:88:
        06:bc:b1:4f:03:c2:46:89:80:a7:ae:b6:a7:16:7d:a7:
        9b:4d:26:78:54:fd:04:31:95:03:f7:da:29:e4:83:59:
        37:c0:e5:04:c4:9c:cc:29:7a:85:db:f8:fc:ad:d3:f1:
        5a:a4:18:91:34:e1:f6:66:50:ac:40:8b:f2:e3:db:91:
        83:8a:be:59:2a:ab:27:b2:d3:99:2d:88:f6:3c:62:aa:
        fa:6e:e9:05:a3:f3:63:79:96:30:7f:1c:f0:db:bf:e8
    Fingerprint (SHA-256):
        4C:C1:60:97:C1:65:98:A5:A9:27:13:45:AC:FF:A0:39:88:D9:EA:C3:EB:CC:22:DC:CD:55:05:76:59:55:66:CB
    Fingerprint (SHA1):
        32:C3:40:3A:20:17:2B:04:06:99:E3:22:37:6F:7D:29:FF:DC:97:5C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10587: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160857 (0x1dee5dd9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:09:37 2017
            Not After : Mon May 02 16:09:37 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:bc:66:4b:41:56:8b:6f:47:56:91:8e:f1:33:93:92:
                    96:9f:f4:ee:28:8d:3d:07:01:48:89:54:07:4c:09:bc:
                    cd:41:96:92:f0:ba:37:44:5d:ff:1b:01:2c:f5:52:fd:
                    70:4a:fc:3d:9f:93:6b:41:11:67:c3:31:2a:64:41:26:
                    02:41:42:af:df:f6:79:a6:58:bd:b6:c5:ce:9d:e9:fb:
                    50:cd:1a:cd:61:08:a9:02:20:02:23:43:f2:06:9a:5e:
                    ca:cc:b2:46:b3:4a:3e:d8:09:46:28:ff:6e:a2:d6:43:
                    63:1f:69:6d:f2:ee:4f:a8:91:79:b6:45:79:6a:05:70:
                    45:96:e2:e7:ec:e6:95:40:de:d2:ca:f0:9e:c5:ad:14:
                    45:b3:a8:ba:fc:73:25:68:80:53:a0:0b:12:b5:aa:1f:
                    8d:fb:39:3e:ab:71:92:75:c6:5a:df:67:92:2e:ad:fb:
                    b7:cb:0c:27:b9:f1:4e:a9:03:b4:23:24:0f:78:c1:0a:
                    25:76:ea:32:aa:d8:0f:8b:29:7c:d1:75:16:67:8d:5e:
                    91:76:c2:74:d8:75:be:aa:56:bb:55:95:00:13:70:28:
                    d5:1b:fd:f7:b7:c0:1d:13:1b:8f:05:36:ea:cd:a1:67:
                    b3:71:c5:26:28:94:ce:36:e2:a3:75:18:0a:a4:db:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:a5:59:ce:24:f3:ba:89:e4:fa:58:12:78:94:1b:cd:
        e9:63:e0:9c:b2:21:40:ca:bf:b0:19:58:22:18:3c:db:
        7d:64:63:df:7e:3d:b3:74:fa:37:cc:4c:ba:ee:3b:04:
        6e:6c:f8:f9:2a:8e:2a:27:33:16:ae:e8:5b:2f:d3:c1:
        c5:50:39:e4:80:a8:69:2d:f4:e9:de:66:58:be:67:1a:
        1c:b8:9f:54:e6:6f:10:27:d7:27:48:c8:40:d1:ab:f6:
        d1:05:4a:e8:ff:8b:56:48:fc:b4:fb:9b:c3:c3:ad:a0:
        4c:14:a1:c8:72:a0:92:53:fb:a8:67:34:2a:e7:fe:a7:
        6b:bb:b5:b2:24:e3:6c:07:b9:73:df:02:c1:aa:d1:0a:
        c6:3a:8d:0b:23:1c:d2:a9:af:92:2b:8c:52:8f:6d:88:
        06:bc:b1:4f:03:c2:46:89:80:a7:ae:b6:a7:16:7d:a7:
        9b:4d:26:78:54:fd:04:31:95:03:f7:da:29:e4:83:59:
        37:c0:e5:04:c4:9c:cc:29:7a:85:db:f8:fc:ad:d3:f1:
        5a:a4:18:91:34:e1:f6:66:50:ac:40:8b:f2:e3:db:91:
        83:8a:be:59:2a:ab:27:b2:d3:99:2d:88:f6:3c:62:aa:
        fa:6e:e9:05:a3:f3:63:79:96:30:7f:1c:f0:db:bf:e8
    Fingerprint (SHA-256):
        4C:C1:60:97:C1:65:98:A5:A9:27:13:45:AC:FF:A0:39:88:D9:EA:C3:EB:CC:22:DC:CD:55:05:76:59:55:66:CB
    Fingerprint (SHA1):
        32:C3:40:3A:20:17:2B:04:06:99:E3:22:37:6F:7D:29:FF:DC:97:5C
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #10588: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #10589: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160862 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10590: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #10591: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #10592: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160863 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10593: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #10594: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #10595: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160864 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10596: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #10597: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #10598: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160865 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10599: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #10600: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #10601: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160866 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10602: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #10603: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #10604: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160867 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10605: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #10606: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #10607: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160868 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10608: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #10609: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #10610: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160869 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10611: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #10612: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #10613: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160870 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10614: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #10615: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #10616: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10617: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502160871 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10618: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10619: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502160872 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10620: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10621: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502160873 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10622: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10623: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #10624: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #10625: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10626: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502160874 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10627: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10628: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502160875 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10629: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10630: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502160876 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10631: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10632: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #10633: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #10634: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10635: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502160877 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10636: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10637: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502160878 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10638: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10639: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502160879 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10640: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10641: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #10642: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #10643: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10644: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502160880 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10645: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10646: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502160881 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10647: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10648: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502160882 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10649: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10650: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #10651: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10652: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10653: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502160883   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10654: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10655: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #10656: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10657: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502160884   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10658: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10659: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160862 (0x1dee5dde)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 16:09:49 2017
            Not After : Mon May 02 16:09:49 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:94:fb:ce:4c:73:c2:0f:85:18:37:47:ec:23:5e:0b:
                    c2:49:48:c3:ce:b2:41:af:2a:1e:cc:2e:87:ea:d7:94:
                    b4:a8:78:19:ad:91:39:6d:a0:7a:f7:87:0a:bf:6d:ca:
                    bc:f7:65:ec:bf:35:d4:92:d1:e8:4f:b0:d5:1d:c4:23:
                    f9:99:5b:4e:89:82:82:ae:1f:ea:d4:ec:05:bc:b8:12:
                    dd:90:fd:87:78:7b:b7:f1:12:cb:f7:69:6d:3f:94:3f:
                    e2:d3:27:47:2b:75:81:1c:39:7b:07:ee:3f:49:16:6f:
                    73:0f:dd:71:2f:00:b5:68:1e:36:db:3b:a6:83:9d:50:
                    ff:c5:aa:33:19:dd:91:ec:4e:1d:7f:a7:13:22:dd:78:
                    c5:82:61:f4:23:18:01:5e:4f:2b:bd:8a:f8:8d:36:44:
                    f8:41:0f:8f:91:4f:dd:99:af:9d:e1:1d:20:d7:2d:2e:
                    a7:ff:77:17:ea:f3:10:74:cd:27:c5:e6:4d:56:bc:14:
                    2d:b2:72:9c:a6:26:b6:4f:69:74:dd:90:a2:31:34:39:
                    11:24:ee:c2:16:e2:5a:81:54:32:eb:52:2a:67:b4:27:
                    12:9f:9f:3d:28:05:09:c0:de:24:0b:0a:93:65:5c:19:
                    bf:87:2f:66:e7:c5:38:ca:11:65:41:e2:7c:c0:59:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8f:5e:ea:a0:e5:b4:7e:ab:c9:3e:5e:7a:b9:41:5f:72:
        7c:b0:1a:0c:c8:e3:f5:37:14:05:16:ca:bf:fa:20:5c:
        b6:5e:8f:08:92:6f:ee:11:8c:1b:97:39:18:6e:7c:cd:
        1e:21:91:88:31:26:a4:a3:b8:4b:ec:9c:28:3b:8d:ea:
        19:50:72:d8:8f:b4:01:27:0a:38:87:1b:07:74:f2:0b:
        14:aa:2b:8b:c7:cd:d5:68:ca:4a:3e:85:e9:e5:16:c5:
        fd:98:a5:86:be:f5:4a:09:e9:fe:8c:da:3a:e5:df:4e:
        47:a7:02:15:8d:f2:ab:a1:1b:be:af:9e:cc:0d:53:ba:
        c6:10:e2:b7:73:c3:49:8c:39:83:d4:18:03:90:2e:d4:
        ea:83:c4:aa:c4:af:57:34:08:d0:4e:74:fe:14:1d:35:
        30:a6:91:3e:c5:20:60:cc:a1:70:e6:a7:2c:31:88:a6:
        ee:51:a1:5b:7f:0e:b3:5d:13:06:3f:48:c4:e9:cf:f2:
        bf:93:e1:18:a6:67:85:c8:b8:e0:44:36:c6:0b:93:af:
        b9:b6:ee:71:5b:2f:ca:31:c2:c8:0a:54:9b:8d:db:d0:
        35:24:63:64:1d:d7:db:f8:e4:33:b3:c4:4e:a1:04:57:
        50:18:91:55:4b:bf:62:29:d4:d4:7d:99:9f:68:26:9c
    Fingerprint (SHA-256):
        93:AC:38:4B:E9:6F:5C:F5:8A:B9:89:B3:D4:AE:20:A3:21:91:D2:7C:BA:E9:AC:24:F1:A2:43:A7:B5:59:D6:38
    Fingerprint (SHA1):
        9C:55:64:8F:14:47:96:12:33:96:9C:4B:BC:A6:7B:73:BF:52:C0:5E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10660: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160863 (0x1dee5ddf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 16:09:50 2017
            Not After : Mon May 02 16:09:50 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:7c:9a:49:99:f5:0d:23:4b:65:96:2c:b8:f7:5e:56:
                    3b:1d:0e:aa:32:f6:38:ce:ba:45:87:f5:5e:a4:78:8b:
                    ac:14:02:b3:27:2a:0c:92:ad:7f:8a:a2:24:c1:bd:14:
                    46:75:cf:2a:75:20:46:a7:2f:af:b8:e9:92:1e:d5:86:
                    f9:16:cf:48:d7:6b:d4:63:4e:18:3a:df:03:66:fc:3f:
                    fc:99:ba:ae:b0:c5:2e:ba:6c:c3:ca:7a:8f:ec:d5:59:
                    d2:5c:fe:d3:75:c3:46:85:b4:07:42:8c:f8:c4:43:8a:
                    b5:89:17:3c:10:5a:21:bd:ff:b0:c7:f9:43:6e:74:23:
                    c2:d3:a7:86:6c:e3:b3:cc:14:aa:52:e1:cb:77:f0:4a:
                    6b:b1:8e:00:c7:a6:ee:52:0c:29:6a:9b:b8:01:ac:0e:
                    be:f4:8c:66:3b:1f:0a:de:0b:4b:de:c0:95:3a:b6:cc:
                    0c:44:b3:e5:e6:50:98:15:1f:f4:8c:88:5a:20:7f:33:
                    58:33:90:30:2b:4b:78:86:df:41:5c:29:33:15:10:bc:
                    a8:f3:53:98:10:26:29:79:84:fc:15:56:e6:a1:c4:ff:
                    71:7a:df:d2:28:a7:1d:e0:8e:fa:a8:68:0e:f1:17:4a:
                    6e:80:49:6e:08:a0:49:a1:f9:c1:d9:d4:80:ef:52:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a6:14:5b:10:86:23:7c:5d:ed:9f:66:c3:3c:aa:40:05:
        d0:f0:2e:dd:e1:7c:ee:ed:ed:a5:31:39:10:3e:f4:c2:
        fa:a0:1c:fd:12:4b:76:83:a7:f8:d4:77:cf:58:3f:77:
        c9:29:85:af:4d:56:4d:83:52:38:3c:3e:e6:50:ae:b4:
        b4:2e:d4:80:61:c0:cd:b3:32:ce:1d:d4:f2:d9:d2:9d:
        2b:ac:e7:99:f0:ae:90:20:19:13:b1:3e:04:0a:a3:ec:
        46:3a:bb:7f:36:1f:f7:58:46:76:0f:91:8f:4f:ff:93:
        ec:c7:82:c3:0e:5a:c4:ea:29:6d:60:67:27:41:5c:79:
        92:4c:67:15:39:c2:b9:47:72:d5:e3:3c:2c:84:40:32:
        b5:03:e8:5d:ab:a4:3c:7b:df:48:73:8f:94:e1:15:2c:
        b2:5e:51:51:29:1d:55:cb:f5:e7:de:93:9c:88:d3:1b:
        42:b8:21:d7:c5:78:f0:32:e1:41:b1:15:38:92:ae:55:
        fb:32:73:d5:13:77:f2:ff:c1:12:ce:49:7b:a4:41:85:
        9e:04:40:e8:b7:16:d7:2f:91:47:b1:97:c0:a9:a4:5c:
        77:cd:cf:33:55:1f:12:b7:68:16:7d:b0:b0:96:5e:a1:
        30:29:e5:83:d4:d3:f1:ec:97:68:33:0d:08:43:2f:39
    Fingerprint (SHA-256):
        34:C3:8B:49:BF:8C:08:AE:09:BA:66:01:83:D4:A8:BF:04:FE:4E:B8:35:E6:A7:F2:2E:FC:B1:4C:49:9B:D3:30
    Fingerprint (SHA1):
        1E:C6:87:46:6A:FA:28:8C:54:00:90:FA:F6:3A:D6:4A:DD:B0:EA:77
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10661: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160864 (0x1dee5de0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 16:09:51 2017
            Not After : Mon May 02 16:09:51 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:d4:da:12:3b:09:c4:bc:a6:84:ff:32:4f:42:da:82:
                    00:4b:03:b3:dd:70:4e:4c:2c:74:39:cb:94:2b:c8:4a:
                    30:ab:2e:c6:95:c5:08:d0:d4:d9:9f:ef:9a:8e:cd:0f:
                    3d:d6:0d:bf:93:e9:4a:cd:fa:2a:42:e2:97:ef:17:59:
                    f5:b6:26:bb:2e:83:bf:90:72:10:be:21:bf:04:bc:72:
                    6d:68:96:4b:66:9b:db:3a:f6:69:6c:97:e7:17:76:c8:
                    67:64:c0:bc:ac:35:fe:f1:21:ef:7c:e6:3d:70:be:1f:
                    6f:93:15:01:89:b9:f2:d5:1f:71:f2:6d:16:86:bd:34:
                    81:8e:c2:42:ac:c2:af:45:bf:fd:5a:c1:4c:b7:99:68:
                    30:fe:dc:23:b6:5a:32:5c:f8:d7:c8:7e:fb:30:b6:4f:
                    98:44:fd:eb:b3:89:5e:10:e9:4d:15:c9:31:78:21:a1:
                    e5:39:ae:80:23:4f:bf:ed:fd:8c:c9:52:3f:40:01:f3:
                    8b:b4:4d:91:a6:f6:87:17:fd:19:ca:b6:0c:23:a9:d8:
                    4d:9a:71:c6:8e:22:ba:23:bc:e3:92:e0:76:f3:a7:b9:
                    15:86:6d:ad:ae:4d:b3:3c:40:b1:3a:88:e6:8b:1e:00:
                    ed:9b:3f:bd:00:45:53:7c:6f:b9:52:88:bb:bc:48:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        40:b9:76:22:51:ba:ca:2f:f9:6f:3a:5d:f5:65:49:56:
        65:ce:83:84:48:a8:cc:7e:a0:66:46:56:13:dd:38:a3:
        56:9d:10:55:f5:2b:1f:30:0a:2e:c5:da:bf:97:62:17:
        44:cb:12:c1:37:d2:c1:6d:0e:20:70:1c:51:72:4a:00:
        dd:21:f4:44:fe:03:ad:f6:a3:02:c6:af:6d:1b:3c:43:
        ef:77:12:de:aa:ce:67:3e:7b:bb:eb:f3:f0:63:2c:02:
        d3:b3:11:2d:e6:84:eb:23:fd:0a:e0:51:58:e6:66:98:
        54:8a:1b:69:2b:62:29:2a:60:a3:14:2f:ee:71:87:8a:
        ad:a7:5b:d9:78:e7:ed:b9:4f:06:e2:55:7c:c4:52:76:
        64:6c:75:e4:25:f1:cf:ac:03:81:d3:67:9e:c2:53:bf:
        3a:66:38:68:27:e5:1f:62:33:1a:1a:9a:d7:08:31:54:
        c0:2f:27:73:1f:d1:fb:8b:b6:ef:46:71:76:fa:f4:f0:
        fc:c0:28:3c:88:e7:e8:65:7e:57:d0:be:c8:a9:3b:3a:
        8c:46:33:17:6e:9d:c0:fd:2f:7b:5d:70:8e:64:18:e2:
        8f:9f:77:6b:67:71:64:6a:52:57:70:65:30:bd:2d:b1:
        ad:87:eb:f9:33:f3:fc:20:e5:e0:93:c6:cb:90:1a:91
    Fingerprint (SHA-256):
        F1:F8:9A:D6:E3:C5:26:D4:73:8D:07:49:92:E7:D7:BE:8B:A5:E5:20:66:D0:F6:03:C2:B2:57:3A:7E:88:A3:0A
    Fingerprint (SHA1):
        23:42:98:A4:3B:D6:FA:EF:61:D7:E4:7F:37:BE:5C:B6:DC:BB:BE:57
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #10662: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160865 (0x1dee5de1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 16:09:53 2017
            Not After : Mon May 02 16:09:53 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e5:e9:5b:1d:51:36:86:b5:32:cd:54:96:15:49:9c:fd:
                    03:62:be:54:1a:22:de:35:3f:d6:79:c9:53:20:a8:74:
                    30:07:df:7d:0d:78:9e:2c:cd:57:00:4e:e7:18:0a:45:
                    02:bd:7e:f2:8d:03:67:3e:82:8f:fc:f2:f6:1d:e3:1f:
                    f8:a8:3e:dc:70:c8:44:65:11:b4:c6:6a:42:a8:aa:ea:
                    b8:5c:8e:96:52:e4:04:71:fd:41:21:ef:36:62:41:fb:
                    42:f9:84:b4:5e:0d:07:54:54:54:2b:1c:b0:fd:b1:3b:
                    22:a3:de:54:42:56:4e:42:3f:72:fb:66:91:86:32:14:
                    f7:2f:f7:d7:9a:a2:29:e7:7b:ca:b0:d5:bf:71:55:04:
                    e2:41:5c:7c:07:34:cc:f7:f1:d2:d0:ab:c7:fb:60:71:
                    a3:6c:fc:55:2c:9b:34:7c:55:cd:7c:63:58:12:69:11:
                    ee:8d:69:d5:9f:43:03:8b:c6:4b:90:4a:7a:3c:ae:75:
                    c2:0a:55:06:a7:0c:f0:74:60:1d:71:a1:3a:be:da:ed:
                    46:cf:76:eb:ad:fe:bd:37:52:d3:08:34:0a:bf:75:ba:
                    ad:18:65:fa:7f:e3:eb:dc:cf:ff:6f:44:ea:36:d5:f5:
                    90:2f:2a:5c:e3:fc:d8:af:77:4d:20:3c:5c:dc:e4:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1a:36:6f:94:d9:b9:e6:31:34:28:fc:83:9f:a0:a1:0c:
        19:4e:0c:f3:6f:f5:42:78:f9:41:73:c1:e0:71:cd:2b:
        55:97:67:8d:fb:a7:3d:d8:b7:ad:26:d4:bd:72:73:3b:
        d2:27:12:96:4a:56:82:28:9b:8b:6a:f6:6d:dc:b3:83:
        6d:08:3b:65:b7:9a:be:c0:f5:ea:96:61:c7:34:b7:89:
        a1:b8:05:1e:fb:5f:a7:6d:fb:ff:df:3d:12:09:2e:ca:
        fa:5c:00:15:0c:86:85:80:16:37:31:6b:6d:42:18:62:
        2d:79:fd:c8:b8:ec:ef:a0:a2:76:09:c2:d9:c7:0a:4c:
        a2:f1:dd:e8:91:4a:d8:0e:09:93:a0:fb:9a:a6:4a:4d:
        28:81:44:32:19:82:80:0f:c4:c9:39:ad:c3:89:41:7d:
        fd:3f:d6:72:e7:f3:28:e2:83:0a:df:56:ee:71:0c:68:
        e3:9b:42:79:a7:41:a9:da:2e:5c:66:98:78:52:8a:f7:
        34:30:ba:3d:00:28:8c:c7:79:27:a8:a4:ec:18:ed:72:
        ec:d9:fc:52:46:a9:e0:79:e1:0a:b4:2d:6c:e8:28:01:
        62:62:47:09:8b:14:9e:27:89:ee:c7:3d:3b:cd:2d:d6:
        5f:a4:aa:90:d7:11:ab:fd:b6:a7:e1:d8:f8:14:f2:72
    Fingerprint (SHA-256):
        9F:CC:1A:BD:2B:2B:AB:1F:BA:35:CC:6E:CD:10:BF:DD:59:88:3E:CF:BB:2A:71:FA:B2:60:03:EF:DF:1C:3A:54
    Fingerprint (SHA1):
        C9:65:54:58:B5:A5:06:84:07:D1:D9:8B:90:1D:39:39:85:48:8A:29
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10663: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160866 (0x1dee5de2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 16:09:54 2017
            Not After : Mon May 02 16:09:54 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:46:6f:cc:72:a6:fe:d8:b5:d4:84:53:d1:51:42:19:
                    0a:b4:5c:c5:e3:ea:a9:79:54:92:9d:fb:ae:a1:dd:16:
                    27:6a:6d:a8:eb:8a:06:ea:2d:e5:98:6f:d6:e0:c5:9f:
                    c7:a4:e7:6e:05:10:96:db:4c:b0:f7:46:45:96:14:93:
                    1b:85:07:cf:65:f5:c4:61:58:79:cc:6f:52:28:5b:e9:
                    89:ac:f7:77:60:79:9f:de:79:1b:05:c3:7b:57:81:05:
                    c6:49:f8:28:ca:38:6a:31:e4:cb:01:66:1c:a2:e3:76:
                    0c:95:7c:ab:28:d5:d7:bf:c0:f8:99:87:f3:4d:8b:ec:
                    a3:2d:b5:c1:9a:9d:e0:b5:e5:73:68:0a:31:14:48:01:
                    a3:69:f3:79:42:62:74:cc:64:f9:f2:30:4b:3c:4a:e4:
                    81:48:2d:80:54:3f:4c:6e:14:20:c2:b5:d2:a2:40:dc:
                    16:0c:46:32:ee:fe:b8:a7:e1:e6:b0:d3:ee:47:94:99:
                    8f:f5:a6:8f:1c:84:e6:10:93:c8:4c:d6:2e:8e:ce:7d:
                    8d:26:3e:83:c5:98:25:08:25:5f:bd:07:87:8f:a2:1b:
                    e8:98:49:de:65:6d:d4:c8:bb:25:07:ef:50:5e:39:f4:
                    88:c7:b1:2f:33:8e:2d:ba:72:47:0e:3b:81:c2:98:9d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2f:c8:b3:44:55:5f:81:6e:28:49:5a:9c:8a:4b:39:97:
        bc:89:a9:f8:ac:14:6b:78:83:34:01:20:db:90:cd:49:
        b7:5d:84:db:76:93:b0:32:a1:ec:ff:3b:de:87:e6:4c:
        0e:ea:e5:be:51:d3:2f:ad:53:fc:20:48:7d:3e:38:33:
        f0:e8:11:00:eb:b0:90:12:ec:b5:9c:8c:bc:1a:53:c5:
        ad:cb:66:a7:67:d1:af:a1:1e:d2:2d:86:2b:f7:b5:da:
        8d:08:9d:96:0f:0f:bd:21:5b:bd:45:2e:2d:63:e5:0c:
        9c:03:a1:df:83:b8:38:be:8d:4a:b2:b6:8a:26:17:cb:
        4f:9e:de:97:50:af:bc:01:81:65:5a:88:24:70:48:7f:
        f5:28:d5:c1:47:ce:09:b1:42:bd:4f:25:34:02:df:40:
        af:59:9d:c4:e6:95:cb:91:e4:e6:6d:e5:d3:b5:6e:36:
        3c:34:8e:1d:70:3c:a0:e5:e5:58:21:d1:7f:fa:35:00:
        4e:2a:92:ab:4f:91:c5:29:a6:b2:f5:9a:27:88:eb:e4:
        ac:28:28:97:25:83:b2:f9:90:2c:5e:78:1e:ec:22:b9:
        22:87:89:40:c7:7d:eb:0c:0f:25:d1:2d:99:d8:cc:66:
        a2:bd:44:66:d4:b2:86:29:6b:80:63:7a:f6:f4:e0:ba
    Fingerprint (SHA-256):
        5A:B1:5F:13:C8:F7:72:37:F0:D8:FA:B6:D1:99:A4:3B:57:FE:6C:56:94:2A:4D:5B:27:78:94:EA:AF:CE:5B:95
    Fingerprint (SHA1):
        A9:F0:DE:76:2E:A2:9E:0A:BB:84:07:F6:1B:5A:B6:A1:DC:70:82:E7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10664: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160867 (0x1dee5de3)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 16:09:56 2017
            Not After : Mon May 02 16:09:56 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:cc:c6:22:d8:4c:e9:f9:4a:c8:b1:62:0a:f8:16:ff:
                    d9:a8:6e:9c:90:05:a2:f7:b0:d8:b0:83:e6:de:63:46:
                    31:5b:49:45:e2:36:d1:15:7a:bd:58:d2:05:63:1b:a2:
                    35:2a:b3:0b:59:c2:0d:f5:d2:89:b3:ef:56:49:e6:5a:
                    5c:af:a5:0e:49:5a:26:2d:13:29:7b:d4:b9:0b:39:50:
                    8b:82:f5:37:bd:60:8b:ed:2d:e6:78:ab:ab:57:a2:22:
                    e8:92:01:c7:1f:9d:12:59:7c:aa:15:ac:21:f9:3c:91:
                    36:92:e7:b1:f0:90:15:56:9d:7e:c7:ae:16:24:47:60:
                    c4:40:84:fd:4f:3b:9e:87:77:bd:a2:83:07:2e:43:70:
                    4d:b1:8b:42:d9:fe:0b:80:ec:4a:82:0f:2f:8c:f2:f6:
                    57:a1:8c:f1:30:1f:3f:fa:94:b8:17:fb:41:8d:4b:f7:
                    ba:3a:0a:35:81:82:e3:af:0d:6a:32:5f:e0:09:ae:ed:
                    62:12:93:e0:8e:9e:b8:18:6d:15:56:db:4c:6e:ad:ef:
                    eb:31:95:46:51:62:35:09:59:6b:e0:e2:12:df:d8:3c:
                    85:57:2e:96:29:bb:90:55:27:b8:ea:ba:39:33:65:e9:
                    a3:ec:f1:4c:b0:fb:5f:eb:01:f3:8f:6d:d6:b6:dd:6d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6e:60:0e:35:87:65:c7:e7:2e:62:d0:f2:83:b6:58:e5:
        5c:b1:14:bb:b8:f0:f5:9b:48:26:6c:de:90:e7:af:44:
        a8:2b:e4:05:24:df:2f:1f:89:b1:88:60:00:94:d6:30:
        82:9f:5f:2b:c5:7a:4a:f8:de:40:71:9c:14:94:e8:62:
        89:7c:49:26:f5:72:30:d7:b4:d3:99:c5:f2:f1:02:a0:
        71:aa:d3:71:35:0c:b9:ad:67:ce:77:fd:ad:16:f9:74:
        07:c0:ae:10:c2:1b:ea:66:c8:19:b5:f8:b1:02:ad:35:
        9f:fb:4b:49:b5:9c:9e:1f:49:91:f9:d1:62:20:6d:22:
        f3:6d:e2:e5:21:36:68:62:94:b7:63:bc:20:80:95:2a:
        e6:d4:6b:27:e8:44:77:07:03:ff:47:7e:7b:d2:30:63:
        c2:ee:d4:c9:91:de:a9:b2:3a:14:57:f9:ef:49:f1:31:
        f9:42:77:c8:af:e5:15:a3:fa:c5:57:25:0f:f3:c9:27:
        f3:1a:40:c0:94:9e:07:b1:eb:3f:d0:27:34:40:63:6f:
        5c:0b:f4:2e:61:46:85:64:5b:ea:04:a9:58:a0:4e:74:
        73:d4:03:9f:de:05:8d:6e:dd:37:4e:2b:d3:5e:61:4b:
        36:4b:99:2b:f0:b7:78:d6:81:11:00:1f:fc:f5:55:78
    Fingerprint (SHA-256):
        2B:F4:D1:73:BA:E1:52:97:32:59:15:E8:C5:8E:18:F2:B2:BF:BC:97:BE:B1:FB:B0:5D:42:3A:96:8A:9E:73:2C
    Fingerprint (SHA1):
        7A:D3:6B:0B:2B:47:F9:63:3D:6C:3F:64:18:9E:62:4D:1F:E8:97:FA
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #10665: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160868 (0x1dee5de4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 16:09:58 2017
            Not After : Mon May 02 16:09:58 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a1:4a:66:63:e5:80:33:db:15:47:9a:76:68:06:cb:
                    4c:c1:02:eb:87:1b:cc:37:f3:cb:17:33:8c:16:9d:a2:
                    f5:a7:b6:9a:8b:a6:fa:d8:f1:0c:a9:50:60:45:b9:51:
                    81:7a:cd:c1:b1:1f:87:1b:33:fa:aa:1b:26:c4:8f:c6:
                    ac:24:2b:e5:ec:b7:cb:0a:16:00:a7:fe:0d:dd:33:a5:
                    6d:5a:5e:fd:12:77:3f:c8:d9:8a:c7:49:e6:28:29:d4:
                    4d:7d:b5:22:d1:ec:ff:5b:42:2c:77:ef:11:0a:3c:1d:
                    64:b6:98:1d:1f:e7:59:0f:60:78:13:8e:12:d6:98:32:
                    84:67:53:b3:db:b4:d6:c1:56:f7:d2:0b:86:c1:1c:f0:
                    36:fa:91:74:bc:26:47:fb:a9:a2:4e:ae:ee:eb:61:e2:
                    09:b5:84:52:b0:9e:eb:0d:de:37:6c:2d:db:08:08:81:
                    67:ac:92:52:9f:4a:e5:f9:48:09:97:27:7a:35:4d:14:
                    49:b1:f6:62:4c:8b:b3:8f:e3:40:a0:68:41:3e:ca:e7:
                    bb:99:c4:82:e1:ff:9b:75:62:0e:f1:fc:d2:41:b5:23:
                    42:46:d9:4f:79:97:98:48:3f:4e:5d:82:24:bb:45:14:
                    7f:3f:6e:5d:3c:c5:86:91:f5:f5:85:8a:29:59:bf:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:07:70:b0:da:83:12:79:f6:25:62:d7:ab:31:e0:7c:
        ee:59:a9:4d:85:df:6e:a0:f8:6a:08:1b:4f:04:3a:54:
        80:7f:9f:a0:a1:ea:54:6c:dd:4b:dc:06:d0:32:b9:b1:
        8a:17:60:8d:86:1e:39:cb:c5:55:bc:1c:50:c0:17:66:
        7f:7d:7d:44:3e:05:22:4b:ff:a9:d7:42:9e:b4:0f:3f:
        e8:84:bd:f3:26:d9:22:20:ee:c0:d5:0c:8f:57:d9:50:
        be:10:e8:87:30:dd:90:52:b2:33:60:42:0e:6a:46:87:
        40:91:ce:ee:b8:9c:0c:ed:af:91:29:95:2b:9e:c5:14:
        d7:74:09:a3:d2:5c:cb:f0:ef:c3:ba:d5:6c:f6:28:bc:
        ea:71:1b:66:27:f2:d7:a7:d8:1e:2c:be:e9:cf:2c:af:
        f4:19:2f:bd:06:03:39:aa:9e:21:45:30:d3:8b:9a:9b:
        29:1f:44:4d:c4:9b:93:f6:93:9f:5e:15:50:70:64:fe:
        dc:b8:3a:d9:66:1f:e0:57:7c:35:ee:a0:10:45:7e:87:
        eb:68:7d:23:09:d4:87:2a:14:92:dd:76:de:3f:6b:aa:
        8c:ed:00:d2:b2:5c:0b:00:64:d2:74:a3:b6:d7:e7:66:
        2d:2f:78:1f:8a:36:6d:aa:44:2c:88:a5:7c:a5:05:44
    Fingerprint (SHA-256):
        B3:1F:12:0F:A5:63:FD:67:B2:71:5B:D0:95:E2:2C:1F:13:25:C5:B8:AD:5A:65:66:17:89:FD:7D:4C:72:23:93
    Fingerprint (SHA1):
        9D:F9:BE:7D:10:C4:BC:A7:90:3D:30:40:9B:1F:C2:92:E6:35:23:FE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10666: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160869 (0x1dee5de5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 16:09:59 2017
            Not After : Mon May 02 16:09:59 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:61:d7:36:0c:c3:4d:de:16:de:f1:a6:fc:27:48:65:
                    52:bb:33:c0:c0:47:e6:20:a5:33:ea:86:34:b8:7a:c2:
                    00:bc:ef:d0:08:08:84:35:90:87:ad:be:7a:89:e8:79:
                    ed:0f:ae:c2:22:4b:e0:21:4e:71:49:8c:8a:1b:29:d9:
                    0b:5d:a3:ad:8f:83:8d:93:fb:48:d0:99:4c:f7:36:82:
                    80:a5:f6:eb:28:8d:be:bb:79:d2:70:a1:84:59:0f:da:
                    d5:4b:19:7d:04:2d:51:c6:ed:b6:00:af:31:ee:4a:4e:
                    af:4e:54:be:3e:92:bf:89:01:82:03:db:a0:56:ed:30:
                    98:d9:44:34:fb:c3:96:58:76:41:f3:60:92:ea:02:b4:
                    18:10:6b:8e:83:cc:f2:6b:ed:66:68:3d:c2:57:9b:67:
                    ba:4d:32:61:9b:72:7d:7d:82:c5:e0:fc:df:cd:2b:9c:
                    18:34:32:87:89:41:d3:6e:3e:48:38:dd:1a:8b:71:d0:
                    d3:eb:43:35:ff:da:40:36:69:b8:14:85:57:97:7d:78:
                    4d:75:b8:21:56:ae:f7:33:bf:2a:09:9f:48:94:1b:6f:
                    89:39:7d:41:c7:c8:ff:e5:47:29:ef:f8:72:54:00:40:
                    fb:4a:6f:64:da:be:ae:a2:2c:2e:44:a3:21:9d:e0:7f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        17:cd:b7:93:57:28:a2:3c:39:ee:cc:c4:15:d0:85:c5:
        2d:c5:db:ad:6a:66:2e:c5:83:e3:1e:a9:7b:1a:e1:06:
        bd:f0:10:de:8f:e3:29:bf:7b:aa:f9:96:fb:06:b6:bc:
        88:ed:b7:1a:c3:5f:a9:5a:7c:e0:6f:84:c3:c5:ec:4d:
        4f:7e:73:3d:55:d6:e2:37:e2:df:59:f0:fd:1e:26:d6:
        6b:4e:e1:35:b4:5c:72:4d:3a:61:62:b1:01:84:ec:66:
        1b:85:2f:22:7e:d2:e1:7f:cd:21:66:fd:dd:28:46:45:
        e2:80:a8:14:0f:80:ec:d3:ea:c5:52:ac:c8:01:83:3f:
        be:7c:3d:1e:58:09:bf:73:10:b9:34:ba:85:48:85:f4:
        e7:89:07:6c:82:63:42:77:9c:d8:ad:33:79:74:6c:87:
        5a:60:31:b8:07:9d:2c:da:be:d9:53:34:2f:7e:21:3c:
        78:ca:d0:14:e5:c5:1e:58:fa:7b:56:2a:a3:a4:17:98:
        37:e6:ff:15:8e:64:3a:c2:14:7a:92:a4:05:ab:95:0d:
        bd:39:a7:e4:77:12:d3:87:f1:b1:03:85:4f:00:88:e0:
        51:15:08:b3:06:2e:8e:10:6f:e5:af:02:ea:3e:5a:1b:
        5f:3c:08:e6:13:9b:77:65:7b:ab:a7:d0:24:99:66:ee
    Fingerprint (SHA-256):
        1E:77:42:60:7F:99:C2:98:72:BA:DA:BB:3A:78:9D:64:7B:4C:6B:8B:77:EF:D9:64:D2:77:45:DB:36:54:AB:41
    Fingerprint (SHA1):
        DD:18:7B:28:AD:CF:B8:8F:9E:82:64:18:55:34:48:99:E0:92:3C:78
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10667: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160870 (0x1dee5de6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 16:10:01 2017
            Not After : Mon May 02 16:10:01 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:57:60:a5:74:d7:75:8d:a3:1d:65:a6:31:c5:c7:a1:
                    0f:2e:fd:7e:75:de:33:b5:4e:0b:be:00:75:51:2b:6a:
                    0b:51:b9:8d:88:38:f9:45:78:91:10:28:37:b1:50:6a:
                    8b:92:07:68:d6:14:20:87:05:9e:74:c9:60:f8:8d:a4:
                    70:8e:f2:64:5b:a9:00:da:d9:f0:9e:8d:d5:8a:38:60:
                    10:0c:63:bd:ac:9f:d8:50:ec:8b:22:1e:eb:0e:11:46:
                    49:bf:38:2b:7c:a0:92:1a:16:93:d4:7a:7b:18:1a:82:
                    22:1e:c6:5e:ae:a4:80:b0:02:03:cd:c6:64:8a:60:d2:
                    1f:6e:c6:2d:a0:58:1c:b6:06:d9:77:7d:db:83:61:41:
                    61:9d:8a:27:49:0e:9d:a3:a9:d7:6e:fb:be:02:60:5b:
                    1f:83:09:19:60:68:9a:41:3a:ab:14:21:e5:b5:48:93:
                    15:1a:d4:62:20:92:76:21:9e:65:a6:d6:21:41:60:57:
                    7b:f0:c4:d6:ac:06:3b:70:97:27:af:ca:00:12:57:60:
                    1f:76:31:b7:9c:9b:e4:8e:21:58:f5:d8:b3:f1:eb:63:
                    e5:f2:32:80:c8:33:40:4b:fd:2b:08:81:01:6a:26:83:
                    5c:c6:f1:30:82:c0:58:01:9c:bd:b4:64:6c:82:00:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        44:c2:0c:b3:96:ee:67:f7:bc:59:ec:2f:03:71:c0:17:
        4a:dc:10:59:6c:23:99:3e:14:0e:43:1f:84:ce:a8:49:
        d1:2a:68:1f:b3:32:06:b0:68:be:dc:99:af:04:49:99:
        b4:7c:bc:59:c1:fa:eb:74:e4:3c:be:30:b0:73:09:aa:
        d9:db:3f:bd:8e:e9:95:9d:eb:74:d3:d6:5d:7c:29:8b:
        d9:ea:fd:f4:fc:52:60:52:ee:aa:4a:66:db:a2:db:06:
        04:5d:c4:16:bd:f3:0d:16:f8:6c:b4:c6:aa:da:32:99:
        93:6c:02:41:78:60:80:01:f7:a8:58:84:f8:a8:f6:b2:
        5f:a7:f5:d0:b1:f3:ed:a5:f5:e4:50:44:92:1f:5d:a7:
        0c:67:dd:49:7d:78:22:62:1f:b0:ba:0b:3f:31:f1:5e:
        05:29:c2:2f:32:ad:e4:29:e4:40:f9:54:20:8c:9f:d9:
        2b:71:8e:7b:13:22:f1:ea:2a:65:10:a5:25:d9:54:62:
        77:6a:04:e8:5e:a4:7c:85:0c:c2:4e:3c:ef:a0:d7:53:
        6d:2d:8f:0c:dd:59:69:79:6e:da:cd:21:6c:ef:e2:af:
        aa:93:d6:1f:7d:b3:22:f1:82:64:bf:c1:d0:4f:5c:5c:
        78:df:14:0e:f3:ca:72:32:64:ec:2d:ec:2a:99:57:2e
    Fingerprint (SHA-256):
        42:11:4D:6B:ED:63:32:1B:E5:90:A5:E6:91:C5:C4:03:DC:06:3B:8D:08:00:6D:FE:F2:A9:59:E1:90:E8:40:51
    Fingerprint (SHA1):
        4E:93:82:87:60:ED:78:35:34:CA:C8:12:6C:AB:F8:F1:31:33:B0:AF
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #10668: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10669: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160885 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10670: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10671: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10672: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10673: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502160886   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10674: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10675: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10676: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10677: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502160887   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10678: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10679: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10680: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10681: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502160888   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10682: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10683: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10684: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160885 (0x1dee5df5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:20 2017
            Not After : Mon May 02 16:10:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:a9:fc:ee:43:aa:8e:19:b6:00:72:77:9e:26:6d:e4:
                    ec:b0:eb:08:7a:c6:8f:51:ab:77:13:9b:33:cd:1a:13:
                    c3:92:0d:ac:d0:48:73:f3:6f:63:f8:40:a4:b0:3e:2c:
                    a6:ae:34:f8:e9:b0:46:c2:99:b4:3b:72:a5:56:09:c0:
                    5b:01:90:1b:f2:27:40:34:d1:ad:9e:83:34:0b:9d:11:
                    94:7e:b2:d2:f5:c4:4c:83:b1:9f:31:c6:4b:ce:be:4d:
                    4e:78:6d:fb:20:29:ed:47:2a:41:45:3e:a0:e4:47:34:
                    6f:b6:ed:1e:d7:50:bc:7b:9c:8a:52:c9:2b:58:d5:21:
                    a6:ee:fd:e1:7b:0d:11:54:67:17:55:bc:86:e5:dc:d5:
                    81:5a:b0:c7:19:00:59:31:0e:f9:4c:06:ee:f5:6b:c4:
                    ef:41:4a:bf:f0:0a:df:84:45:3b:9e:44:98:ba:3c:c6:
                    81:1c:00:7c:16:5a:71:33:c3:d4:e2:93:44:7d:37:f4:
                    64:2d:33:5f:04:5e:9b:d5:b5:59:eb:5f:d8:2e:cc:05:
                    01:ec:d6:b2:f5:2f:27:a4:12:13:c8:98:17:96:1e:63:
                    34:14:2f:8c:ce:8f:1c:90:9d:09:a3:18:39:53:e3:13:
                    1a:32:36:af:5d:fe:1f:60:3d:fc:99:37:2a:07:53:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:fe:aa:f8:44:09:aa:d2:1b:d7:52:32:d8:62:8d:32:
        9c:45:62:c8:72:29:4c:dd:fc:a0:fd:bd:d6:be:c6:cf:
        a1:28:ea:70:62:d5:c3:fd:18:a3:7e:f0:59:54:5d:29:
        91:4d:53:14:1e:f6:a5:f1:c5:82:c9:a8:ad:0f:e7:e9:
        9c:4b:99:82:a0:e4:15:28:35:ef:81:fa:d7:46:62:7a:
        5a:e1:eb:6a:8c:b2:7f:56:85:21:12:5d:13:14:8e:a7:
        2f:8f:8c:5f:2e:1e:50:e9:2b:a7:51:12:e9:0e:42:f3:
        9b:2d:33:3a:cf:84:92:ee:b5:6c:e9:a2:81:98:01:ca:
        74:59:06:63:e5:77:82:1c:93:7d:d8:37:c4:b8:9d:53:
        99:a9:e7:c2:af:df:3a:f8:36:ce:e6:88:3e:21:e7:24:
        6a:7d:69:37:e6:ec:cb:7f:57:98:95:e0:f7:a8:64:88:
        ed:ac:e4:94:89:f8:36:0c:27:45:63:01:84:47:d3:96:
        b7:ff:94:2e:78:73:ac:0f:ad:22:c5:7f:65:6c:b1:d6:
        b3:cb:de:a8:47:96:d7:09:e4:2f:46:72:8f:9b:64:d4:
        04:22:44:ed:9a:42:35:73:25:74:9d:e0:a8:19:31:cf:
        70:75:6b:82:47:64:6e:8d:c0:33:40:6a:d3:91:d0:f2
    Fingerprint (SHA-256):
        E4:08:A6:1F:FF:E9:6E:D4:84:60:6E:57:78:D8:FB:2A:18:3F:92:73:42:C1:8F:66:96:6B:A0:88:98:D1:56:CC
    Fingerprint (SHA1):
        8F:AB:2A:ED:E2:D9:9E:70:3D:7A:94:8C:2A:85:EA:B0:7C:B8:21:C2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10685: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10686: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160886 (0x1dee5df6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:22 2017
            Not After : Mon May 02 16:10:22 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:71:4e:1e:ed:99:19:54:f6:02:ef:16:a9:d5:77:94:
                    d7:3d:3f:90:b6:69:c7:cc:d3:96:aa:43:da:79:b1:c9:
                    be:8b:3c:d6:8d:ae:63:38:c2:96:83:06:d7:f2:91:93:
                    77:d6:fa:86:8a:59:7c:22:12:02:ad:0d:6a:b3:e9:95:
                    fd:20:6e:13:e3:02:0a:00:9f:75:32:c4:f6:3a:e0:db:
                    49:10:9b:8b:97:42:a1:57:fc:49:9c:92:c4:d9:d4:41:
                    27:fb:88:c8:40:99:f4:7f:6b:b8:44:3f:21:db:8b:40:
                    26:7b:c2:60:de:81:1c:52:ab:fb:91:c7:98:e8:54:bb:
                    16:19:13:aa:ee:cf:4c:f6:d2:54:ee:0a:cc:a3:4c:f2:
                    af:7c:21:8b:fa:7c:a8:2f:c9:92:3e:cb:db:48:72:b9:
                    f6:fb:49:a9:e8:11:f4:f7:08:f6:87:f8:f8:56:79:d0:
                    52:16:95:2a:0f:be:6e:87:50:05:f9:64:59:57:eb:f3:
                    82:5c:6c:bf:1a:c3:86:58:71:8c:73:10:bf:4c:4f:ab:
                    74:de:51:4e:0b:45:d4:ff:86:fd:cd:79:78:24:ba:95:
                    c3:f9:ba:3d:f1:26:9a:ff:e8:a9:8f:f9:c3:91:9f:7e:
                    51:22:93:70:6d:a0:51:09:c2:27:98:10:b0:ed:c1:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:25:5f:f5:bd:b2:d5:d2:3f:40:cf:04:de:cd:de:d3:
        6c:59:29:32:48:4d:78:a5:3e:b3:53:8d:42:dd:44:e1:
        64:7b:0c:b9:8d:21:a8:67:3d:7f:5d:51:78:2d:bb:14:
        5e:47:a5:99:fa:70:fa:fc:50:7f:f2:1d:e9:6f:45:ea:
        1f:b7:c2:6f:37:eb:b0:af:57:49:0c:4a:6e:bb:df:b3:
        e0:2d:a7:67:bb:78:f0:3f:0d:97:b3:5f:ec:8b:8e:5b:
        51:60:37:1c:14:f3:3b:1e:83:8f:48:e9:f2:8a:2f:cf:
        3f:0a:a8:20:9c:c3:d7:ef:b2:b7:82:bf:01:6d:36:5b:
        ff:a1:d7:78:cd:3a:06:f9:33:6c:a4:44:e3:01:e7:ea:
        65:92:8f:8f:ea:25:19:11:8d:70:ec:a9:5d:76:20:e7:
        49:97:be:bc:6d:b6:01:bd:c3:5f:5d:c0:04:31:56:f7:
        67:63:13:1c:33:22:17:b1:c9:6b:81:ea:f1:96:b2:15:
        15:83:15:93:ed:09:f8:ef:d5:2f:0d:db:d4:56:ae:fd:
        d7:fc:9c:a5:ed:17:1e:2b:0c:27:6c:cf:83:1e:57:94:
        71:e0:89:db:97:2c:84:38:bd:42:07:88:70:34:e8:c9:
        b0:cf:77:6b:9a:7f:47:80:0c:86:ab:27:27:fe:ea:dc
    Fingerprint (SHA-256):
        EB:A4:11:7C:9C:63:41:9C:0A:41:20:BC:63:76:07:45:6C:FE:AE:6C:A2:19:1F:DD:12:C4:C1:FA:63:7A:24:66
    Fingerprint (SHA1):
        4B:B4:E4:29:B9:5A:9A:5A:7E:54:D2:C9:92:BF:40:B3:B6:1E:6E:B9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10687: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10688: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160887 (0x1dee5df7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:10:23 2017
            Not After : Mon May 02 16:10:23 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:8c:08:a0:aa:6c:e5:de:2a:74:09:a2:06:a8:2d:5e:
                    87:4d:c9:f1:5e:0d:a9:1b:0e:ae:b5:6f:95:6c:2e:21:
                    0b:32:be:32:8a:20:39:f4:9f:0b:61:7f:3d:6d:43:2d:
                    f1:c7:b6:c5:6a:bd:af:73:17:4b:74:9f:53:5f:ee:bf:
                    6e:23:4a:f5:22:6c:8c:50:7f:48:38:f8:34:04:74:5e:
                    1c:64:51:58:2c:bb:7c:8e:cc:8c:10:7b:47:5d:26:30:
                    05:82:2a:14:d5:15:c6:69:ee:6f:09:51:d5:7b:08:a5:
                    ba:14:ea:6f:0f:5a:13:38:26:b1:72:b8:5c:4c:25:53:
                    f0:89:e0:5e:c6:b6:6f:04:78:da:08:22:79:8b:20:96:
                    d8:1d:d0:6e:a1:7a:2a:1c:f4:c4:84:23:2c:e0:57:96:
                    36:79:09:c3:5e:a4:fc:de:7a:57:f4:39:dd:8d:bc:c5:
                    0d:aa:39:f4:be:69:d6:9a:17:b7:01:73:a4:52:e9:08:
                    61:51:f1:14:c3:df:08:6d:21:1b:b3:3b:5a:cc:72:fa:
                    4e:36:e7:73:27:0b:91:ad:fe:a0:2d:06:29:00:9c:23:
                    5b:25:5c:47:2c:13:02:8e:52:d3:29:88:0a:00:fe:19:
                    0a:53:eb:86:c5:be:f2:d4:13:a9:99:a7:bd:b1:f1:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:85:18:60:60:09:36:03:79:10:50:8e:0b:9d:b9:69:
        33:1c:49:5b:96:38:77:7e:9e:34:58:90:db:8c:04:21:
        33:8c:66:3f:56:a7:d3:0b:1c:a7:2a:f3:33:1a:8c:12:
        80:6d:0b:20:29:72:c8:59:86:be:67:59:ef:74:c1:4d:
        ca:4f:cf:f4:d4:8f:7a:26:d7:ea:fb:0b:72:4c:30:10:
        f2:68:cd:1b:8f:3f:f0:33:2d:25:d4:46:9e:14:e0:22:
        f2:04:90:e4:15:f1:48:36:62:a8:8d:18:0e:5d:15:32:
        15:c0:b6:67:d4:53:99:09:c5:b6:d0:f3:9a:75:e2:8b:
        52:93:ab:b9:de:b1:0b:cd:79:06:69:59:4f:d9:1d:97:
        97:d1:b5:7c:71:57:7a:4c:fa:b9:2e:79:77:09:5d:96:
        87:e3:e2:d8:25:1e:30:f9:38:2c:40:b2:7a:fd:88:db:
        e4:8c:45:14:81:2d:45:9d:18:23:71:81:45:f4:27:9b:
        99:59:b2:53:2b:74:24:77:61:5a:bf:1b:22:87:ef:c5:
        78:f6:91:dd:e8:bd:b6:63:e6:22:7d:66:22:ce:c0:f4:
        d4:14:20:32:00:ea:e0:40:d0:53:ab:aa:c7:02:01:a7:
        8f:e3:b3:6f:fe:39:12:2d:2e:d7:e3:a4:13:7e:29:aa
    Fingerprint (SHA-256):
        B3:7D:59:A4:8E:38:87:38:7E:7A:38:36:AE:12:98:A3:6F:D8:F2:99:4A:10:46:F7:71:2B:EE:51:69:D8:AC:1F
    Fingerprint (SHA1):
        AB:C5:3F:42:22:39:1A:A9:8C:F0:10:BA:94:93:BA:DD:72:3D:95:48
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10689: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10690: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10691: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10692: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10693: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160885 (0x1dee5df5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:20 2017
            Not After : Mon May 02 16:10:20 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cb:a9:fc:ee:43:aa:8e:19:b6:00:72:77:9e:26:6d:e4:
                    ec:b0:eb:08:7a:c6:8f:51:ab:77:13:9b:33:cd:1a:13:
                    c3:92:0d:ac:d0:48:73:f3:6f:63:f8:40:a4:b0:3e:2c:
                    a6:ae:34:f8:e9:b0:46:c2:99:b4:3b:72:a5:56:09:c0:
                    5b:01:90:1b:f2:27:40:34:d1:ad:9e:83:34:0b:9d:11:
                    94:7e:b2:d2:f5:c4:4c:83:b1:9f:31:c6:4b:ce:be:4d:
                    4e:78:6d:fb:20:29:ed:47:2a:41:45:3e:a0:e4:47:34:
                    6f:b6:ed:1e:d7:50:bc:7b:9c:8a:52:c9:2b:58:d5:21:
                    a6:ee:fd:e1:7b:0d:11:54:67:17:55:bc:86:e5:dc:d5:
                    81:5a:b0:c7:19:00:59:31:0e:f9:4c:06:ee:f5:6b:c4:
                    ef:41:4a:bf:f0:0a:df:84:45:3b:9e:44:98:ba:3c:c6:
                    81:1c:00:7c:16:5a:71:33:c3:d4:e2:93:44:7d:37:f4:
                    64:2d:33:5f:04:5e:9b:d5:b5:59:eb:5f:d8:2e:cc:05:
                    01:ec:d6:b2:f5:2f:27:a4:12:13:c8:98:17:96:1e:63:
                    34:14:2f:8c:ce:8f:1c:90:9d:09:a3:18:39:53:e3:13:
                    1a:32:36:af:5d:fe:1f:60:3d:fc:99:37:2a:07:53:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        21:fe:aa:f8:44:09:aa:d2:1b:d7:52:32:d8:62:8d:32:
        9c:45:62:c8:72:29:4c:dd:fc:a0:fd:bd:d6:be:c6:cf:
        a1:28:ea:70:62:d5:c3:fd:18:a3:7e:f0:59:54:5d:29:
        91:4d:53:14:1e:f6:a5:f1:c5:82:c9:a8:ad:0f:e7:e9:
        9c:4b:99:82:a0:e4:15:28:35:ef:81:fa:d7:46:62:7a:
        5a:e1:eb:6a:8c:b2:7f:56:85:21:12:5d:13:14:8e:a7:
        2f:8f:8c:5f:2e:1e:50:e9:2b:a7:51:12:e9:0e:42:f3:
        9b:2d:33:3a:cf:84:92:ee:b5:6c:e9:a2:81:98:01:ca:
        74:59:06:63:e5:77:82:1c:93:7d:d8:37:c4:b8:9d:53:
        99:a9:e7:c2:af:df:3a:f8:36:ce:e6:88:3e:21:e7:24:
        6a:7d:69:37:e6:ec:cb:7f:57:98:95:e0:f7:a8:64:88:
        ed:ac:e4:94:89:f8:36:0c:27:45:63:01:84:47:d3:96:
        b7:ff:94:2e:78:73:ac:0f:ad:22:c5:7f:65:6c:b1:d6:
        b3:cb:de:a8:47:96:d7:09:e4:2f:46:72:8f:9b:64:d4:
        04:22:44:ed:9a:42:35:73:25:74:9d:e0:a8:19:31:cf:
        70:75:6b:82:47:64:6e:8d:c0:33:40:6a:d3:91:d0:f2
    Fingerprint (SHA-256):
        E4:08:A6:1F:FF:E9:6E:D4:84:60:6E:57:78:D8:FB:2A:18:3F:92:73:42:C1:8F:66:96:6B:A0:88:98:D1:56:CC
    Fingerprint (SHA1):
        8F:AB:2A:ED:E2:D9:9E:70:3D:7A:94:8C:2A:85:EA:B0:7C:B8:21:C2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10694: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10695: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160886 (0x1dee5df6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:22 2017
            Not After : Mon May 02 16:10:22 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:71:4e:1e:ed:99:19:54:f6:02:ef:16:a9:d5:77:94:
                    d7:3d:3f:90:b6:69:c7:cc:d3:96:aa:43:da:79:b1:c9:
                    be:8b:3c:d6:8d:ae:63:38:c2:96:83:06:d7:f2:91:93:
                    77:d6:fa:86:8a:59:7c:22:12:02:ad:0d:6a:b3:e9:95:
                    fd:20:6e:13:e3:02:0a:00:9f:75:32:c4:f6:3a:e0:db:
                    49:10:9b:8b:97:42:a1:57:fc:49:9c:92:c4:d9:d4:41:
                    27:fb:88:c8:40:99:f4:7f:6b:b8:44:3f:21:db:8b:40:
                    26:7b:c2:60:de:81:1c:52:ab:fb:91:c7:98:e8:54:bb:
                    16:19:13:aa:ee:cf:4c:f6:d2:54:ee:0a:cc:a3:4c:f2:
                    af:7c:21:8b:fa:7c:a8:2f:c9:92:3e:cb:db:48:72:b9:
                    f6:fb:49:a9:e8:11:f4:f7:08:f6:87:f8:f8:56:79:d0:
                    52:16:95:2a:0f:be:6e:87:50:05:f9:64:59:57:eb:f3:
                    82:5c:6c:bf:1a:c3:86:58:71:8c:73:10:bf:4c:4f:ab:
                    74:de:51:4e:0b:45:d4:ff:86:fd:cd:79:78:24:ba:95:
                    c3:f9:ba:3d:f1:26:9a:ff:e8:a9:8f:f9:c3:91:9f:7e:
                    51:22:93:70:6d:a0:51:09:c2:27:98:10:b0:ed:c1:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3f:25:5f:f5:bd:b2:d5:d2:3f:40:cf:04:de:cd:de:d3:
        6c:59:29:32:48:4d:78:a5:3e:b3:53:8d:42:dd:44:e1:
        64:7b:0c:b9:8d:21:a8:67:3d:7f:5d:51:78:2d:bb:14:
        5e:47:a5:99:fa:70:fa:fc:50:7f:f2:1d:e9:6f:45:ea:
        1f:b7:c2:6f:37:eb:b0:af:57:49:0c:4a:6e:bb:df:b3:
        e0:2d:a7:67:bb:78:f0:3f:0d:97:b3:5f:ec:8b:8e:5b:
        51:60:37:1c:14:f3:3b:1e:83:8f:48:e9:f2:8a:2f:cf:
        3f:0a:a8:20:9c:c3:d7:ef:b2:b7:82:bf:01:6d:36:5b:
        ff:a1:d7:78:cd:3a:06:f9:33:6c:a4:44:e3:01:e7:ea:
        65:92:8f:8f:ea:25:19:11:8d:70:ec:a9:5d:76:20:e7:
        49:97:be:bc:6d:b6:01:bd:c3:5f:5d:c0:04:31:56:f7:
        67:63:13:1c:33:22:17:b1:c9:6b:81:ea:f1:96:b2:15:
        15:83:15:93:ed:09:f8:ef:d5:2f:0d:db:d4:56:ae:fd:
        d7:fc:9c:a5:ed:17:1e:2b:0c:27:6c:cf:83:1e:57:94:
        71:e0:89:db:97:2c:84:38:bd:42:07:88:70:34:e8:c9:
        b0:cf:77:6b:9a:7f:47:80:0c:86:ab:27:27:fe:ea:dc
    Fingerprint (SHA-256):
        EB:A4:11:7C:9C:63:41:9C:0A:41:20:BC:63:76:07:45:6C:FE:AE:6C:A2:19:1F:DD:12:C4:C1:FA:63:7A:24:66
    Fingerprint (SHA1):
        4B:B4:E4:29:B9:5A:9A:5A:7E:54:D2:C9:92:BF:40:B3:B6:1E:6E:B9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10696: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10697: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160887 (0x1dee5df7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:10:23 2017
            Not After : Mon May 02 16:10:23 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    dc:8c:08:a0:aa:6c:e5:de:2a:74:09:a2:06:a8:2d:5e:
                    87:4d:c9:f1:5e:0d:a9:1b:0e:ae:b5:6f:95:6c:2e:21:
                    0b:32:be:32:8a:20:39:f4:9f:0b:61:7f:3d:6d:43:2d:
                    f1:c7:b6:c5:6a:bd:af:73:17:4b:74:9f:53:5f:ee:bf:
                    6e:23:4a:f5:22:6c:8c:50:7f:48:38:f8:34:04:74:5e:
                    1c:64:51:58:2c:bb:7c:8e:cc:8c:10:7b:47:5d:26:30:
                    05:82:2a:14:d5:15:c6:69:ee:6f:09:51:d5:7b:08:a5:
                    ba:14:ea:6f:0f:5a:13:38:26:b1:72:b8:5c:4c:25:53:
                    f0:89:e0:5e:c6:b6:6f:04:78:da:08:22:79:8b:20:96:
                    d8:1d:d0:6e:a1:7a:2a:1c:f4:c4:84:23:2c:e0:57:96:
                    36:79:09:c3:5e:a4:fc:de:7a:57:f4:39:dd:8d:bc:c5:
                    0d:aa:39:f4:be:69:d6:9a:17:b7:01:73:a4:52:e9:08:
                    61:51:f1:14:c3:df:08:6d:21:1b:b3:3b:5a:cc:72:fa:
                    4e:36:e7:73:27:0b:91:ad:fe:a0:2d:06:29:00:9c:23:
                    5b:25:5c:47:2c:13:02:8e:52:d3:29:88:0a:00:fe:19:
                    0a:53:eb:86:c5:be:f2:d4:13:a9:99:a7:bd:b1:f1:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a7:85:18:60:60:09:36:03:79:10:50:8e:0b:9d:b9:69:
        33:1c:49:5b:96:38:77:7e:9e:34:58:90:db:8c:04:21:
        33:8c:66:3f:56:a7:d3:0b:1c:a7:2a:f3:33:1a:8c:12:
        80:6d:0b:20:29:72:c8:59:86:be:67:59:ef:74:c1:4d:
        ca:4f:cf:f4:d4:8f:7a:26:d7:ea:fb:0b:72:4c:30:10:
        f2:68:cd:1b:8f:3f:f0:33:2d:25:d4:46:9e:14:e0:22:
        f2:04:90:e4:15:f1:48:36:62:a8:8d:18:0e:5d:15:32:
        15:c0:b6:67:d4:53:99:09:c5:b6:d0:f3:9a:75:e2:8b:
        52:93:ab:b9:de:b1:0b:cd:79:06:69:59:4f:d9:1d:97:
        97:d1:b5:7c:71:57:7a:4c:fa:b9:2e:79:77:09:5d:96:
        87:e3:e2:d8:25:1e:30:f9:38:2c:40:b2:7a:fd:88:db:
        e4:8c:45:14:81:2d:45:9d:18:23:71:81:45:f4:27:9b:
        99:59:b2:53:2b:74:24:77:61:5a:bf:1b:22:87:ef:c5:
        78:f6:91:dd:e8:bd:b6:63:e6:22:7d:66:22:ce:c0:f4:
        d4:14:20:32:00:ea:e0:40:d0:53:ab:aa:c7:02:01:a7:
        8f:e3:b3:6f:fe:39:12:2d:2e:d7:e3:a4:13:7e:29:aa
    Fingerprint (SHA-256):
        B3:7D:59:A4:8E:38:87:38:7E:7A:38:36:AE:12:98:A3:6F:D8:F2:99:4A:10:46:F7:71:2B:EE:51:69:D8:AC:1F
    Fingerprint (SHA1):
        AB:C5:3F:42:22:39:1A:A9:8C:F0:10:BA:94:93:BA:DD:72:3D:95:48
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10698: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10699: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10700: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160889 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10701: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10702: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10703: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10704: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502160890   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10705: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10706: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10707: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10708: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502160891   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10709: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10710: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #10711: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10712: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502160892   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10713: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10714: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #10715: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10716: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502160893   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10717: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10718: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10719: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160889 (0x1dee5df9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:30 2017
            Not After : Mon May 02 16:10:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:53:0f:4f:8c:ad:d7:76:7e:e0:03:03:74:9f:81:5e:
                    89:9c:9c:7f:a8:57:f8:d8:df:8a:07:6e:74:42:2b:91:
                    80:62:d5:8a:b8:9b:dc:d0:6a:1b:f3:85:22:eb:fb:a1:
                    5a:6b:ed:cf:a4:19:cb:cd:f2:cd:78:ca:35:fa:9c:1c:
                    c1:3d:d5:29:04:92:9d:33:f6:11:31:d8:c6:a6:2b:02:
                    72:cf:44:2e:4b:10:75:4f:b8:f3:62:02:51:0c:79:16:
                    3d:54:89:c4:ce:03:57:e8:00:ef:26:43:af:dd:7e:6c:
                    5a:0b:8c:04:c4:f9:3b:e5:d9:df:e8:64:98:57:cd:01:
                    4b:bc:b8:2c:56:f1:98:9a:e7:1b:f6:91:6e:ad:2b:5f:
                    92:43:83:50:98:cb:17:b3:d5:84:45:4f:4b:1d:5d:29:
                    6a:48:76:1f:76:ba:0f:63:28:cf:11:0d:df:30:db:17:
                    fc:ac:2a:01:92:fc:53:81:c2:ee:af:c0:24:c7:a8:09:
                    09:ad:19:af:76:cd:6f:a9:d7:1a:2a:8a:c0:7b:e7:ff:
                    24:e3:89:d8:a9:f2:10:c8:b7:04:a6:59:ed:1f:8e:7c:
                    a8:14:66:f8:86:e7:33:54:f2:5a:4e:88:78:a1:8c:a4:
                    f8:f9:89:1c:b8:92:1a:68:1f:dd:8f:5c:94:82:4f:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:10:40:3c:19:e1:8a:d1:3e:c7:51:a7:6b:21:98:df:
        97:c8:5c:7c:2b:93:2f:44:45:5f:31:7b:0a:cb:19:83:
        71:b2:5d:fc:49:90:49:16:67:5c:0a:bc:4e:df:b0:a3:
        35:ab:3c:6f:2d:f4:bb:27:90:5f:96:74:fd:a9:d6:25:
        56:07:c9:11:45:99:7d:38:a5:d0:39:ef:e4:2b:81:03:
        86:bc:01:9e:e6:36:ee:27:22:c4:37:08:14:d5:38:63:
        5b:07:91:a0:11:c1:7b:05:4b:66:28:ed:23:4c:c3:e1:
        a1:85:c7:36:0d:3d:5e:ce:f0:a3:72:a5:ec:ee:3d:7a:
        56:c2:38:74:3c:89:39:8e:d2:67:16:70:f4:78:4e:77:
        59:9b:16:b5:b5:a8:27:d0:bb:63:47:88:5c:f0:ec:9c:
        28:60:53:68:93:af:b7:6f:c1:0c:c8:0a:31:a5:b3:27:
        62:3e:9d:93:4b:c0:96:35:0e:45:b9:3e:32:78:d4:bf:
        bc:0d:27:c8:06:a1:a5:ad:e5:fb:ad:c9:dd:9a:7b:81:
        a9:36:a5:1d:63:7e:c0:68:5a:12:b6:4b:33:9f:56:1a:
        17:d6:71:02:2d:48:ef:c8:18:91:2d:6b:8a:14:d0:64:
        39:28:d5:bb:b1:cc:d1:31:c1:5c:0e:e8:e8:88:22:d3
    Fingerprint (SHA-256):
        27:72:25:B6:F8:C9:E5:07:30:44:D8:F2:A2:63:A6:50:32:BD:2A:87:49:5F:F0:D0:D6:44:0C:84:7D:3F:F3:BD
    Fingerprint (SHA1):
        B2:90:92:F9:C1:5D:D8:03:AC:F7:24:E4:5F:3B:CB:A7:E7:E1:8D:25
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10720: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10721: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160890 (0x1dee5dfa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:31 2017
            Not After : Mon May 02 16:10:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:8f:d4:76:88:ad:62:b6:ac:4e:ed:15:84:42:a3:e5:
                    e0:48:53:e2:ce:fc:5e:c2:25:ba:9e:1a:e6:05:16:a3:
                    f6:8a:45:ba:f0:8c:a5:22:24:55:db:50:98:2b:ed:cd:
                    43:ed:6c:9a:05:7f:f8:b2:3c:ba:94:01:d2:55:34:b8:
                    e6:31:ee:50:4f:5a:06:cd:c3:da:8a:35:72:4c:e6:75:
                    76:b4:5b:05:cf:34:33:52:a2:35:75:36:3d:b2:85:9b:
                    d6:b8:02:ed:56:99:d1:26:5d:bf:1b:53:2f:93:c4:fe:
                    c9:9d:42:07:64:c8:87:dc:81:75:c8:a3:75:bd:0d:8f:
                    68:5c:e0:0a:4d:df:be:3b:53:10:dd:f8:4b:f5:4b:bd:
                    98:9e:10:ce:4c:06:8f:8e:82:47:5e:16:c7:3a:6f:72:
                    fd:bd:3a:d5:2c:35:3f:c2:3e:dc:4c:83:44:45:ea:95:
                    af:f7:2d:64:cf:8d:7a:f2:9d:22:4f:e2:45:ba:79:be:
                    35:21:2e:e5:4c:53:52:bc:08:ff:d3:c1:c8:f7:37:0d:
                    ca:0a:66:0f:a1:70:10:45:33:78:fa:84:df:6d:e6:5a:
                    be:65:f4:e6:07:3b:b8:0d:ba:02:d2:cc:be:9e:f2:55:
                    f0:11:4f:c3:24:fa:4c:c9:02:35:42:31:c5:1e:20:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:ab:ef:4a:cf:01:49:f9:63:6c:79:42:a8:28:ac:95:
        f8:98:26:93:f9:c7:3e:10:44:3e:08:b7:35:d3:d5:35:
        dd:e1:de:8c:ad:98:a5:2d:f2:6e:67:b7:29:7b:64:c7:
        8a:a0:a5:13:85:dd:31:11:88:dd:17:3a:9c:48:da:3b:
        3d:c9:8c:ac:b1:14:5d:25:ba:81:d0:bb:53:ca:7b:91:
        0d:e1:d1:01:8f:a5:d2:f4:b5:70:cd:67:df:1b:3c:8e:
        81:88:0e:78:18:e5:e3:90:9e:c0:dd:30:9e:6d:2a:7f:
        22:6b:1d:87:6f:a3:5a:37:82:e4:64:a2:fd:40:46:a4:
        20:b5:92:18:5b:d3:3c:38:7d:35:62:77:09:51:f9:7a:
        36:99:93:e2:a1:dd:be:bd:6e:23:6e:10:21:df:b0:9b:
        4c:37:f6:e4:79:d4:3a:19:34:42:f7:0e:9a:70:a5:62:
        c7:22:f0:5e:d1:e5:b2:73:2d:f1:e0:59:eb:a0:e3:7f:
        4e:99:74:e9:02:8f:fb:0f:dd:f7:8f:c2:14:61:84:71:
        c0:b2:ec:a0:79:4b:eb:09:0a:6a:ae:81:ba:cb:5a:53:
        7d:cb:97:f8:27:fe:d8:c3:7f:28:1f:cd:4d:0f:0b:0c:
        61:63:8d:12:5e:88:44:0a:86:07:20:a3:ef:41:af:b5
    Fingerprint (SHA-256):
        68:33:05:77:E3:B7:78:A8:9E:09:A5:35:6F:2E:E2:A9:3A:01:B5:91:7F:75:D2:7D:26:DE:AC:42:B3:7E:95:FB
    Fingerprint (SHA1):
        E1:4E:CB:C1:A0:C1:A8:60:22:E5:96:0B:DD:CF:3F:C0:91:99:E8:92
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10722: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10723: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160891 (0x1dee5dfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:10:32 2017
            Not After : Mon May 02 16:10:32 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:99:5e:25:82:c8:a4:e4:d3:b3:f1:95:a6:f8:90:59:
                    9e:e0:57:cd:73:8d:c4:05:7d:07:dc:7a:f3:f4:b3:58:
                    07:f5:de:4b:9c:c5:a3:4e:0f:b9:02:07:6f:46:b0:0a:
                    fe:73:12:8e:68:57:f5:6a:9e:c0:44:c0:33:5f:24:90:
                    0f:9b:6e:64:60:62:14:b0:c3:81:21:84:b8:f3:d9:a5:
                    c5:f9:7e:3b:5d:2c:f1:1b:ad:88:40:51:68:86:16:e6:
                    38:63:6d:e2:15:e7:35:8b:5c:bf:78:ea:d0:8c:c1:c6:
                    69:d0:5d:d0:21:e4:04:b2:26:49:77:f8:58:96:05:d0:
                    7a:c3:99:93:8c:0b:89:14:11:ae:0f:7c:de:89:5f:5a:
                    aa:29:3c:ff:5f:c3:c7:46:bd:2a:0e:f9:8e:8b:3e:09:
                    62:35:ed:1e:02:12:62:ce:cf:84:2f:e4:8d:c5:92:94:
                    23:bd:e7:6d:4c:96:a0:c5:fe:90:23:f0:d3:5b:22:41:
                    19:e7:a2:9f:27:fb:37:e8:13:b2:52:61:63:f1:67:16:
                    03:e8:73:f3:67:0e:26:85:7c:69:a1:b1:10:ad:71:ae:
                    ce:a0:0a:07:56:29:e4:09:27:4d:38:0c:c0:9d:89:fd:
                    39:52:54:41:d4:98:3b:9b:aa:96:e3:be:4f:f4:81:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:8c:ec:99:86:5f:f7:04:19:32:71:68:03:61:a6:84:
        8a:b0:42:9b:5f:6e:41:4a:3d:12:85:dc:e2:50:8a:f1:
        35:da:de:1a:ad:31:3c:cd:7b:b0:33:0d:fb:2a:13:5f:
        a2:80:71:ba:b3:b4:33:39:62:5a:71:c9:69:fd:8e:82:
        06:cd:34:af:e6:6d:51:90:1a:8a:92:1c:5a:fb:2f:cd:
        f1:5a:c7:b9:9b:b3:c5:0d:87:3a:61:df:65:10:8c:b3:
        14:bd:d5:5f:f8:28:6d:e7:7c:f4:a2:b9:59:26:bd:db:
        01:5b:c0:88:ab:d5:ff:a9:00:7d:2c:08:a1:e8:ba:6d:
        10:30:7a:25:b4:aa:7a:35:c7:38:fd:58:7a:d9:fe:18:
        fc:d2:76:e8:e2:37:29:3c:64:90:f3:92:2a:d3:14:76:
        1f:18:9b:b3:aa:6d:9a:a4:7e:e1:6e:a4:84:67:68:ea:
        e1:f5:91:40:df:aa:03:a6:50:51:88:c1:ac:85:b9:be:
        70:d2:05:74:35:2a:9c:1a:9e:e9:fa:fd:5d:03:c0:04:
        56:6b:fd:f0:9d:15:9b:25:9d:ba:9e:de:a5:e8:fd:d0:
        40:fa:61:78:2a:98:dc:ce:2b:fe:6a:a4:eb:39:0a:8f:
        94:d6:51:d5:95:74:49:d5:70:da:fa:e6:0f:f0:9c:b9
    Fingerprint (SHA-256):
        93:8C:32:A6:43:CF:8F:44:75:DB:30:F0:82:DE:7B:99:A6:89:9D:3A:65:DF:EC:6F:BB:D2:84:68:C1:00:D0:EB
    Fingerprint (SHA1):
        0A:26:73:04:19:80:AA:3A:A5:75:3C:71:74:9C:D0:15:40:EB:7F:60
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10724: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10725: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10726: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10727: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10728: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160889 (0x1dee5df9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:30 2017
            Not After : Mon May 02 16:10:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:53:0f:4f:8c:ad:d7:76:7e:e0:03:03:74:9f:81:5e:
                    89:9c:9c:7f:a8:57:f8:d8:df:8a:07:6e:74:42:2b:91:
                    80:62:d5:8a:b8:9b:dc:d0:6a:1b:f3:85:22:eb:fb:a1:
                    5a:6b:ed:cf:a4:19:cb:cd:f2:cd:78:ca:35:fa:9c:1c:
                    c1:3d:d5:29:04:92:9d:33:f6:11:31:d8:c6:a6:2b:02:
                    72:cf:44:2e:4b:10:75:4f:b8:f3:62:02:51:0c:79:16:
                    3d:54:89:c4:ce:03:57:e8:00:ef:26:43:af:dd:7e:6c:
                    5a:0b:8c:04:c4:f9:3b:e5:d9:df:e8:64:98:57:cd:01:
                    4b:bc:b8:2c:56:f1:98:9a:e7:1b:f6:91:6e:ad:2b:5f:
                    92:43:83:50:98:cb:17:b3:d5:84:45:4f:4b:1d:5d:29:
                    6a:48:76:1f:76:ba:0f:63:28:cf:11:0d:df:30:db:17:
                    fc:ac:2a:01:92:fc:53:81:c2:ee:af:c0:24:c7:a8:09:
                    09:ad:19:af:76:cd:6f:a9:d7:1a:2a:8a:c0:7b:e7:ff:
                    24:e3:89:d8:a9:f2:10:c8:b7:04:a6:59:ed:1f:8e:7c:
                    a8:14:66:f8:86:e7:33:54:f2:5a:4e:88:78:a1:8c:a4:
                    f8:f9:89:1c:b8:92:1a:68:1f:dd:8f:5c:94:82:4f:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:10:40:3c:19:e1:8a:d1:3e:c7:51:a7:6b:21:98:df:
        97:c8:5c:7c:2b:93:2f:44:45:5f:31:7b:0a:cb:19:83:
        71:b2:5d:fc:49:90:49:16:67:5c:0a:bc:4e:df:b0:a3:
        35:ab:3c:6f:2d:f4:bb:27:90:5f:96:74:fd:a9:d6:25:
        56:07:c9:11:45:99:7d:38:a5:d0:39:ef:e4:2b:81:03:
        86:bc:01:9e:e6:36:ee:27:22:c4:37:08:14:d5:38:63:
        5b:07:91:a0:11:c1:7b:05:4b:66:28:ed:23:4c:c3:e1:
        a1:85:c7:36:0d:3d:5e:ce:f0:a3:72:a5:ec:ee:3d:7a:
        56:c2:38:74:3c:89:39:8e:d2:67:16:70:f4:78:4e:77:
        59:9b:16:b5:b5:a8:27:d0:bb:63:47:88:5c:f0:ec:9c:
        28:60:53:68:93:af:b7:6f:c1:0c:c8:0a:31:a5:b3:27:
        62:3e:9d:93:4b:c0:96:35:0e:45:b9:3e:32:78:d4:bf:
        bc:0d:27:c8:06:a1:a5:ad:e5:fb:ad:c9:dd:9a:7b:81:
        a9:36:a5:1d:63:7e:c0:68:5a:12:b6:4b:33:9f:56:1a:
        17:d6:71:02:2d:48:ef:c8:18:91:2d:6b:8a:14:d0:64:
        39:28:d5:bb:b1:cc:d1:31:c1:5c:0e:e8:e8:88:22:d3
    Fingerprint (SHA-256):
        27:72:25:B6:F8:C9:E5:07:30:44:D8:F2:A2:63:A6:50:32:BD:2A:87:49:5F:F0:D0:D6:44:0C:84:7D:3F:F3:BD
    Fingerprint (SHA1):
        B2:90:92:F9:C1:5D:D8:03:AC:F7:24:E4:5F:3B:CB:A7:E7:E1:8D:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10729: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10730: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160890 (0x1dee5dfa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:31 2017
            Not After : Mon May 02 16:10:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:8f:d4:76:88:ad:62:b6:ac:4e:ed:15:84:42:a3:e5:
                    e0:48:53:e2:ce:fc:5e:c2:25:ba:9e:1a:e6:05:16:a3:
                    f6:8a:45:ba:f0:8c:a5:22:24:55:db:50:98:2b:ed:cd:
                    43:ed:6c:9a:05:7f:f8:b2:3c:ba:94:01:d2:55:34:b8:
                    e6:31:ee:50:4f:5a:06:cd:c3:da:8a:35:72:4c:e6:75:
                    76:b4:5b:05:cf:34:33:52:a2:35:75:36:3d:b2:85:9b:
                    d6:b8:02:ed:56:99:d1:26:5d:bf:1b:53:2f:93:c4:fe:
                    c9:9d:42:07:64:c8:87:dc:81:75:c8:a3:75:bd:0d:8f:
                    68:5c:e0:0a:4d:df:be:3b:53:10:dd:f8:4b:f5:4b:bd:
                    98:9e:10:ce:4c:06:8f:8e:82:47:5e:16:c7:3a:6f:72:
                    fd:bd:3a:d5:2c:35:3f:c2:3e:dc:4c:83:44:45:ea:95:
                    af:f7:2d:64:cf:8d:7a:f2:9d:22:4f:e2:45:ba:79:be:
                    35:21:2e:e5:4c:53:52:bc:08:ff:d3:c1:c8:f7:37:0d:
                    ca:0a:66:0f:a1:70:10:45:33:78:fa:84:df:6d:e6:5a:
                    be:65:f4:e6:07:3b:b8:0d:ba:02:d2:cc:be:9e:f2:55:
                    f0:11:4f:c3:24:fa:4c:c9:02:35:42:31:c5:1e:20:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:ab:ef:4a:cf:01:49:f9:63:6c:79:42:a8:28:ac:95:
        f8:98:26:93:f9:c7:3e:10:44:3e:08:b7:35:d3:d5:35:
        dd:e1:de:8c:ad:98:a5:2d:f2:6e:67:b7:29:7b:64:c7:
        8a:a0:a5:13:85:dd:31:11:88:dd:17:3a:9c:48:da:3b:
        3d:c9:8c:ac:b1:14:5d:25:ba:81:d0:bb:53:ca:7b:91:
        0d:e1:d1:01:8f:a5:d2:f4:b5:70:cd:67:df:1b:3c:8e:
        81:88:0e:78:18:e5:e3:90:9e:c0:dd:30:9e:6d:2a:7f:
        22:6b:1d:87:6f:a3:5a:37:82:e4:64:a2:fd:40:46:a4:
        20:b5:92:18:5b:d3:3c:38:7d:35:62:77:09:51:f9:7a:
        36:99:93:e2:a1:dd:be:bd:6e:23:6e:10:21:df:b0:9b:
        4c:37:f6:e4:79:d4:3a:19:34:42:f7:0e:9a:70:a5:62:
        c7:22:f0:5e:d1:e5:b2:73:2d:f1:e0:59:eb:a0:e3:7f:
        4e:99:74:e9:02:8f:fb:0f:dd:f7:8f:c2:14:61:84:71:
        c0:b2:ec:a0:79:4b:eb:09:0a:6a:ae:81:ba:cb:5a:53:
        7d:cb:97:f8:27:fe:d8:c3:7f:28:1f:cd:4d:0f:0b:0c:
        61:63:8d:12:5e:88:44:0a:86:07:20:a3:ef:41:af:b5
    Fingerprint (SHA-256):
        68:33:05:77:E3:B7:78:A8:9E:09:A5:35:6F:2E:E2:A9:3A:01:B5:91:7F:75:D2:7D:26:DE:AC:42:B3:7E:95:FB
    Fingerprint (SHA1):
        E1:4E:CB:C1:A0:C1:A8:60:22:E5:96:0B:DD:CF:3F:C0:91:99:E8:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10731: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10732: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160891 (0x1dee5dfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:10:32 2017
            Not After : Mon May 02 16:10:32 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:99:5e:25:82:c8:a4:e4:d3:b3:f1:95:a6:f8:90:59:
                    9e:e0:57:cd:73:8d:c4:05:7d:07:dc:7a:f3:f4:b3:58:
                    07:f5:de:4b:9c:c5:a3:4e:0f:b9:02:07:6f:46:b0:0a:
                    fe:73:12:8e:68:57:f5:6a:9e:c0:44:c0:33:5f:24:90:
                    0f:9b:6e:64:60:62:14:b0:c3:81:21:84:b8:f3:d9:a5:
                    c5:f9:7e:3b:5d:2c:f1:1b:ad:88:40:51:68:86:16:e6:
                    38:63:6d:e2:15:e7:35:8b:5c:bf:78:ea:d0:8c:c1:c6:
                    69:d0:5d:d0:21:e4:04:b2:26:49:77:f8:58:96:05:d0:
                    7a:c3:99:93:8c:0b:89:14:11:ae:0f:7c:de:89:5f:5a:
                    aa:29:3c:ff:5f:c3:c7:46:bd:2a:0e:f9:8e:8b:3e:09:
                    62:35:ed:1e:02:12:62:ce:cf:84:2f:e4:8d:c5:92:94:
                    23:bd:e7:6d:4c:96:a0:c5:fe:90:23:f0:d3:5b:22:41:
                    19:e7:a2:9f:27:fb:37:e8:13:b2:52:61:63:f1:67:16:
                    03:e8:73:f3:67:0e:26:85:7c:69:a1:b1:10:ad:71:ae:
                    ce:a0:0a:07:56:29:e4:09:27:4d:38:0c:c0:9d:89:fd:
                    39:52:54:41:d4:98:3b:9b:aa:96:e3:be:4f:f4:81:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:8c:ec:99:86:5f:f7:04:19:32:71:68:03:61:a6:84:
        8a:b0:42:9b:5f:6e:41:4a:3d:12:85:dc:e2:50:8a:f1:
        35:da:de:1a:ad:31:3c:cd:7b:b0:33:0d:fb:2a:13:5f:
        a2:80:71:ba:b3:b4:33:39:62:5a:71:c9:69:fd:8e:82:
        06:cd:34:af:e6:6d:51:90:1a:8a:92:1c:5a:fb:2f:cd:
        f1:5a:c7:b9:9b:b3:c5:0d:87:3a:61:df:65:10:8c:b3:
        14:bd:d5:5f:f8:28:6d:e7:7c:f4:a2:b9:59:26:bd:db:
        01:5b:c0:88:ab:d5:ff:a9:00:7d:2c:08:a1:e8:ba:6d:
        10:30:7a:25:b4:aa:7a:35:c7:38:fd:58:7a:d9:fe:18:
        fc:d2:76:e8:e2:37:29:3c:64:90:f3:92:2a:d3:14:76:
        1f:18:9b:b3:aa:6d:9a:a4:7e:e1:6e:a4:84:67:68:ea:
        e1:f5:91:40:df:aa:03:a6:50:51:88:c1:ac:85:b9:be:
        70:d2:05:74:35:2a:9c:1a:9e:e9:fa:fd:5d:03:c0:04:
        56:6b:fd:f0:9d:15:9b:25:9d:ba:9e:de:a5:e8:fd:d0:
        40:fa:61:78:2a:98:dc:ce:2b:fe:6a:a4:eb:39:0a:8f:
        94:d6:51:d5:95:74:49:d5:70:da:fa:e6:0f:f0:9c:b9
    Fingerprint (SHA-256):
        93:8C:32:A6:43:CF:8F:44:75:DB:30:F0:82:DE:7B:99:A6:89:9D:3A:65:DF:EC:6F:BB:D2:84:68:C1:00:D0:EB
    Fingerprint (SHA1):
        0A:26:73:04:19:80:AA:3A:A5:75:3C:71:74:9C:D0:15:40:EB:7F:60
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10733: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10734: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160889 (0x1dee5df9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:30 2017
            Not After : Mon May 02 16:10:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:53:0f:4f:8c:ad:d7:76:7e:e0:03:03:74:9f:81:5e:
                    89:9c:9c:7f:a8:57:f8:d8:df:8a:07:6e:74:42:2b:91:
                    80:62:d5:8a:b8:9b:dc:d0:6a:1b:f3:85:22:eb:fb:a1:
                    5a:6b:ed:cf:a4:19:cb:cd:f2:cd:78:ca:35:fa:9c:1c:
                    c1:3d:d5:29:04:92:9d:33:f6:11:31:d8:c6:a6:2b:02:
                    72:cf:44:2e:4b:10:75:4f:b8:f3:62:02:51:0c:79:16:
                    3d:54:89:c4:ce:03:57:e8:00:ef:26:43:af:dd:7e:6c:
                    5a:0b:8c:04:c4:f9:3b:e5:d9:df:e8:64:98:57:cd:01:
                    4b:bc:b8:2c:56:f1:98:9a:e7:1b:f6:91:6e:ad:2b:5f:
                    92:43:83:50:98:cb:17:b3:d5:84:45:4f:4b:1d:5d:29:
                    6a:48:76:1f:76:ba:0f:63:28:cf:11:0d:df:30:db:17:
                    fc:ac:2a:01:92:fc:53:81:c2:ee:af:c0:24:c7:a8:09:
                    09:ad:19:af:76:cd:6f:a9:d7:1a:2a:8a:c0:7b:e7:ff:
                    24:e3:89:d8:a9:f2:10:c8:b7:04:a6:59:ed:1f:8e:7c:
                    a8:14:66:f8:86:e7:33:54:f2:5a:4e:88:78:a1:8c:a4:
                    f8:f9:89:1c:b8:92:1a:68:1f:dd:8f:5c:94:82:4f:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:10:40:3c:19:e1:8a:d1:3e:c7:51:a7:6b:21:98:df:
        97:c8:5c:7c:2b:93:2f:44:45:5f:31:7b:0a:cb:19:83:
        71:b2:5d:fc:49:90:49:16:67:5c:0a:bc:4e:df:b0:a3:
        35:ab:3c:6f:2d:f4:bb:27:90:5f:96:74:fd:a9:d6:25:
        56:07:c9:11:45:99:7d:38:a5:d0:39:ef:e4:2b:81:03:
        86:bc:01:9e:e6:36:ee:27:22:c4:37:08:14:d5:38:63:
        5b:07:91:a0:11:c1:7b:05:4b:66:28:ed:23:4c:c3:e1:
        a1:85:c7:36:0d:3d:5e:ce:f0:a3:72:a5:ec:ee:3d:7a:
        56:c2:38:74:3c:89:39:8e:d2:67:16:70:f4:78:4e:77:
        59:9b:16:b5:b5:a8:27:d0:bb:63:47:88:5c:f0:ec:9c:
        28:60:53:68:93:af:b7:6f:c1:0c:c8:0a:31:a5:b3:27:
        62:3e:9d:93:4b:c0:96:35:0e:45:b9:3e:32:78:d4:bf:
        bc:0d:27:c8:06:a1:a5:ad:e5:fb:ad:c9:dd:9a:7b:81:
        a9:36:a5:1d:63:7e:c0:68:5a:12:b6:4b:33:9f:56:1a:
        17:d6:71:02:2d:48:ef:c8:18:91:2d:6b:8a:14:d0:64:
        39:28:d5:bb:b1:cc:d1:31:c1:5c:0e:e8:e8:88:22:d3
    Fingerprint (SHA-256):
        27:72:25:B6:F8:C9:E5:07:30:44:D8:F2:A2:63:A6:50:32:BD:2A:87:49:5F:F0:D0:D6:44:0C:84:7D:3F:F3:BD
    Fingerprint (SHA1):
        B2:90:92:F9:C1:5D:D8:03:AC:F7:24:E4:5F:3B:CB:A7:E7:E1:8D:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10735: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160889 (0x1dee5df9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:30 2017
            Not After : Mon May 02 16:10:30 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:53:0f:4f:8c:ad:d7:76:7e:e0:03:03:74:9f:81:5e:
                    89:9c:9c:7f:a8:57:f8:d8:df:8a:07:6e:74:42:2b:91:
                    80:62:d5:8a:b8:9b:dc:d0:6a:1b:f3:85:22:eb:fb:a1:
                    5a:6b:ed:cf:a4:19:cb:cd:f2:cd:78:ca:35:fa:9c:1c:
                    c1:3d:d5:29:04:92:9d:33:f6:11:31:d8:c6:a6:2b:02:
                    72:cf:44:2e:4b:10:75:4f:b8:f3:62:02:51:0c:79:16:
                    3d:54:89:c4:ce:03:57:e8:00:ef:26:43:af:dd:7e:6c:
                    5a:0b:8c:04:c4:f9:3b:e5:d9:df:e8:64:98:57:cd:01:
                    4b:bc:b8:2c:56:f1:98:9a:e7:1b:f6:91:6e:ad:2b:5f:
                    92:43:83:50:98:cb:17:b3:d5:84:45:4f:4b:1d:5d:29:
                    6a:48:76:1f:76:ba:0f:63:28:cf:11:0d:df:30:db:17:
                    fc:ac:2a:01:92:fc:53:81:c2:ee:af:c0:24:c7:a8:09:
                    09:ad:19:af:76:cd:6f:a9:d7:1a:2a:8a:c0:7b:e7:ff:
                    24:e3:89:d8:a9:f2:10:c8:b7:04:a6:59:ed:1f:8e:7c:
                    a8:14:66:f8:86:e7:33:54:f2:5a:4e:88:78:a1:8c:a4:
                    f8:f9:89:1c:b8:92:1a:68:1f:dd:8f:5c:94:82:4f:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1c:10:40:3c:19:e1:8a:d1:3e:c7:51:a7:6b:21:98:df:
        97:c8:5c:7c:2b:93:2f:44:45:5f:31:7b:0a:cb:19:83:
        71:b2:5d:fc:49:90:49:16:67:5c:0a:bc:4e:df:b0:a3:
        35:ab:3c:6f:2d:f4:bb:27:90:5f:96:74:fd:a9:d6:25:
        56:07:c9:11:45:99:7d:38:a5:d0:39:ef:e4:2b:81:03:
        86:bc:01:9e:e6:36:ee:27:22:c4:37:08:14:d5:38:63:
        5b:07:91:a0:11:c1:7b:05:4b:66:28:ed:23:4c:c3:e1:
        a1:85:c7:36:0d:3d:5e:ce:f0:a3:72:a5:ec:ee:3d:7a:
        56:c2:38:74:3c:89:39:8e:d2:67:16:70:f4:78:4e:77:
        59:9b:16:b5:b5:a8:27:d0:bb:63:47:88:5c:f0:ec:9c:
        28:60:53:68:93:af:b7:6f:c1:0c:c8:0a:31:a5:b3:27:
        62:3e:9d:93:4b:c0:96:35:0e:45:b9:3e:32:78:d4:bf:
        bc:0d:27:c8:06:a1:a5:ad:e5:fb:ad:c9:dd:9a:7b:81:
        a9:36:a5:1d:63:7e:c0:68:5a:12:b6:4b:33:9f:56:1a:
        17:d6:71:02:2d:48:ef:c8:18:91:2d:6b:8a:14:d0:64:
        39:28:d5:bb:b1:cc:d1:31:c1:5c:0e:e8:e8:88:22:d3
    Fingerprint (SHA-256):
        27:72:25:B6:F8:C9:E5:07:30:44:D8:F2:A2:63:A6:50:32:BD:2A:87:49:5F:F0:D0:D6:44:0C:84:7D:3F:F3:BD
    Fingerprint (SHA1):
        B2:90:92:F9:C1:5D:D8:03:AC:F7:24:E4:5F:3B:CB:A7:E7:E1:8D:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10736: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160890 (0x1dee5dfa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:31 2017
            Not After : Mon May 02 16:10:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:8f:d4:76:88:ad:62:b6:ac:4e:ed:15:84:42:a3:e5:
                    e0:48:53:e2:ce:fc:5e:c2:25:ba:9e:1a:e6:05:16:a3:
                    f6:8a:45:ba:f0:8c:a5:22:24:55:db:50:98:2b:ed:cd:
                    43:ed:6c:9a:05:7f:f8:b2:3c:ba:94:01:d2:55:34:b8:
                    e6:31:ee:50:4f:5a:06:cd:c3:da:8a:35:72:4c:e6:75:
                    76:b4:5b:05:cf:34:33:52:a2:35:75:36:3d:b2:85:9b:
                    d6:b8:02:ed:56:99:d1:26:5d:bf:1b:53:2f:93:c4:fe:
                    c9:9d:42:07:64:c8:87:dc:81:75:c8:a3:75:bd:0d:8f:
                    68:5c:e0:0a:4d:df:be:3b:53:10:dd:f8:4b:f5:4b:bd:
                    98:9e:10:ce:4c:06:8f:8e:82:47:5e:16:c7:3a:6f:72:
                    fd:bd:3a:d5:2c:35:3f:c2:3e:dc:4c:83:44:45:ea:95:
                    af:f7:2d:64:cf:8d:7a:f2:9d:22:4f:e2:45:ba:79:be:
                    35:21:2e:e5:4c:53:52:bc:08:ff:d3:c1:c8:f7:37:0d:
                    ca:0a:66:0f:a1:70:10:45:33:78:fa:84:df:6d:e6:5a:
                    be:65:f4:e6:07:3b:b8:0d:ba:02:d2:cc:be:9e:f2:55:
                    f0:11:4f:c3:24:fa:4c:c9:02:35:42:31:c5:1e:20:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:ab:ef:4a:cf:01:49:f9:63:6c:79:42:a8:28:ac:95:
        f8:98:26:93:f9:c7:3e:10:44:3e:08:b7:35:d3:d5:35:
        dd:e1:de:8c:ad:98:a5:2d:f2:6e:67:b7:29:7b:64:c7:
        8a:a0:a5:13:85:dd:31:11:88:dd:17:3a:9c:48:da:3b:
        3d:c9:8c:ac:b1:14:5d:25:ba:81:d0:bb:53:ca:7b:91:
        0d:e1:d1:01:8f:a5:d2:f4:b5:70:cd:67:df:1b:3c:8e:
        81:88:0e:78:18:e5:e3:90:9e:c0:dd:30:9e:6d:2a:7f:
        22:6b:1d:87:6f:a3:5a:37:82:e4:64:a2:fd:40:46:a4:
        20:b5:92:18:5b:d3:3c:38:7d:35:62:77:09:51:f9:7a:
        36:99:93:e2:a1:dd:be:bd:6e:23:6e:10:21:df:b0:9b:
        4c:37:f6:e4:79:d4:3a:19:34:42:f7:0e:9a:70:a5:62:
        c7:22:f0:5e:d1:e5:b2:73:2d:f1:e0:59:eb:a0:e3:7f:
        4e:99:74:e9:02:8f:fb:0f:dd:f7:8f:c2:14:61:84:71:
        c0:b2:ec:a0:79:4b:eb:09:0a:6a:ae:81:ba:cb:5a:53:
        7d:cb:97:f8:27:fe:d8:c3:7f:28:1f:cd:4d:0f:0b:0c:
        61:63:8d:12:5e:88:44:0a:86:07:20:a3:ef:41:af:b5
    Fingerprint (SHA-256):
        68:33:05:77:E3:B7:78:A8:9E:09:A5:35:6F:2E:E2:A9:3A:01:B5:91:7F:75:D2:7D:26:DE:AC:42:B3:7E:95:FB
    Fingerprint (SHA1):
        E1:4E:CB:C1:A0:C1:A8:60:22:E5:96:0B:DD:CF:3F:C0:91:99:E8:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10737: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160890 (0x1dee5dfa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:10:31 2017
            Not After : Mon May 02 16:10:31 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ac:8f:d4:76:88:ad:62:b6:ac:4e:ed:15:84:42:a3:e5:
                    e0:48:53:e2:ce:fc:5e:c2:25:ba:9e:1a:e6:05:16:a3:
                    f6:8a:45:ba:f0:8c:a5:22:24:55:db:50:98:2b:ed:cd:
                    43:ed:6c:9a:05:7f:f8:b2:3c:ba:94:01:d2:55:34:b8:
                    e6:31:ee:50:4f:5a:06:cd:c3:da:8a:35:72:4c:e6:75:
                    76:b4:5b:05:cf:34:33:52:a2:35:75:36:3d:b2:85:9b:
                    d6:b8:02:ed:56:99:d1:26:5d:bf:1b:53:2f:93:c4:fe:
                    c9:9d:42:07:64:c8:87:dc:81:75:c8:a3:75:bd:0d:8f:
                    68:5c:e0:0a:4d:df:be:3b:53:10:dd:f8:4b:f5:4b:bd:
                    98:9e:10:ce:4c:06:8f:8e:82:47:5e:16:c7:3a:6f:72:
                    fd:bd:3a:d5:2c:35:3f:c2:3e:dc:4c:83:44:45:ea:95:
                    af:f7:2d:64:cf:8d:7a:f2:9d:22:4f:e2:45:ba:79:be:
                    35:21:2e:e5:4c:53:52:bc:08:ff:d3:c1:c8:f7:37:0d:
                    ca:0a:66:0f:a1:70:10:45:33:78:fa:84:df:6d:e6:5a:
                    be:65:f4:e6:07:3b:b8:0d:ba:02:d2:cc:be:9e:f2:55:
                    f0:11:4f:c3:24:fa:4c:c9:02:35:42:31:c5:1e:20:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a4:ab:ef:4a:cf:01:49:f9:63:6c:79:42:a8:28:ac:95:
        f8:98:26:93:f9:c7:3e:10:44:3e:08:b7:35:d3:d5:35:
        dd:e1:de:8c:ad:98:a5:2d:f2:6e:67:b7:29:7b:64:c7:
        8a:a0:a5:13:85:dd:31:11:88:dd:17:3a:9c:48:da:3b:
        3d:c9:8c:ac:b1:14:5d:25:ba:81:d0:bb:53:ca:7b:91:
        0d:e1:d1:01:8f:a5:d2:f4:b5:70:cd:67:df:1b:3c:8e:
        81:88:0e:78:18:e5:e3:90:9e:c0:dd:30:9e:6d:2a:7f:
        22:6b:1d:87:6f:a3:5a:37:82:e4:64:a2:fd:40:46:a4:
        20:b5:92:18:5b:d3:3c:38:7d:35:62:77:09:51:f9:7a:
        36:99:93:e2:a1:dd:be:bd:6e:23:6e:10:21:df:b0:9b:
        4c:37:f6:e4:79:d4:3a:19:34:42:f7:0e:9a:70:a5:62:
        c7:22:f0:5e:d1:e5:b2:73:2d:f1:e0:59:eb:a0:e3:7f:
        4e:99:74:e9:02:8f:fb:0f:dd:f7:8f:c2:14:61:84:71:
        c0:b2:ec:a0:79:4b:eb:09:0a:6a:ae:81:ba:cb:5a:53:
        7d:cb:97:f8:27:fe:d8:c3:7f:28:1f:cd:4d:0f:0b:0c:
        61:63:8d:12:5e:88:44:0a:86:07:20:a3:ef:41:af:b5
    Fingerprint (SHA-256):
        68:33:05:77:E3:B7:78:A8:9E:09:A5:35:6F:2E:E2:A9:3A:01:B5:91:7F:75:D2:7D:26:DE:AC:42:B3:7E:95:FB
    Fingerprint (SHA1):
        E1:4E:CB:C1:A0:C1:A8:60:22:E5:96:0B:DD:CF:3F:C0:91:99:E8:92
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10738: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160891 (0x1dee5dfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:10:32 2017
            Not After : Mon May 02 16:10:32 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:99:5e:25:82:c8:a4:e4:d3:b3:f1:95:a6:f8:90:59:
                    9e:e0:57:cd:73:8d:c4:05:7d:07:dc:7a:f3:f4:b3:58:
                    07:f5:de:4b:9c:c5:a3:4e:0f:b9:02:07:6f:46:b0:0a:
                    fe:73:12:8e:68:57:f5:6a:9e:c0:44:c0:33:5f:24:90:
                    0f:9b:6e:64:60:62:14:b0:c3:81:21:84:b8:f3:d9:a5:
                    c5:f9:7e:3b:5d:2c:f1:1b:ad:88:40:51:68:86:16:e6:
                    38:63:6d:e2:15:e7:35:8b:5c:bf:78:ea:d0:8c:c1:c6:
                    69:d0:5d:d0:21:e4:04:b2:26:49:77:f8:58:96:05:d0:
                    7a:c3:99:93:8c:0b:89:14:11:ae:0f:7c:de:89:5f:5a:
                    aa:29:3c:ff:5f:c3:c7:46:bd:2a:0e:f9:8e:8b:3e:09:
                    62:35:ed:1e:02:12:62:ce:cf:84:2f:e4:8d:c5:92:94:
                    23:bd:e7:6d:4c:96:a0:c5:fe:90:23:f0:d3:5b:22:41:
                    19:e7:a2:9f:27:fb:37:e8:13:b2:52:61:63:f1:67:16:
                    03:e8:73:f3:67:0e:26:85:7c:69:a1:b1:10:ad:71:ae:
                    ce:a0:0a:07:56:29:e4:09:27:4d:38:0c:c0:9d:89:fd:
                    39:52:54:41:d4:98:3b:9b:aa:96:e3:be:4f:f4:81:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:8c:ec:99:86:5f:f7:04:19:32:71:68:03:61:a6:84:
        8a:b0:42:9b:5f:6e:41:4a:3d:12:85:dc:e2:50:8a:f1:
        35:da:de:1a:ad:31:3c:cd:7b:b0:33:0d:fb:2a:13:5f:
        a2:80:71:ba:b3:b4:33:39:62:5a:71:c9:69:fd:8e:82:
        06:cd:34:af:e6:6d:51:90:1a:8a:92:1c:5a:fb:2f:cd:
        f1:5a:c7:b9:9b:b3:c5:0d:87:3a:61:df:65:10:8c:b3:
        14:bd:d5:5f:f8:28:6d:e7:7c:f4:a2:b9:59:26:bd:db:
        01:5b:c0:88:ab:d5:ff:a9:00:7d:2c:08:a1:e8:ba:6d:
        10:30:7a:25:b4:aa:7a:35:c7:38:fd:58:7a:d9:fe:18:
        fc:d2:76:e8:e2:37:29:3c:64:90:f3:92:2a:d3:14:76:
        1f:18:9b:b3:aa:6d:9a:a4:7e:e1:6e:a4:84:67:68:ea:
        e1:f5:91:40:df:aa:03:a6:50:51:88:c1:ac:85:b9:be:
        70:d2:05:74:35:2a:9c:1a:9e:e9:fa:fd:5d:03:c0:04:
        56:6b:fd:f0:9d:15:9b:25:9d:ba:9e:de:a5:e8:fd:d0:
        40:fa:61:78:2a:98:dc:ce:2b:fe:6a:a4:eb:39:0a:8f:
        94:d6:51:d5:95:74:49:d5:70:da:fa:e6:0f:f0:9c:b9
    Fingerprint (SHA-256):
        93:8C:32:A6:43:CF:8F:44:75:DB:30:F0:82:DE:7B:99:A6:89:9D:3A:65:DF:EC:6F:BB:D2:84:68:C1:00:D0:EB
    Fingerprint (SHA1):
        0A:26:73:04:19:80:AA:3A:A5:75:3C:71:74:9C:D0:15:40:EB:7F:60
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10739: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160891 (0x1dee5dfb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:10:32 2017
            Not After : Mon May 02 16:10:32 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d6:99:5e:25:82:c8:a4:e4:d3:b3:f1:95:a6:f8:90:59:
                    9e:e0:57:cd:73:8d:c4:05:7d:07:dc:7a:f3:f4:b3:58:
                    07:f5:de:4b:9c:c5:a3:4e:0f:b9:02:07:6f:46:b0:0a:
                    fe:73:12:8e:68:57:f5:6a:9e:c0:44:c0:33:5f:24:90:
                    0f:9b:6e:64:60:62:14:b0:c3:81:21:84:b8:f3:d9:a5:
                    c5:f9:7e:3b:5d:2c:f1:1b:ad:88:40:51:68:86:16:e6:
                    38:63:6d:e2:15:e7:35:8b:5c:bf:78:ea:d0:8c:c1:c6:
                    69:d0:5d:d0:21:e4:04:b2:26:49:77:f8:58:96:05:d0:
                    7a:c3:99:93:8c:0b:89:14:11:ae:0f:7c:de:89:5f:5a:
                    aa:29:3c:ff:5f:c3:c7:46:bd:2a:0e:f9:8e:8b:3e:09:
                    62:35:ed:1e:02:12:62:ce:cf:84:2f:e4:8d:c5:92:94:
                    23:bd:e7:6d:4c:96:a0:c5:fe:90:23:f0:d3:5b:22:41:
                    19:e7:a2:9f:27:fb:37:e8:13:b2:52:61:63:f1:67:16:
                    03:e8:73:f3:67:0e:26:85:7c:69:a1:b1:10:ad:71:ae:
                    ce:a0:0a:07:56:29:e4:09:27:4d:38:0c:c0:9d:89:fd:
                    39:52:54:41:d4:98:3b:9b:aa:96:e3:be:4f:f4:81:37
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:8c:ec:99:86:5f:f7:04:19:32:71:68:03:61:a6:84:
        8a:b0:42:9b:5f:6e:41:4a:3d:12:85:dc:e2:50:8a:f1:
        35:da:de:1a:ad:31:3c:cd:7b:b0:33:0d:fb:2a:13:5f:
        a2:80:71:ba:b3:b4:33:39:62:5a:71:c9:69:fd:8e:82:
        06:cd:34:af:e6:6d:51:90:1a:8a:92:1c:5a:fb:2f:cd:
        f1:5a:c7:b9:9b:b3:c5:0d:87:3a:61:df:65:10:8c:b3:
        14:bd:d5:5f:f8:28:6d:e7:7c:f4:a2:b9:59:26:bd:db:
        01:5b:c0:88:ab:d5:ff:a9:00:7d:2c:08:a1:e8:ba:6d:
        10:30:7a:25:b4:aa:7a:35:c7:38:fd:58:7a:d9:fe:18:
        fc:d2:76:e8:e2:37:29:3c:64:90:f3:92:2a:d3:14:76:
        1f:18:9b:b3:aa:6d:9a:a4:7e:e1:6e:a4:84:67:68:ea:
        e1:f5:91:40:df:aa:03:a6:50:51:88:c1:ac:85:b9:be:
        70:d2:05:74:35:2a:9c:1a:9e:e9:fa:fd:5d:03:c0:04:
        56:6b:fd:f0:9d:15:9b:25:9d:ba:9e:de:a5:e8:fd:d0:
        40:fa:61:78:2a:98:dc:ce:2b:fe:6a:a4:eb:39:0a:8f:
        94:d6:51:d5:95:74:49:d5:70:da:fa:e6:0f:f0:9c:b9
    Fingerprint (SHA-256):
        93:8C:32:A6:43:CF:8F:44:75:DB:30:F0:82:DE:7B:99:A6:89:9D:3A:65:DF:EC:6F:BB:D2:84:68:C1:00:D0:EB
    Fingerprint (SHA1):
        0A:26:73:04:19:80:AA:3A:A5:75:3C:71:74:9C:D0:15:40:EB:7F:60
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10740: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #10741: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160894 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10742: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #10743: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10744: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10745: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502160895   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10746: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10747: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10748: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10749: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502160896   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10750: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10751: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #10752: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10753: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502160897   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10754: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10755: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #10756: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10757: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502160898   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10758: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10759: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #10760: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10761: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502160899   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10762: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10763: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #10764: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10765: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502160900   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10766: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10767: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10768: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #10769: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #10770: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10771: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #10772: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160894 (0x1dee5dfe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:40 2017
            Not After : Mon May 02 16:10:40 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:b2:d5:9f:38:a2:71:b2:98:e6:5d:34:ca:88:9c:69:
                    5d:bb:4c:ba:3c:3b:3e:1a:3f:25:8e:c9:3b:4e:18:5c:
                    78:7a:7c:48:4b:c2:13:a4:a4:e4:77:85:d8:21:44:70:
                    40:51:9d:f4:9e:4b:95:91:25:df:20:3a:e9:c9:2a:68:
                    5d:36:7a:db:43:6c:81:49:0a:d5:54:97:12:4e:5e:6e:
                    c2:43:7f:6e:38:e8:1a:57:1b:e9:81:78:bf:6e:05:e4:
                    3e:08:11:2a:27:bc:ff:e3:4c:a5:b4:fe:cf:ab:12:b3:
                    e0:0e:bf:01:24:50:7d:1d:d5:52:66:65:6d:7c:64:d9:
                    ad:cd:12:1e:8a:8f:02:54:28:82:e5:b2:01:45:34:b3:
                    d8:a0:66:f5:6b:6b:de:db:d1:a5:6a:d4:3d:9c:5a:df:
                    d1:e7:7d:87:1e:51:e6:94:16:39:6b:42:be:0a:75:bc:
                    b0:9f:45:e9:1b:d4:c3:43:6a:48:22:18:d4:f1:dc:51:
                    fc:1f:bb:89:74:a1:cf:92:6c:7c:bf:eb:1e:7e:d9:55:
                    16:86:a4:6a:b2:a5:0e:ca:e9:57:2a:06:77:2e:99:87:
                    c2:f9:9b:bf:b1:47:61:b5:95:c7:23:f5:a0:49:0e:03:
                    f9:40:00:c4:c8:b8:04:2b:49:a9:7f:90:aa:3a:cf:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:b3:2c:cb:db:39:11:99:db:52:e4:b0:a1:14:7f:69:
        c5:82:b0:ce:9f:5f:60:1f:d8:4d:ba:0d:e5:91:5c:39:
        1a:90:12:0f:83:4c:56:88:df:e4:3a:18:97:5f:21:6c:
        8b:77:d4:bc:ff:09:41:38:1d:2f:9e:fc:34:cc:25:33:
        b7:a1:98:24:bd:7d:17:fc:b1:d7:b4:ab:90:c1:ab:65:
        f3:ba:cd:19:fd:20:26:91:a3:6f:2c:f2:d8:2c:54:21:
        1f:7b:da:2e:d2:7c:9f:b7:a4:f2:d2:2a:81:45:27:bf:
        92:ed:3c:c1:84:c7:de:57:20:da:8d:2c:5f:88:99:af:
        e7:53:b3:e4:d4:38:e4:f9:7e:30:96:cb:8b:16:cd:3b:
        73:88:51:9f:32:e0:f3:a2:cd:ef:c6:08:70:ae:d8:ff:
        4a:ce:ef:6d:3c:db:83:53:36:26:36:62:11:85:18:30:
        38:4c:cb:b4:62:97:ee:b5:26:d4:4f:05:e4:0f:c4:77:
        3f:8f:ee:82:be:51:da:9f:ff:1a:b3:4f:85:54:fa:23:
        9c:6c:73:a9:75:4e:01:eb:0b:9a:f7:f2:36:bf:8e:e7:
        22:f2:19:59:f4:25:90:9a:67:63:38:a1:d1:ca:99:23:
        6a:31:bb:55:a1:6e:67:1e:5b:33:75:e6:1f:d4:50:f6
    Fingerprint (SHA-256):
        CF:50:0B:DB:0B:66:7D:5A:09:AE:8A:14:09:1A:F5:49:1B:A1:A9:F7:00:9A:E5:69:A1:1D:EC:7A:27:C5:5B:29
    Fingerprint (SHA1):
        10:91:8D:67:3F:2D:B0:A8:83:E7:F1:B1:76:17:7A:21:17:D5:91:71
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10773: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10774: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10775: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10776: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160894 (0x1dee5dfe)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:40 2017
            Not After : Mon May 02 16:10:40 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:b2:d5:9f:38:a2:71:b2:98:e6:5d:34:ca:88:9c:69:
                    5d:bb:4c:ba:3c:3b:3e:1a:3f:25:8e:c9:3b:4e:18:5c:
                    78:7a:7c:48:4b:c2:13:a4:a4:e4:77:85:d8:21:44:70:
                    40:51:9d:f4:9e:4b:95:91:25:df:20:3a:e9:c9:2a:68:
                    5d:36:7a:db:43:6c:81:49:0a:d5:54:97:12:4e:5e:6e:
                    c2:43:7f:6e:38:e8:1a:57:1b:e9:81:78:bf:6e:05:e4:
                    3e:08:11:2a:27:bc:ff:e3:4c:a5:b4:fe:cf:ab:12:b3:
                    e0:0e:bf:01:24:50:7d:1d:d5:52:66:65:6d:7c:64:d9:
                    ad:cd:12:1e:8a:8f:02:54:28:82:e5:b2:01:45:34:b3:
                    d8:a0:66:f5:6b:6b:de:db:d1:a5:6a:d4:3d:9c:5a:df:
                    d1:e7:7d:87:1e:51:e6:94:16:39:6b:42:be:0a:75:bc:
                    b0:9f:45:e9:1b:d4:c3:43:6a:48:22:18:d4:f1:dc:51:
                    fc:1f:bb:89:74:a1:cf:92:6c:7c:bf:eb:1e:7e:d9:55:
                    16:86:a4:6a:b2:a5:0e:ca:e9:57:2a:06:77:2e:99:87:
                    c2:f9:9b:bf:b1:47:61:b5:95:c7:23:f5:a0:49:0e:03:
                    f9:40:00:c4:c8:b8:04:2b:49:a9:7f:90:aa:3a:cf:83
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:b3:2c:cb:db:39:11:99:db:52:e4:b0:a1:14:7f:69:
        c5:82:b0:ce:9f:5f:60:1f:d8:4d:ba:0d:e5:91:5c:39:
        1a:90:12:0f:83:4c:56:88:df:e4:3a:18:97:5f:21:6c:
        8b:77:d4:bc:ff:09:41:38:1d:2f:9e:fc:34:cc:25:33:
        b7:a1:98:24:bd:7d:17:fc:b1:d7:b4:ab:90:c1:ab:65:
        f3:ba:cd:19:fd:20:26:91:a3:6f:2c:f2:d8:2c:54:21:
        1f:7b:da:2e:d2:7c:9f:b7:a4:f2:d2:2a:81:45:27:bf:
        92:ed:3c:c1:84:c7:de:57:20:da:8d:2c:5f:88:99:af:
        e7:53:b3:e4:d4:38:e4:f9:7e:30:96:cb:8b:16:cd:3b:
        73:88:51:9f:32:e0:f3:a2:cd:ef:c6:08:70:ae:d8:ff:
        4a:ce:ef:6d:3c:db:83:53:36:26:36:62:11:85:18:30:
        38:4c:cb:b4:62:97:ee:b5:26:d4:4f:05:e4:0f:c4:77:
        3f:8f:ee:82:be:51:da:9f:ff:1a:b3:4f:85:54:fa:23:
        9c:6c:73:a9:75:4e:01:eb:0b:9a:f7:f2:36:bf:8e:e7:
        22:f2:19:59:f4:25:90:9a:67:63:38:a1:d1:ca:99:23:
        6a:31:bb:55:a1:6e:67:1e:5b:33:75:e6:1f:d4:50:f6
    Fingerprint (SHA-256):
        CF:50:0B:DB:0B:66:7D:5A:09:AE:8A:14:09:1A:F5:49:1B:A1:A9:F7:00:9A:E5:69:A1:1D:EC:7A:27:C5:5B:29
    Fingerprint (SHA1):
        10:91:8D:67:3F:2D:B0:A8:83:E7:F1:B1:76:17:7A:21:17:D5:91:71
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10777: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10778: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #10779: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160901 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10780: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #10781: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10782: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10783: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502160902   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10784: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10785: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #10786: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10787: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502160903   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10788: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10789: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #10790: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10791: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502160904   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10792: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10793: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #10794: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10795: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502160905   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10796: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10797: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #10798: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10799: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502160906   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10800: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10801: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #10802: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10803: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502160907   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10804: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10805: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #10806: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10807: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502160908   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10808: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10809: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #10810: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10811: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502160909   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10812: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10813: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #10814: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10815: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502160910   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10816: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10817: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #10818: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10819: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502160911   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10820: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10821: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #10822: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10823: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502160912   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10824: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10825: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #10826: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10827: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502160913   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10828: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10829: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #10830: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10831: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502160914   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10832: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10833: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #10834: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10835: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502160915   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10836: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10837: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #10838: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10839: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502160916   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10840: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10841: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #10842: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10843: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502160917   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10844: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10845: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #10846: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10847: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502160918   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #10848: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10849: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #10850: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10851: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502160919   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10852: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10853: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #10854: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10855: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502160920   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10856: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10857: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #10858: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10859: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502160921   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10860: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10861: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #10862: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10863: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502160922   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10864: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10865: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #10866: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10867: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502160923   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10868: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10869: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #10870: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10871: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502160924   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10872: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10873: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #10874: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10875: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502160925   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10876: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10877: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #10878: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10879: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502160926   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10880: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10881: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #10882: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10883: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502160927   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10884: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10885: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #10886: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10887: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502160928   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10888: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10889: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #10890: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10891: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502160929   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10892: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10893: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #10894: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10895: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502160930   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10896: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10897: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10898: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10899: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10900: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10901: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10902: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10903: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10904: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10905: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10906: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10907: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10908: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10909: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10910: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10911: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10912: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10913: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10914: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10915: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10916: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10917: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10918: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10919: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10920: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160901 (0x1dee5e05)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:10:53 2017
            Not After : Mon May 02 16:10:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ce:b6:45:8f:c3:6b:46:de:57:ee:52:0c:37:14:e3:25:
                    5e:6c:db:32:0d:66:11:4f:a7:53:f7:e3:1e:14:a7:95:
                    14:f6:69:14:3d:70:0a:29:fa:ed:e0:bc:98:91:66:ae:
                    cf:1e:f0:b1:94:ce:46:ef:73:05:c1:ae:b9:8a:30:80:
                    c0:30:14:de:cf:91:33:8b:76:da:19:4e:7b:2e:e0:65:
                    80:1f:e2:5d:f4:e9:69:7e:ff:1c:1a:47:fe:41:80:e8:
                    cd:16:62:1f:ed:0f:c3:68:49:69:dc:3c:a8:84:ea:61:
                    3a:46:aa:13:a7:85:34:06:af:16:c6:ba:94:9f:d9:a9:
                    16:e1:9d:8e:2c:22:fa:9d:b3:92:d2:70:6e:bb:f1:e9:
                    eb:e2:32:ba:82:75:0e:18:d2:94:68:2c:f6:4f:2b:5c:
                    17:5f:15:ad:50:a6:c7:b9:fe:05:a9:6c:e1:c0:ce:cc:
                    f7:c2:4c:d8:98:ae:e4:4c:4e:86:d6:f4:02:d3:2a:19:
                    40:14:26:8c:1d:7c:28:79:35:1c:7f:b7:e2:55:7e:df:
                    d7:d7:f8:56:1f:4b:21:99:34:df:fa:ce:9c:90:21:d7:
                    2b:b6:f7:aa:8c:75:8a:f2:23:1a:0b:7f:78:38:79:54:
                    b4:ce:a1:65:dc:10:60:d3:c3:d7:bb:6d:8c:9c:e1:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        60:b4:9b:2b:29:59:27:b0:de:cb:23:78:43:5a:89:49:
        48:fa:98:96:05:ef:9b:72:97:a1:01:a7:70:b1:6d:b0:
        f7:44:6c:5c:a6:b6:c0:81:77:fc:e4:55:2d:df:e7:41:
        72:0b:46:8a:08:62:d8:81:56:c7:08:83:eb:9c:86:2d:
        31:b7:76:60:e7:dd:0f:7a:f4:7a:0a:2c:8e:cb:d7:96:
        78:78:ba:66:7d:7e:d8:f2:5f:96:92:45:2c:dd:30:fe:
        73:f4:79:c7:a3:2b:35:78:0a:c3:ff:45:e1:55:0e:c0:
        bc:b9:3d:3c:c4:af:45:81:21:a1:c4:c3:92:58:e2:cc:
        4f:5d:08:41:79:e8:34:d1:63:d2:73:8c:69:2d:0f:93:
        77:98:51:14:c8:71:3e:d1:66:ed:08:1e:6d:13:be:ce:
        65:b1:f5:03:a9:d5:e6:ca:be:40:9a:f2:33:2e:fa:3c:
        09:85:13:8f:40:40:be:71:85:fb:ad:e3:17:ab:ba:a8:
        46:3a:0f:45:51:53:dd:d6:84:32:f5:fa:ca:97:97:51:
        f7:93:d4:1e:6f:37:53:28:e9:28:3e:18:49:a4:94:6d:
        21:4f:ee:d8:26:7f:17:64:4d:c9:a9:20:bb:02:a8:43:
        6a:50:74:d1:50:b7:1b:8c:72:f8:79:f3:9a:83:80:a5
    Fingerprint (SHA-256):
        4A:EC:B1:56:78:43:DA:78:3C:29:E4:E8:EE:5D:48:43:38:E5:72:F7:5A:DB:55:AA:32:BE:A5:60:D1:4A:FF:B8
    Fingerprint (SHA1):
        DA:14:64:21:DB:6B:10:5F:B6:2B:4E:2B:F1:6E:60:0B:09:D7:9A:44
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #10921: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10922: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10923: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160931 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10924: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10925: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #10926: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10927: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502160932   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #10928: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10929: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #10930: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10931: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502160933   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10932: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10933: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #10934: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10935: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502160934   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10936: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10937: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #10938: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10939: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502160935   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10940: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10941: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #10942: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10943: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502160936   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10944: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10945: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #10946: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10947: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502160937   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10948: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10949: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10950: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160931 (0x1dee5e23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:11:39 2017
            Not After : Mon May 02 16:11:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:2a:95:a6:1a:24:1d:21:05:ae:55:ef:9c:d7:5f:c9:
                    bb:46:3d:dc:c4:f9:b3:b8:7b:1a:72:74:e1:de:b1:aa:
                    12:6e:1d:b4:b1:ed:ca:1f:fe:d7:69:b9:8a:39:3c:49:
                    ba:87:35:86:08:0a:1a:13:3d:a0:be:03:0d:6d:05:4a:
                    b6:4b:0a:d7:a6:56:53:99:1b:3f:37:ef:81:b9:c0:89:
                    57:2a:8e:d0:c5:93:ca:9e:bc:0c:6c:82:7e:ed:98:d0:
                    62:7b:06:70:6d:00:ea:55:5d:7d:e7:0e:d2:b7:fc:6d:
                    29:1c:5d:58:88:8a:19:01:85:0a:5f:50:11:54:77:5f:
                    05:83:82:02:42:5f:7e:1d:d7:2c:0f:f9:90:81:f8:c2:
                    fa:9e:24:23:4b:bb:06:ec:62:18:a6:78:f0:eb:83:e5:
                    ca:40:59:2c:fa:95:3d:8c:fd:c5:20:4f:b9:90:79:8e:
                    9b:c1:dc:e0:a9:19:ec:0e:4e:63:5f:48:e5:c0:5f:6f:
                    71:91:1c:84:57:47:94:90:49:85:06:ab:99:fa:a7:75:
                    d7:30:a4:0f:2e:62:d5:40:a3:15:7a:54:65:5b:9f:15:
                    fa:e7:97:d3:70:d2:80:da:26:e8:ab:ce:8a:e9:87:9c:
                    66:1d:61:4d:34:85:27:a3:41:4a:ea:9d:63:93:10:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:d4:c9:55:01:7d:46:1c:25:11:17:a7:35:99:9a:e0:
        9f:ce:5d:d2:e0:4d:64:0e:33:5c:76:e3:41:f6:ef:3b:
        27:de:b3:43:23:73:6e:c0:f1:58:5a:b8:d5:5c:35:cd:
        98:d0:fd:66:ad:44:d8:80:c4:3b:c0:64:a1:c9:b8:73:
        44:7e:e9:86:b7:95:86:9a:f6:d1:71:6d:f3:0c:16:d1:
        d5:94:66:65:1f:0d:65:79:ce:34:30:11:7d:77:c4:da:
        6c:4a:9d:21:45:66:75:76:21:90:f2:4b:9a:2e:6d:37:
        8a:e1:1c:e0:d3:cc:60:e4:ab:66:f0:17:7c:aa:35:5f:
        9d:ec:0f:80:90:d7:df:dc:80:a4:7e:5f:31:8e:70:9a:
        cb:1f:27:a4:b8:cb:1e:93:25:2c:e0:17:ec:68:50:c4:
        a1:f4:10:3b:cb:63:89:e1:ce:f4:54:a2:3f:bf:28:b0:
        64:93:c9:62:e1:68:8c:38:f5:c4:c7:49:07:41:7b:94:
        d4:dd:e4:63:43:d3:7b:d9:79:94:11:af:ba:4c:e5:d2:
        69:a4:7e:c7:5b:f1:c3:9a:63:c0:d1:58:34:5d:4a:83:
        9c:82:c9:89:7e:33:86:71:f1:b0:75:4e:d0:a3:83:af:
        5e:b3:fc:3c:b7:4a:1d:5e:87:05:3e:6a:c0:b2:0b:5b
    Fingerprint (SHA-256):
        35:97:31:EB:50:23:61:B4:5A:30:1C:22:DB:0D:D0:F2:41:A8:1E:8B:1B:0D:78:EA:BC:C0:C6:67:16:0F:BC:81
    Fingerprint (SHA1):
        AC:8D:04:93:F0:69:4B:32:67:C2:52:F7:4D:8C:A6:30:1E:83:89:7E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #10951: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10952: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10953: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10954: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160931 (0x1dee5e23)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:11:39 2017
            Not After : Mon May 02 16:11:39 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c9:2a:95:a6:1a:24:1d:21:05:ae:55:ef:9c:d7:5f:c9:
                    bb:46:3d:dc:c4:f9:b3:b8:7b:1a:72:74:e1:de:b1:aa:
                    12:6e:1d:b4:b1:ed:ca:1f:fe:d7:69:b9:8a:39:3c:49:
                    ba:87:35:86:08:0a:1a:13:3d:a0:be:03:0d:6d:05:4a:
                    b6:4b:0a:d7:a6:56:53:99:1b:3f:37:ef:81:b9:c0:89:
                    57:2a:8e:d0:c5:93:ca:9e:bc:0c:6c:82:7e:ed:98:d0:
                    62:7b:06:70:6d:00:ea:55:5d:7d:e7:0e:d2:b7:fc:6d:
                    29:1c:5d:58:88:8a:19:01:85:0a:5f:50:11:54:77:5f:
                    05:83:82:02:42:5f:7e:1d:d7:2c:0f:f9:90:81:f8:c2:
                    fa:9e:24:23:4b:bb:06:ec:62:18:a6:78:f0:eb:83:e5:
                    ca:40:59:2c:fa:95:3d:8c:fd:c5:20:4f:b9:90:79:8e:
                    9b:c1:dc:e0:a9:19:ec:0e:4e:63:5f:48:e5:c0:5f:6f:
                    71:91:1c:84:57:47:94:90:49:85:06:ab:99:fa:a7:75:
                    d7:30:a4:0f:2e:62:d5:40:a3:15:7a:54:65:5b:9f:15:
                    fa:e7:97:d3:70:d2:80:da:26:e8:ab:ce:8a:e9:87:9c:
                    66:1d:61:4d:34:85:27:a3:41:4a:ea:9d:63:93:10:b5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:d4:c9:55:01:7d:46:1c:25:11:17:a7:35:99:9a:e0:
        9f:ce:5d:d2:e0:4d:64:0e:33:5c:76:e3:41:f6:ef:3b:
        27:de:b3:43:23:73:6e:c0:f1:58:5a:b8:d5:5c:35:cd:
        98:d0:fd:66:ad:44:d8:80:c4:3b:c0:64:a1:c9:b8:73:
        44:7e:e9:86:b7:95:86:9a:f6:d1:71:6d:f3:0c:16:d1:
        d5:94:66:65:1f:0d:65:79:ce:34:30:11:7d:77:c4:da:
        6c:4a:9d:21:45:66:75:76:21:90:f2:4b:9a:2e:6d:37:
        8a:e1:1c:e0:d3:cc:60:e4:ab:66:f0:17:7c:aa:35:5f:
        9d:ec:0f:80:90:d7:df:dc:80:a4:7e:5f:31:8e:70:9a:
        cb:1f:27:a4:b8:cb:1e:93:25:2c:e0:17:ec:68:50:c4:
        a1:f4:10:3b:cb:63:89:e1:ce:f4:54:a2:3f:bf:28:b0:
        64:93:c9:62:e1:68:8c:38:f5:c4:c7:49:07:41:7b:94:
        d4:dd:e4:63:43:d3:7b:d9:79:94:11:af:ba:4c:e5:d2:
        69:a4:7e:c7:5b:f1:c3:9a:63:c0:d1:58:34:5d:4a:83:
        9c:82:c9:89:7e:33:86:71:f1:b0:75:4e:d0:a3:83:af:
        5e:b3:fc:3c:b7:4a:1d:5e:87:05:3e:6a:c0:b2:0b:5b
    Fingerprint (SHA-256):
        35:97:31:EB:50:23:61:B4:5A:30:1C:22:DB:0D:D0:F2:41:A8:1E:8B:1B:0D:78:EA:BC:C0:C6:67:16:0F:BC:81
    Fingerprint (SHA1):
        AC:8D:04:93:F0:69:4B:32:67:C2:52:F7:4D:8C:A6:30:1E:83:89:7E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #10955: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10956: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10957: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10958: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160938 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10959: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10960: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10961: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10962: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502160939   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #10963: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10964: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10965: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10966: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502160940   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10967: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10968: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10969: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10970: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502160941   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10971: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10972: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #10973: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #10974: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #10975: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #10976: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160938 (0x1dee5e2a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:11:51 2017
            Not After : Mon May 02 16:11:51 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:1a:43:18:39:bb:1b:4c:1e:68:7f:49:17:7a:d4:29:
                    bc:dc:25:4b:11:34:18:77:06:35:1a:ad:d7:3f:4d:25:
                    dc:be:99:d7:55:eb:52:9c:3f:af:14:14:11:02:0f:10:
                    c6:f4:36:0d:7d:56:2e:98:73:96:fa:71:03:af:c3:34:
                    09:b4:80:f6:5e:3c:b0:e4:1e:b3:36:a9:9e:a0:43:b1:
                    59:87:e9:10:d2:15:61:ed:94:4c:94:80:89:d5:a8:c1:
                    72:a0:f1:76:86:39:81:ad:61:62:70:9c:91:ea:28:ac:
                    d4:3c:f4:85:c1:ae:81:64:e9:17:a5:2d:cf:7a:5d:14:
                    5d:5a:29:61:6f:be:3d:51:66:50:31:e7:f4:8e:83:25:
                    8e:45:53:c3:4f:65:bf:9e:14:65:76:82:42:d7:ae:89:
                    6d:38:8b:08:a9:ec:8f:40:ed:05:c9:1c:ef:30:db:f4:
                    97:dc:12:96:56:88:2a:1b:4d:33:e7:f7:60:7f:84:bf:
                    fc:7d:d6:eb:5f:7b:f2:01:6f:bd:8d:7f:42:74:d5:e1:
                    a2:ee:f8:96:a6:4d:8e:46:47:d5:73:14:60:b1:b0:12:
                    b1:77:aa:13:32:24:8c:b2:9c:95:47:29:42:76:c3:68:
                    b4:d6:10:15:22:aa:64:0b:0f:7e:8d:e1:22:00:18:bd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7d:cb:a7:b0:c6:d4:18:91:72:e6:03:a6:55:87:a7:48:
        82:41:76:7d:3a:56:62:7a:0a:6c:f0:b1:98:b8:1a:f5:
        b3:b9:7f:f2:1b:71:f9:0c:25:46:00:a1:48:e3:84:20:
        a6:08:d8:84:38:ce:0e:bd:01:f3:3d:59:6a:f5:17:89:
        98:15:75:bf:f0:19:74:39:22:e3:a2:00:6e:ed:00:b8:
        d7:4b:51:26:f8:c4:f5:12:8d:ff:5d:64:b5:65:13:08:
        9e:77:24:45:79:f6:0c:1e:b2:6c:e7:41:53:47:8d:1a:
        90:eb:d9:bd:a9:52:3a:52:ce:0f:59:a3:84:cb:9c:17:
        41:07:6c:7a:e7:7b:98:7d:87:0f:7b:32:1c:26:9e:f5:
        d7:cc:ab:3f:9b:93:12:f0:45:7a:8b:95:f2:e6:d9:1b:
        92:8b:63:87:2c:d9:97:02:8e:91:f5:e8:28:8c:31:09:
        5e:4d:16:4d:6a:82:09:65:97:c4:66:30:85:38:6a:77:
        d9:92:3c:b5:9e:19:cd:01:ca:0a:bb:49:5c:41:64:e4:
        80:51:83:7f:8f:ed:62:5c:96:f5:a8:79:38:34:b4:09:
        84:1b:14:e2:61:aa:9a:b3:b3:c7:cb:d9:38:ad:ab:3d:
        44:bc:98:54:df:7c:b3:f6:96:8f:ca:cd:7d:04:c9:7e
    Fingerprint (SHA-256):
        2F:07:89:C3:BC:1C:47:A0:87:9A:AF:61:68:71:38:91:7A:18:6D:35:3A:CF:DA:CE:5C:63:EA:58:6D:72:EB:43
    Fingerprint (SHA1):
        07:35:73:D6:2C:5A:DF:BF:BE:2C:18:DE:A0:83:04:C3:05:E4:1F:EC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #10977: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10978: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10979: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160939 (0x1dee5e2b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:11:53 2017
            Not After : Mon May 02 16:11:53 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:fe:ef:c9:46:76:2a:b5:1a:f8:38:dc:29:41:83:83:
                    7f:f6:52:3c:f6:39:78:58:83:ca:d3:05:87:0e:e5:e9:
                    da:25:42:b0:21:0b:4b:d1:17:01:db:55:b8:19:83:92:
                    0c:fc:41:83:90:f6:88:d3:bc:86:f7:32:ea:44:35:54:
                    e8:55:91:11:2f:d0:9f:16:e3:e6:5a:e4:86:56:61:cf:
                    cb:5e:0d:2e:5c:84:35:a2:ff:f5:19:0e:c9:2c:24:2f:
                    0b:1b:54:1b:3d:d1:c1:a0:c0:2b:ab:35:70:e6:c1:53:
                    e9:42:4f:6d:6a:ab:ae:82:60:f4:5a:a8:7b:eb:c1:a8:
                    f6:95:c6:e0:00:e8:f2:c8:cf:7d:93:76:18:e7:b6:80:
                    c9:34:8b:ae:6f:bc:6d:4e:0e:cb:58:d9:fa:fd:6f:b2:
                    fd:2e:9e:a3:a4:40:2c:e2:60:bd:c1:72:a1:84:b9:47:
                    27:78:ca:47:3f:fb:bb:0f:ab:68:41:35:cf:ec:11:bb:
                    c8:e9:28:0e:6b:fc:1a:15:89:42:a1:59:d7:47:70:72:
                    fb:76:0f:e6:6b:5b:b2:d1:09:7e:1d:01:b9:3e:51:15:
                    37:b5:eb:04:86:58:dd:ec:65:7c:f5:03:1b:ec:9a:54:
                    d0:f7:57:04:c9:54:98:2f:bb:79:92:b9:15:0e:9b:d7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:3a:67:b4:a7:d6:04:af:62:e8:0c:47:58:49:bd:a5:
        68:99:e1:0c:ff:48:aa:dc:63:90:08:80:99:13:b4:af:
        ca:a9:c7:3c:e4:0c:ac:8b:26:0d:37:8e:f0:d9:1c:76:
        96:20:12:e7:fb:fa:a4:60:88:3d:ac:9f:c9:d1:25:48:
        ce:ff:9a:95:ba:c1:10:b6:fa:7f:7c:7e:5e:07:33:47:
        01:07:b3:dd:36:b4:29:9a:a9:e4:8e:dd:ed:b3:f0:cf:
        a3:42:06:92:08:22:f0:7b:4c:11:70:c3:48:e5:5b:33:
        6d:a0:78:56:69:8f:28:71:71:7e:d4:7e:51:69:b5:18:
        f3:43:b5:c6:f0:9d:26:dc:0e:71:f0:a3:93:2d:a4:ec:
        07:78:d0:12:12:24:2d:f5:39:28:93:e0:97:f6:d2:01:
        ab:3d:70:fb:fe:c8:08:18:3c:a0:6f:80:53:8b:7e:19:
        41:d8:31:8a:79:e9:41:f2:76:cc:fd:b2:30:8a:1c:5c:
        9f:73:4e:74:5d:e2:5b:d4:e1:ff:ef:42:e6:8a:9d:e7:
        b3:2b:33:f0:a8:ce:f1:30:ff:42:a0:76:5f:e9:71:80:
        07:e1:90:87:0c:b9:d4:a9:57:a0:04:29:79:04:e8:60:
        74:50:b0:89:b9:cf:aa:de:c8:fb:ff:d4:f4:ec:50:1d
    Fingerprint (SHA-256):
        28:D1:7D:D5:AA:B2:F4:50:DE:0B:20:10:9B:60:E6:F0:91:FE:48:88:48:0B:1A:A7:2F:EE:E6:BD:6D:F3:72:EF
    Fingerprint (SHA1):
        E1:92:00:B7:B9:11:6E:82:94:10:63:27:DC:D7:8C:01:DE:35:C0:4C
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #10980: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #10981: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160940 (0x1dee5e2c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:11:54 2017
            Not After : Mon May 02 16:11:54 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:3e:1e:f4:8b:43:fb:de:4f:f2:7b:5b:53:28:98:3f:
                    9c:58:4a:a8:41:1b:1c:1c:33:4e:bd:76:ff:a7:e7:d8:
                    23:20:39:6e:37:e3:08:8b:d1:73:09:5d:e7:79:bc:24:
                    ff:db:ee:ff:b0:82:51:19:5a:b0:c1:07:3e:7b:71:18:
                    5d:54:76:07:ca:65:71:e9:c5:68:21:25:e3:32:24:51:
                    cb:5f:34:97:9b:92:8a:55:ca:b6:60:c3:b3:ff:22:21:
                    1a:b7:70:f2:be:f1:31:a9:3d:20:80:ca:d9:f0:d3:d4:
                    70:d2:84:01:ed:fd:45:b5:11:99:f7:99:70:69:9f:a1:
                    db:36:19:f6:b3:7e:9c:a0:4d:0c:f9:55:c1:02:d7:d7:
                    0c:16:c6:60:cb:57:7c:3f:30:1c:f5:02:d6:20:94:cf:
                    df:25:7b:f2:e8:e7:3e:86:fc:05:0f:de:7c:bd:f5:b7:
                    ce:c0:c0:31:84:60:d3:c9:fd:4f:75:1c:54:d0:59:48:
                    d3:10:1b:1f:a2:d0:7a:27:2d:73:2d:20:d9:60:d1:5f:
                    8e:56:39:20:ea:d4:dc:b5:78:c6:d5:09:51:de:d4:c9:
                    50:c4:64:39:cb:df:8d:e4:64:d9:3d:45:43:eb:f2:87:
                    82:15:8d:d7:29:df:c0:09:71:df:00:27:52:8a:bd:59
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:b8:18:9f:eb:d5:b9:3a:e0:a5:0d:2a:32:1f:a7:72:
        b4:9d:4a:ec:c5:35:4e:01:bc:95:d8:78:72:b6:a3:7c:
        d2:44:1b:17:10:f5:30:6d:3d:6e:1e:7c:4a:38:c2:3b:
        ad:1e:d8:06:b7:3b:83:3f:4f:db:0a:b1:88:91:ab:07:
        13:60:b7:b1:ed:0a:71:fb:2a:1b:c4:ba:c6:5f:80:ed:
        c9:a1:35:cf:1b:9d:72:2f:5c:e1:92:ef:dd:f3:74:22:
        7a:63:ed:a0:dd:3f:b9:a8:19:ad:93:b4:05:40:a8:a8:
        6c:d6:0f:66:33:3e:c9:bb:2a:65:c2:85:e5:52:c4:a7:
        62:a7:63:65:69:a7:19:17:96:f0:4d:aa:02:17:0c:bb:
        39:e9:e1:00:05:72:ae:90:b9:ab:ea:9d:4a:8d:47:71:
        da:d6:df:39:29:e3:a1:89:67:33:9b:4a:92:3d:33:ff:
        89:63:d7:f0:6f:ad:ba:c7:ae:85:48:3e:8c:f5:3c:8a:
        fa:10:c0:0f:92:f5:d5:cd:56:73:d6:15:80:ce:c3:3a:
        04:d5:00:3f:d6:21:09:d9:5f:c3:4d:07:82:9a:82:e9:
        dd:7c:28:51:25:e9:af:90:07:b2:ff:5a:5f:a7:41:a0:
        75:d2:92:de:e9:d1:c5:e6:c4:4f:7b:b5:63:e6:42:e3
    Fingerprint (SHA-256):
        41:A0:23:A8:3E:D2:70:3D:AC:E2:97:64:6C:49:D6:2C:12:EC:33:87:BC:32:B0:A0:33:81:31:7F:C8:FC:2C:B1
    Fingerprint (SHA1):
        D8:BD:95:61:36:D5:BD:C9:49:92:29:34:FE:82:4C:DC:A9:8F:85:7F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #10982: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #10983: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160942 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #10984: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #10985: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #10986: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10987: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502160943   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10988: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10989: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #10990: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10991: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502160944   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #10992: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10993: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #10994: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #10995: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502160945   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #10996: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #10997: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #10998: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #10999: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502160946   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11000: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11001: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11002: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11003: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11004: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11005: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #11006: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160942 (0x1dee5e2e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:11:59 2017
            Not After : Mon May 02 16:11:59 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:d2:77:7a:d1:95:6d:80:ac:74:8f:10:81:14:27:94:
                    62:be:0b:24:ef:f9:ae:b0:b4:b5:f5:22:76:15:46:aa:
                    9d:11:0b:65:90:62:ae:03:ae:9e:26:66:dc:ef:9a:bb:
                    9a:f4:eb:d8:ba:31:36:db:87:70:4a:66:82:00:2c:ca:
                    18:16:5d:b2:68:ed:c1:d4:ae:cf:13:2a:45:49:3c:3c:
                    d4:48:41:11:bf:85:1f:23:c0:a2:d5:85:a3:e1:35:74:
                    a1:db:39:f1:1a:58:4b:d8:18:3f:3b:17:e9:e7:35:68:
                    60:42:87:06:59:db:2d:8a:fc:4a:63:6c:e3:70:f7:46:
                    7c:83:ec:2c:f3:0e:3f:73:09:cb:f7:e2:80:db:71:65:
                    69:74:1d:22:26:9f:62:a8:56:89:ca:01:e0:22:d5:b5:
                    19:3e:f0:83:a5:75:8a:61:98:a9:66:76:4e:97:77:5f:
                    ae:b2:40:74:35:4a:e0:e9:f6:93:f5:ce:e0:0f:50:ad:
                    f6:5c:85:28:26:75:11:13:bd:69:62:4c:9e:0f:01:72:
                    3a:b5:5d:8b:04:8a:45:36:7b:29:71:b5:46:76:71:33:
                    12:65:c0:bd:37:41:17:28:37:8f:2f:99:cc:fb:58:1b:
                    34:b2:2c:a2:4d:2c:ad:95:0f:88:83:e7:2a:7b:b7:c7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9a:4f:49:20:c2:43:49:cb:36:85:b1:df:d3:bf:d5:b7:
        89:cc:d5:83:eb:21:17:95:7d:e2:cc:93:63:56:fd:93:
        a3:bb:eb:8e:1a:00:84:17:59:8d:2e:48:04:b9:cd:65:
        61:a9:46:82:91:f6:05:13:8c:b4:1a:6e:2a:1a:99:51:
        93:6a:f5:01:d5:e3:6d:f8:02:a1:3b:10:c2:56:fe:5f:
        8b:5d:32:61:eb:e0:a7:c3:94:30:ab:8e:c2:e3:24:a9:
        ea:87:e7:b7:2d:06:70:60:f3:c1:04:85:60:8e:7a:39:
        0d:d2:46:e7:4c:de:c8:7a:5b:db:46:1f:a6:11:d4:98:
        7d:bb:2e:37:79:af:84:a6:fc:e2:29:b5:85:12:bb:b6:
        dc:74:9d:07:68:ba:3e:90:41:2c:02:53:48:37:03:0d:
        6e:06:6c:92:eb:34:c2:cf:1b:3b:2e:ab:2e:ce:cb:f7:
        e0:3d:7f:7d:a3:a4:5f:2c:45:f1:e3:a8:6e:50:38:ab:
        4d:2a:c0:93:03:30:7f:79:2d:f6:e1:3f:56:08:a5:37:
        87:7e:27:25:06:e8:83:04:1b:f9:7c:7c:77:64:f8:3e:
        35:f9:da:f9:3d:5a:93:db:c0:63:54:10:14:f3:30:eb:
        95:0e:92:38:54:be:69:14:10:f5:d5:a7:f8:cd:09:7a
    Fingerprint (SHA-256):
        69:DD:81:56:89:96:44:7B:D7:4E:2C:E0:40:C5:59:28:B8:18:2E:D4:F7:2D:51:BE:DD:DE:05:9B:EF:5D:20:22
    Fingerprint (SHA1):
        B0:79:CB:F8:3E:9A:45:12:17:11:7D:17:F1:A4:3F:7D:CE:1C:C8:E7
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11007: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11008: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160943 (0x1dee5e2f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:12:01 2017
            Not After : Mon May 02 16:12:01 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:2c:30:15:d3:c1:b4:7a:78:09:c0:df:15:c4:61:95:
                    a7:35:ec:43:4f:0f:9e:c2:11:d5:44:f7:2d:71:ac:7a:
                    a2:fc:d9:81:61:37:dc:55:c7:ec:5d:73:3e:66:2f:dc:
                    ff:d8:04:87:b6:34:80:3b:4d:10:f6:e4:06:d5:58:40:
                    8a:d7:20:64:69:d0:67:45:42:40:4a:0c:3d:d0:0b:fd:
                    73:f7:04:c3:c2:94:12:d9:74:bd:f9:c0:1f:84:40:b5:
                    b9:bb:75:ff:47:d8:d1:94:5b:66:be:37:c5:7a:74:12:
                    84:42:99:da:e5:24:53:01:5f:85:9a:21:c1:90:79:2c:
                    da:51:a0:e1:6f:65:82:f7:06:11:a2:9f:26:8f:f3:83:
                    60:69:93:b7:6b:d5:b2:02:a1:c2:46:c2:74:f6:20:4d:
                    8d:71:82:d4:53:f7:0f:a2:c7:c0:7e:98:91:e0:dd:77:
                    02:b1:69:b0:bf:ca:a0:2c:87:19:6c:68:54:14:34:8b:
                    2b:74:f5:e3:7c:91:d3:ca:ac:14:03:69:63:1f:88:35:
                    7f:9f:87:76:96:5a:73:50:40:f4:4a:35:c2:02:29:48:
                    58:0b:95:5b:56:1f:19:9d:4a:f9:76:ef:d5:bb:9f:d8:
                    23:9f:86:05:bc:62:8d:3a:57:5e:10:6a:d8:f1:20:99
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3e:16:7a:f1:48:80:f7:30:2f:90:ca:5e:35:9c:ce:04:
        23:d3:56:d9:8e:0d:62:95:15:e2:b7:d3:91:ae:37:95:
        c2:af:1c:01:bd:2a:18:6d:c4:5b:8a:a2:16:e2:de:50:
        d2:e0:d5:c7:75:a8:45:48:b5:15:01:b4:69:33:8f:de:
        e0:02:3e:34:21:35:b1:5a:0c:2f:f5:b0:d7:6d:51:0b:
        91:07:6a:03:e3:31:b3:27:0d:1d:aa:24:5e:14:bd:f0:
        56:18:d1:f6:84:22:d2:2e:b7:c3:fb:d6:df:c3:87:dd:
        ee:e3:6a:4b:a7:68:77:76:4b:94:bf:9d:0b:4a:c5:5a:
        21:1f:a7:a5:95:cc:cd:02:da:c7:cb:3a:09:12:39:53:
        e3:4d:df:ae:e2:8c:62:f8:f2:c2:bc:f2:07:86:34:84:
        ae:ad:bf:28:d3:63:0e:23:97:ba:bc:d4:b8:d0:2a:b0:
        cf:50:8c:1a:6c:73:bf:65:f0:ad:90:27:cd:57:57:71:
        c3:eb:8b:07:3d:2c:5b:ec:2b:a9:d9:cd:f1:d5:26:3a:
        36:0f:ce:10:85:b7:14:a6:e9:b5:cb:44:e5:e7:50:19:
        9e:71:c2:6c:6e:1c:63:0b:be:3f:d4:8e:53:cb:e3:98:
        85:be:0e:ef:31:7b:ad:a1:cd:1f:57:9b:2e:be:4d:0b
    Fingerprint (SHA-256):
        1E:BA:9F:94:B2:38:EE:35:65:65:90:0A:31:23:9D:1F:0E:9B:B2:08:E6:A6:47:82:FC:79:57:1E:83:45:7E:E1
    Fingerprint (SHA1):
        26:45:2A:8F:AC:0C:CD:4B:39:39:07:C2:54:DD:85:45:95:32:23:5E
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11009: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11010: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11011: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160944 (0x1dee5e30)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:12:02 2017
            Not After : Mon May 02 16:12:02 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:6d:1f:33:19:eb:56:42:ae:59:d0:c1:00:12:4b:d5:
                    8d:cd:44:f6:7a:44:75:65:0f:32:44:75:ed:6e:f5:66:
                    1c:d4:d6:2f:47:b3:69:d1:20:39:7d:3c:3e:75:05:ce:
                    c0:3b:18:53:05:5b:ad:44:d3:dc:0f:66:13:2c:f6:c7:
                    1b:20:97:3e:8f:f4:a6:8c:63:b2:42:b6:57:6a:aa:bc:
                    9b:3b:f6:36:34:79:4c:9a:6d:e8:57:93:2d:31:8d:bf:
                    c0:80:26:8d:f7:61:ce:b5:97:84:75:1b:af:c6:8e:71:
                    47:fe:6a:75:48:6f:b2:dc:0b:2f:6d:db:42:aa:7b:da:
                    1a:09:f1:51:fc:d2:eb:7c:b9:16:e9:17:6d:1e:82:98:
                    1f:07:fe:60:bf:5d:95:5e:0f:b8:e4:90:aa:7f:91:08:
                    a6:1e:b1:b6:41:7d:90:2b:4f:8f:f1:86:14:a8:b6:8e:
                    bb:22:5b:a7:d6:54:49:72:67:ba:e3:23:31:d5:20:9e:
                    eb:f6:c5:f1:51:c1:b7:69:48:d5:77:d4:48:01:10:6c:
                    f2:48:6a:44:ce:ea:1e:a8:b3:d5:85:ff:1f:d6:19:49:
                    bd:a4:cf:ff:6e:77:a1:e5:90:2c:cc:df:34:04:ee:11:
                    31:a7:42:73:a3:06:94:14:9f:10:ef:3f:85:c9:12:3d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b9:08:c1:c7:43:fe:72:46:66:03:20:6c:2a:79:59:2e:
        58:70:1e:42:d3:89:b6:68:a6:84:7f:01:5d:c1:55:6c:
        b2:dc:36:85:75:de:90:71:b7:5b:ca:f4:27:2f:27:a3:
        c8:f4:58:0d:7b:3b:f5:2f:bc:56:19:4b:14:1f:03:4b:
        21:3f:ce:fa:ea:ba:ad:7b:57:17:29:b2:bd:76:6b:0e:
        30:33:26:5d:93:1f:67:e3:3f:b4:ae:b9:4e:94:e3:ad:
        9b:42:95:a3:11:c8:df:ba:0b:a6:da:ca:8e:12:1d:fa:
        f7:a1:89:a4:49:d8:5d:28:4b:18:31:f6:89:18:82:ef:
        7e:fa:fa:02:4c:60:81:dc:da:b6:21:1f:56:b5:44:01:
        45:74:7f:29:96:4e:f0:bc:35:40:96:31:b5:17:f3:d1:
        84:89:27:4a:af:49:42:76:c0:31:c2:67:ec:5b:9b:47:
        44:28:d4:ad:23:e4:e6:4b:e1:8d:14:ce:7d:0b:94:cb:
        a2:fb:ea:e6:7b:79:23:8e:b4:a2:dc:b5:d6:87:4e:3c:
        04:bb:dd:54:8c:5c:8e:41:6e:ed:53:d6:f4:5f:ca:b6:
        85:41:cf:c2:09:23:87:56:cf:98:c6:db:89:3c:39:68:
        86:d4:f9:db:99:39:11:e6:b2:4d:2a:68:43:57:b4:ac
    Fingerprint (SHA-256):
        AF:7A:85:50:2B:6E:99:FA:4C:D3:BB:0E:D1:8F:E0:91:FB:68:A3:6C:46:5A:03:D3:72:6A:A4:A8:8B:8A:B5:0B
    Fingerprint (SHA1):
        CD:41:65:D7:52:F7:01:F1:A0:66:90:D5:A0:97:CA:9F:0D:89:DC:C3
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11012: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11013: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160947 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11014: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11015: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11016: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11017: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502160948   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11018: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11019: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11020: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11021: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502160949   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA1Root-502160856.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11022: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11023: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11024: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11025: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502160950   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11026: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11027: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #11028: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160947 (0x1dee5e33)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:12:09 2017
            Not After : Mon May 02 16:12:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:98:3a:b0:6d:cd:22:f9:d9:7b:70:8e:34:af:9e:8f:
                    da:31:b8:60:78:f9:a6:d4:ed:1a:ec:09:ba:77:07:38:
                    47:87:a0:eb:3e:be:32:a5:78:99:0d:3a:30:3e:78:fb:
                    5c:c7:63:8f:63:54:06:96:0c:b0:b9:b1:2a:37:9c:41:
                    5f:d4:ac:6d:cf:ad:c1:db:16:5a:75:9b:ce:a9:63:33:
                    2c:ad:34:45:49:fd:20:5e:3c:b1:69:43:a2:67:96:c2:
                    35:03:60:78:c1:02:3d:b2:c1:32:b8:94:33:79:b6:4f:
                    10:8f:84:b7:31:be:8f:5b:bc:9f:0a:a8:7b:7e:a1:5c:
                    0d:8e:82:f9:f3:3a:28:da:34:4f:98:aa:ef:60:7a:a3:
                    aa:05:3d:56:ef:d9:2e:e2:76:ab:8d:54:ea:50:86:12:
                    ba:83:93:c7:0f:1e:60:49:9d:bf:d2:94:39:12:8c:01:
                    d4:34:c2:53:82:50:76:d6:2c:d6:bd:b9:7d:ae:fa:86:
                    c8:90:a0:c0:e7:a6:03:59:3c:28:d1:19:a2:54:5b:85:
                    0b:48:24:5b:45:bb:06:7d:23:c4:1a:28:34:09:e0:38:
                    30:82:0c:66:3b:ff:9a:90:86:0b:fe:a5:85:d1:32:f9:
                    95:67:23:72:a6:5f:a8:c9:dc:2b:af:cc:60:3c:39:e3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        73:fb:42:48:cb:3f:14:46:34:f2:4a:ac:4b:fa:fe:ca:
        41:28:81:6e:5d:e0:1a:c0:98:3f:2f:5b:ee:b3:d4:83:
        52:78:2c:38:1b:a2:dc:1d:0e:ed:b2:04:53:6f:5f:00:
        a9:f7:04:41:27:da:4d:a8:9f:41:f9:7c:eb:28:b2:6f:
        ea:31:d2:9d:45:06:ce:4b:2e:b5:cb:44:7a:6d:a9:41:
        97:99:99:e1:95:a0:c9:0d:29:9d:56:11:2e:11:19:96:
        b9:9a:c5:95:50:7a:c2:66:29:41:ef:5d:1f:04:38:ad:
        05:20:68:48:82:1d:d6:d3:40:0b:22:c7:b4:b9:72:a8:
        8f:33:11:5f:bc:db:d6:c8:c1:ae:ed:bc:67:eb:ed:88:
        a0:97:47:c1:90:d1:1a:70:ab:b3:77:d9:91:03:3d:48:
        d2:48:da:71:43:38:69:f6:4c:b2:7d:b2:8e:6e:d2:df:
        0c:3a:a7:fe:2f:52:41:ea:23:b0:f5:5b:45:cc:8a:f4:
        80:3b:da:69:cf:e1:c6:b8:e8:af:3d:1e:79:b7:42:2d:
        6f:38:dd:62:fa:8e:88:87:10:72:21:38:73:31:0e:f4:
        85:e7:1a:54:d2:5b:cd:56:83:fe:11:c5:08:f1:f1:25:
        15:9f:83:d8:11:f6:94:48:1c:b7:cb:d6:a7:fa:9d:76
    Fingerprint (SHA-256):
        78:99:A3:A3:0C:8D:12:43:11:BE:FE:17:D8:45:1F:5D:81:C4:C5:8D:35:E2:8C:C8:3D:4E:D4:2D:7C:CB:EE:91
    Fingerprint (SHA1):
        98:83:68:E0:53:4A:8B:4F:68:B3:61:B7:9D:E8:81:40:85:09:C8:5A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11029: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11030: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160951 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11031: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11032: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11033: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160952 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11034: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11035: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11036: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11037: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502160953 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11038: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11039: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502160954 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11040: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11041: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11042: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11043: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11044: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502160955   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502160857.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11045: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11046: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11047: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11048: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502160956   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11049: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11050: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11051: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160951 (0x1dee5e37)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:12:15 2017
            Not After : Mon May 02 16:12:15 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:1d:9e:ea:c4:96:a9:28:f5:93:5a:23:18:bc:4d:72:
                    c7:cb:de:b8:fb:67:06:ed:ca:24:49:71:c1:84:2a:65:
                    f0:a5:61:b4:b5:e7:11:a6:be:3e:af:33:da:6d:60:e3:
                    bc:27:5c:5c:fa:a7:1b:c8:50:2d:fb:b9:ea:41:d2:4c:
                    ca:d7:ed:40:0c:eb:de:46:3b:75:3d:2c:f8:1b:d0:93:
                    51:ea:1f:1e:b0:d9:08:d7:13:bd:cd:4e:52:93:be:38:
                    f1:ce:5e:36:d6:c8:fd:e8:76:1c:47:aa:0f:15:51:6c:
                    72:b1:36:8a:d6:c0:39:92:2e:b5:35:f5:15:78:ff:05:
                    c2:1d:d7:72:73:1f:41:7d:8a:0c:17:b6:ac:8a:f1:f3:
                    9f:68:0d:f2:98:b5:4a:ff:8c:f1:10:46:e0:0b:aa:d4:
                    7e:90:66:d6:3f:7b:6f:90:d2:e2:57:a2:4a:c8:0d:32:
                    69:02:8f:08:11:62:d0:88:15:25:ff:fd:44:1f:a3:81:
                    e8:7f:28:9b:1a:10:30:6c:45:a8:74:80:0b:28:28:07:
                    00:94:7d:58:8f:1e:49:18:c1:93:87:03:0a:f3:89:6a:
                    5d:80:15:a1:c6:47:20:d6:30:f4:d7:d1:3f:73:71:fa:
                    49:8a:8b:24:be:e8:69:ec:04:f6:22:db:61:ee:9e:d3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        58:5c:e1:94:a6:fd:e5:d9:86:f6:0c:15:ba:56:01:a5:
        16:6e:75:9e:86:fa:4b:bd:c8:46:90:25:28:ab:de:68:
        0f:6f:d1:a3:21:c9:f9:94:96:30:94:f5:75:88:47:16:
        a4:0f:54:20:7a:b4:02:8b:63:c9:5e:53:32:5b:ea:74:
        90:b4:b9:a6:67:19:4c:df:bf:c9:69:9f:11:3e:93:18:
        f5:26:5a:df:04:2e:25:29:cb:81:d5:2e:8c:8f:72:90:
        30:94:53:6a:10:6b:7d:6b:6a:a7:fc:52:d2:25:23:43:
        46:ce:fc:14:04:9f:36:03:d3:d8:09:70:3e:6d:e5:a4:
        95:52:41:2f:c7:85:3b:6a:4d:0a:54:f4:de:95:c8:67:
        33:ed:6f:72:c0:17:e9:8e:2f:0d:d5:d8:16:02:28:57:
        b5:83:ac:fa:d1:cb:d4:17:d0:e9:0a:b3:e0:91:7e:81:
        57:64:60:dd:ec:e5:93:03:da:af:ea:18:94:96:4d:ee:
        67:b0:ce:0a:c1:be:84:e4:09:51:5e:b6:bc:1a:85:02:
        3a:5d:ba:42:a9:d3:0b:e2:4e:3a:45:ec:50:71:44:4a:
        b3:fc:17:1b:51:ae:b3:df:83:51:ca:34:fa:ab:92:05:
        2f:20:e1:be:34:25:b3:e8:37:7c:70:0c:d6:1d:a1:bd
    Fingerprint (SHA-256):
        F1:DC:C7:57:8D:86:F1:7A:0D:41:95:03:63:F0:B2:67:6A:58:55:A4:0D:2B:5C:AB:33:A1:10:20:A0:4E:53:E0
    Fingerprint (SHA1):
        22:EF:66:41:E2:28:4E:34:06:28:30:AA:E6:3E:02:E8:7C:25:AE:A1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11052: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160952 (0x1dee5e38)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:12:16 2017
            Not After : Mon May 02 16:12:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:ab:c3:9d:da:e4:4d:02:20:5c:8e:00:aa:a2:0f:d7:
                    e5:7b:d8:11:49:8d:da:51:b6:2d:30:16:0b:f4:59:a8:
                    dc:14:c0:4c:ed:01:5e:3d:b8:9e:41:44:4d:bd:81:3c:
                    1e:6d:82:36:c8:84:12:4c:f4:eb:60:e9:18:de:f9:64:
                    0e:77:5a:f8:51:93:b8:96:4b:db:e0:d7:ac:f9:88:b0:
                    ca:86:1c:ae:96:1e:74:a1:b7:c6:c7:a8:ac:a1:c1:21:
                    00:4d:8a:a6:28:a0:b6:7d:b2:14:50:1a:7a:a1:9c:a3:
                    b0:c6:84:95:48:95:13:d9:3c:fc:dd:41:04:49:28:ff:
                    3f:3d:20:c9:b6:81:2c:3e:8b:f1:a0:4c:d0:49:30:30:
                    b8:4e:de:89:ad:1c:53:f0:50:18:b8:8f:21:da:6d:74:
                    89:2f:ab:ff:a9:58:c8:f3:fa:ef:4b:65:e8:c3:6e:5f:
                    0e:e4:b8:16:88:c2:45:19:4a:bc:c1:e8:87:1b:ad:02:
                    3e:bd:53:24:41:7f:8e:99:48:64:d5:99:05:1f:9d:49:
                    d8:78:78:4a:4a:d7:3f:9f:3d:34:dd:ee:76:2c:16:6a:
                    e2:30:62:6f:10:51:61:63:be:e7:1c:0f:1c:64:57:76:
                    80:fc:be:b1:66:65:ec:be:ca:7f:fe:e1:84:17:97:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:ad:0e:79:ea:c8:a7:5a:37:2f:5a:ca:9b:8b:ff:aa:
        69:6e:69:0f:9f:54:55:92:7f:c2:75:35:38:37:0f:55:
        56:10:fe:63:87:74:54:0a:e9:18:7e:eb:68:f8:af:12:
        e1:dc:db:86:32:6a:9a:42:e3:5d:3a:f6:c7:84:41:0d:
        20:d1:60:2a:99:70:86:81:4f:b6:23:9b:c1:ef:0e:c4:
        0d:5e:71:d7:64:9f:2a:cb:a9:38:62:9e:af:e9:28:4d:
        d2:37:0e:88:2d:b3:6f:ae:a6:ce:94:f2:8f:8f:a6:8b:
        e0:b1:10:84:73:f9:d2:ea:0e:0a:c4:d3:f1:76:ac:3b:
        65:16:61:af:96:a8:af:29:99:bc:14:7b:da:13:e1:b7:
        b8:ac:8d:8a:d9:ac:ae:72:c7:37:6b:4a:9c:0f:95:b2:
        cc:f2:f0:26:03:54:38:88:71:36:5f:01:68:05:ca:7e:
        f2:c7:ef:3e:68:b7:17:1c:4c:1a:79:9f:bf:34:d7:13:
        5c:7c:9d:37:db:27:32:85:05:10:05:fe:e5:94:d3:8c:
        2e:e8:47:07:67:54:56:c7:6b:4d:1a:0e:47:6d:09:6e:
        9e:a9:0f:35:32:11:ee:f5:f2:33:2f:47:2d:df:58:d9:
        f0:25:5f:c6:e8:d6:3f:d4:8e:9a:88:f4:53:d4:d9:b1
    Fingerprint (SHA-256):
        55:51:0C:92:44:F6:F4:94:27:AE:59:0A:DD:56:CC:77:35:A8:58:6C:7F:30:9E:7F:67:9A:63:0A:7A:A1:90:F1
    Fingerprint (SHA1):
        6C:9A:AB:EC:78:D7:74:52:AD:43:EC:CD:DB:4F:0A:6B:84:3D:EA:34
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11053: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160952 (0x1dee5e38)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:12:16 2017
            Not After : Mon May 02 16:12:16 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:ab:c3:9d:da:e4:4d:02:20:5c:8e:00:aa:a2:0f:d7:
                    e5:7b:d8:11:49:8d:da:51:b6:2d:30:16:0b:f4:59:a8:
                    dc:14:c0:4c:ed:01:5e:3d:b8:9e:41:44:4d:bd:81:3c:
                    1e:6d:82:36:c8:84:12:4c:f4:eb:60:e9:18:de:f9:64:
                    0e:77:5a:f8:51:93:b8:96:4b:db:e0:d7:ac:f9:88:b0:
                    ca:86:1c:ae:96:1e:74:a1:b7:c6:c7:a8:ac:a1:c1:21:
                    00:4d:8a:a6:28:a0:b6:7d:b2:14:50:1a:7a:a1:9c:a3:
                    b0:c6:84:95:48:95:13:d9:3c:fc:dd:41:04:49:28:ff:
                    3f:3d:20:c9:b6:81:2c:3e:8b:f1:a0:4c:d0:49:30:30:
                    b8:4e:de:89:ad:1c:53:f0:50:18:b8:8f:21:da:6d:74:
                    89:2f:ab:ff:a9:58:c8:f3:fa:ef:4b:65:e8:c3:6e:5f:
                    0e:e4:b8:16:88:c2:45:19:4a:bc:c1:e8:87:1b:ad:02:
                    3e:bd:53:24:41:7f:8e:99:48:64:d5:99:05:1f:9d:49:
                    d8:78:78:4a:4a:d7:3f:9f:3d:34:dd:ee:76:2c:16:6a:
                    e2:30:62:6f:10:51:61:63:be:e7:1c:0f:1c:64:57:76:
                    80:fc:be:b1:66:65:ec:be:ca:7f:fe:e1:84:17:97:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1b:ad:0e:79:ea:c8:a7:5a:37:2f:5a:ca:9b:8b:ff:aa:
        69:6e:69:0f:9f:54:55:92:7f:c2:75:35:38:37:0f:55:
        56:10:fe:63:87:74:54:0a:e9:18:7e:eb:68:f8:af:12:
        e1:dc:db:86:32:6a:9a:42:e3:5d:3a:f6:c7:84:41:0d:
        20:d1:60:2a:99:70:86:81:4f:b6:23:9b:c1:ef:0e:c4:
        0d:5e:71:d7:64:9f:2a:cb:a9:38:62:9e:af:e9:28:4d:
        d2:37:0e:88:2d:b3:6f:ae:a6:ce:94:f2:8f:8f:a6:8b:
        e0:b1:10:84:73:f9:d2:ea:0e:0a:c4:d3:f1:76:ac:3b:
        65:16:61:af:96:a8:af:29:99:bc:14:7b:da:13:e1:b7:
        b8:ac:8d:8a:d9:ac:ae:72:c7:37:6b:4a:9c:0f:95:b2:
        cc:f2:f0:26:03:54:38:88:71:36:5f:01:68:05:ca:7e:
        f2:c7:ef:3e:68:b7:17:1c:4c:1a:79:9f:bf:34:d7:13:
        5c:7c:9d:37:db:27:32:85:05:10:05:fe:e5:94:d3:8c:
        2e:e8:47:07:67:54:56:c7:6b:4d:1a:0e:47:6d:09:6e:
        9e:a9:0f:35:32:11:ee:f5:f2:33:2f:47:2d:df:58:d9:
        f0:25:5f:c6:e8:d6:3f:d4:8e:9a:88:f4:53:d4:d9:b1
    Fingerprint (SHA-256):
        55:51:0C:92:44:F6:F4:94:27:AE:59:0A:DD:56:CC:77:35:A8:58:6C:7F:30:9E:7F:67:9A:63:0A:7A:A1:90:F1
    Fingerprint (SHA1):
        6C:9A:AB:EC:78:D7:74:52:AD:43:EC:CD:DB:4F:0A:6B:84:3D:EA:34
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11054: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11055: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160957 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11056: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11057: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11058: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160958 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11059: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11060: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11061: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11062: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502160959 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11063: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11064: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502160960 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11065: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11066: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11067: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11068: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11069: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502160961   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502160858.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11070: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11071: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11072: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11073: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502160962   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11074: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11075: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11076: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11077: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502160963   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-BridgeNavy-502160859.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11078: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11079: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11080: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11081: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502160964   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11082: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11083: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11084: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160957 (0x1dee5e3d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:12:23 2017
            Not After : Mon May 02 16:12:23 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:d1:3f:75:ea:79:55:47:19:b7:50:aa:62:5b:fd:61:
                    fc:f3:6d:f7:df:7a:5d:73:51:9a:3c:10:66:43:04:35:
                    35:3f:e9:31:62:04:ea:21:b5:53:c1:a5:68:71:6f:f4:
                    86:22:b5:4a:af:e7:1a:93:a0:1a:e6:8a:99:b9:d5:d6:
                    a5:e4:c0:d8:43:22:b3:16:7d:3f:db:1b:16:1f:21:da:
                    80:c6:65:10:89:c9:71:36:d1:7c:70:15:45:70:02:69:
                    32:92:e0:18:bc:6d:da:2d:ea:78:97:bd:09:7e:82:19:
                    f0:d6:dd:7b:c2:b6:9d:8c:61:ec:50:cd:27:ab:19:dd:
                    6d:35:fc:e3:70:c6:2d:73:a9:ef:e4:8d:1b:d3:06:40:
                    2b:6c:a3:7a:53:29:9c:e5:4b:55:1a:30:e5:e0:69:18:
                    d3:ff:22:72:ae:a1:2d:e0:23:dd:4c:2a:8d:ea:be:a6:
                    22:85:3f:e2:3e:9f:e1:ca:b1:56:9e:4f:55:aa:dd:57:
                    03:a9:2d:a1:6f:d7:a4:8d:c7:4f:9b:72:40:bb:eb:29:
                    85:bb:e5:88:55:f8:10:79:31:0e:bc:4e:7b:6b:5c:43:
                    54:29:f0:00:55:0a:bd:ab:28:22:9a:58:ea:bf:90:56:
                    77:42:be:94:66:32:c3:13:b6:27:1e:c9:08:47:8a:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:6a:8c:45:f6:5e:79:42:72:11:4d:34:e3:de:c7:23:
        00:ea:8f:a9:04:0f:db:7e:7f:ed:88:3b:b3:fe:81:eb:
        a8:c8:51:4e:f4:3b:36:71:ef:db:67:d7:a6:2b:a3:a5:
        c7:b3:11:25:78:1e:1f:88:03:e7:02:b0:3d:1f:7f:5c:
        4e:7a:56:18:68:3d:1f:b0:82:e4:6c:f1:3e:d2:ac:be:
        34:b2:58:1b:13:70:49:77:2a:e9:de:23:b4:ff:bc:cf:
        17:b5:22:2c:4c:5e:99:be:bc:81:f3:6c:e5:7c:ef:8e:
        ee:57:8c:de:bf:53:6f:31:ad:83:dd:d0:aa:8d:5e:f0:
        90:23:b8:21:c9:39:18:a0:90:ae:c0:ed:87:ef:8a:5b:
        26:c4:d0:f9:90:fb:3d:9a:6e:ca:6a:99:63:fb:ca:95:
        65:b1:f5:a8:d1:37:d9:f2:82:18:20:52:db:46:b7:bc:
        4a:9e:eb:1e:87:fb:a1:01:f2:80:33:6f:4f:1f:6c:d0:
        1c:ed:fb:1a:55:c1:ad:39:d5:ae:49:7e:df:b0:8e:96:
        66:fa:fc:32:58:9d:f4:12:d9:55:b5:97:11:1a:ab:ed:
        56:8e:bf:c8:58:25:df:24:b4:19:0d:4a:93:36:fa:45:
        98:b7:81:dd:4b:16:4f:80:89:d3:50:5f:19:a0:d7:4c
    Fingerprint (SHA-256):
        3B:6B:70:5D:12:14:50:08:26:85:EE:7E:27:F9:0C:11:D8:CF:11:85:96:13:BC:2A:50:01:05:A2:DC:3A:FB:9C
    Fingerprint (SHA1):
        85:31:6F:4D:49:02:70:BB:DB:8E:F4:16:5E:21:6B:A3:13:C1:6F:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11085: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160958 (0x1dee5e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:12:24 2017
            Not After : Mon May 02 16:12:24 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:ae:a9:38:ae:20:f1:6a:d3:e6:0e:78:07:02:3e:5c:
                    5b:3e:49:08:1c:ab:95:7b:cc:71:65:14:98:3a:2d:3b:
                    fd:1f:1b:9c:66:bf:f3:a0:88:f6:e8:1a:dc:cf:11:d9:
                    5f:b9:53:1d:e1:e7:3f:c1:66:61:b8:87:dd:c5:4d:2f:
                    f7:15:82:2c:7d:70:21:24:53:d4:da:95:3c:1b:65:70:
                    a1:ac:12:a7:30:92:44:e3:04:fb:21:1b:35:06:bf:18:
                    4f:85:22:19:95:5b:25:a4:c1:3c:92:90:ed:c9:40:5b:
                    d6:86:06:0a:0e:0d:86:6e:e1:25:86:cc:99:c1:2f:73:
                    ee:ac:6a:3f:36:7a:61:c5:fe:f2:30:71:fb:37:87:dc:
                    c7:6e:89:1e:8e:aa:7e:f8:16:98:74:ca:91:3d:e2:cb:
                    99:65:1b:c5:40:69:00:b1:4e:e3:40:a7:05:63:8b:73:
                    3f:4d:7d:e7:dd:0a:6e:c4:b2:d1:f2:9e:19:f5:b1:f3:
                    f7:54:d5:c2:df:5c:88:d2:02:62:9b:40:b5:7e:b2:7e:
                    d3:6e:3e:65:21:77:80:5b:39:43:01:2a:34:9b:8f:1b:
                    17:c7:ab:45:a6:c6:b9:83:bd:41:92:8d:2f:47:cb:56:
                    59:c5:63:97:9e:62:bf:04:b0:2a:70:a0:81:b4:8d:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:48:ba:af:60:ff:8a:0f:90:90:67:44:ea:ee:ff:75:
        52:60:ff:db:59:f8:64:25:c0:8a:24:d3:b0:6d:cd:29:
        4a:3d:d2:8e:e7:9a:1f:f6:b0:1c:b9:02:45:c5:b4:f1:
        67:af:af:d4:27:1a:65:50:b7:04:94:75:6d:03:47:93:
        c4:59:ff:b1:76:b3:fb:2d:96:12:10:77:c4:68:6b:4f:
        f7:3d:3b:13:e9:24:28:b7:d5:2e:5f:32:2a:6c:71:94:
        a2:13:ca:75:97:46:df:a4:49:ce:e2:bb:1a:b8:e0:56:
        71:ea:d9:d0:ca:69:46:2f:7c:c6:7e:a7:e8:69:e8:a3:
        19:dd:e5:58:3b:1c:8c:1d:ab:80:d6:0c:b5:40:ed:09:
        4c:f6:21:74:f7:3d:f5:9d:b3:33:0f:a0:d4:13:c8:8a:
        fb:0d:f6:ae:d2:c4:3b:df:aa:51:0a:e4:69:74:2e:73:
        4f:c8:67:25:44:ed:37:8b:bd:fe:2e:a9:1d:d0:59:54:
        99:22:ee:72:ac:52:62:25:95:73:38:dc:8b:f9:db:80:
        9e:1d:af:d6:ca:65:17:c4:6d:5c:9c:81:f6:f5:4b:2d:
        26:1b:ac:f0:02:5c:87:65:fc:01:2f:d2:60:e9:61:5e:
        69:fc:29:11:5b:f6:e7:41:ad:15:82:18:84:c0:2a:51
    Fingerprint (SHA-256):
        54:C9:3A:D5:B1:A6:12:EE:33:50:E3:9B:01:73:EA:AE:B6:F5:00:5E:36:7E:A7:7A:82:79:CE:7D:C7:A9:C9:70
    Fingerprint (SHA1):
        71:27:76:9C:55:93:0A:81:8F:0D:A2:7A:04:28:4C:80:62:61:D6:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11086: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160958 (0x1dee5e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:12:24 2017
            Not After : Mon May 02 16:12:24 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:ae:a9:38:ae:20:f1:6a:d3:e6:0e:78:07:02:3e:5c:
                    5b:3e:49:08:1c:ab:95:7b:cc:71:65:14:98:3a:2d:3b:
                    fd:1f:1b:9c:66:bf:f3:a0:88:f6:e8:1a:dc:cf:11:d9:
                    5f:b9:53:1d:e1:e7:3f:c1:66:61:b8:87:dd:c5:4d:2f:
                    f7:15:82:2c:7d:70:21:24:53:d4:da:95:3c:1b:65:70:
                    a1:ac:12:a7:30:92:44:e3:04:fb:21:1b:35:06:bf:18:
                    4f:85:22:19:95:5b:25:a4:c1:3c:92:90:ed:c9:40:5b:
                    d6:86:06:0a:0e:0d:86:6e:e1:25:86:cc:99:c1:2f:73:
                    ee:ac:6a:3f:36:7a:61:c5:fe:f2:30:71:fb:37:87:dc:
                    c7:6e:89:1e:8e:aa:7e:f8:16:98:74:ca:91:3d:e2:cb:
                    99:65:1b:c5:40:69:00:b1:4e:e3:40:a7:05:63:8b:73:
                    3f:4d:7d:e7:dd:0a:6e:c4:b2:d1:f2:9e:19:f5:b1:f3:
                    f7:54:d5:c2:df:5c:88:d2:02:62:9b:40:b5:7e:b2:7e:
                    d3:6e:3e:65:21:77:80:5b:39:43:01:2a:34:9b:8f:1b:
                    17:c7:ab:45:a6:c6:b9:83:bd:41:92:8d:2f:47:cb:56:
                    59:c5:63:97:9e:62:bf:04:b0:2a:70:a0:81:b4:8d:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:48:ba:af:60:ff:8a:0f:90:90:67:44:ea:ee:ff:75:
        52:60:ff:db:59:f8:64:25:c0:8a:24:d3:b0:6d:cd:29:
        4a:3d:d2:8e:e7:9a:1f:f6:b0:1c:b9:02:45:c5:b4:f1:
        67:af:af:d4:27:1a:65:50:b7:04:94:75:6d:03:47:93:
        c4:59:ff:b1:76:b3:fb:2d:96:12:10:77:c4:68:6b:4f:
        f7:3d:3b:13:e9:24:28:b7:d5:2e:5f:32:2a:6c:71:94:
        a2:13:ca:75:97:46:df:a4:49:ce:e2:bb:1a:b8:e0:56:
        71:ea:d9:d0:ca:69:46:2f:7c:c6:7e:a7:e8:69:e8:a3:
        19:dd:e5:58:3b:1c:8c:1d:ab:80:d6:0c:b5:40:ed:09:
        4c:f6:21:74:f7:3d:f5:9d:b3:33:0f:a0:d4:13:c8:8a:
        fb:0d:f6:ae:d2:c4:3b:df:aa:51:0a:e4:69:74:2e:73:
        4f:c8:67:25:44:ed:37:8b:bd:fe:2e:a9:1d:d0:59:54:
        99:22:ee:72:ac:52:62:25:95:73:38:dc:8b:f9:db:80:
        9e:1d:af:d6:ca:65:17:c4:6d:5c:9c:81:f6:f5:4b:2d:
        26:1b:ac:f0:02:5c:87:65:fc:01:2f:d2:60:e9:61:5e:
        69:fc:29:11:5b:f6:e7:41:ad:15:82:18:84:c0:2a:51
    Fingerprint (SHA-256):
        54:C9:3A:D5:B1:A6:12:EE:33:50:E3:9B:01:73:EA:AE:B6:F5:00:5E:36:7E:A7:7A:82:79:CE:7D:C7:A9:C9:70
    Fingerprint (SHA1):
        71:27:76:9C:55:93:0A:81:8F:0D:A2:7A:04:28:4C:80:62:61:D6:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11087: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #11088: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160957 (0x1dee5e3d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:12:23 2017
            Not After : Mon May 02 16:12:23 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a3:d1:3f:75:ea:79:55:47:19:b7:50:aa:62:5b:fd:61:
                    fc:f3:6d:f7:df:7a:5d:73:51:9a:3c:10:66:43:04:35:
                    35:3f:e9:31:62:04:ea:21:b5:53:c1:a5:68:71:6f:f4:
                    86:22:b5:4a:af:e7:1a:93:a0:1a:e6:8a:99:b9:d5:d6:
                    a5:e4:c0:d8:43:22:b3:16:7d:3f:db:1b:16:1f:21:da:
                    80:c6:65:10:89:c9:71:36:d1:7c:70:15:45:70:02:69:
                    32:92:e0:18:bc:6d:da:2d:ea:78:97:bd:09:7e:82:19:
                    f0:d6:dd:7b:c2:b6:9d:8c:61:ec:50:cd:27:ab:19:dd:
                    6d:35:fc:e3:70:c6:2d:73:a9:ef:e4:8d:1b:d3:06:40:
                    2b:6c:a3:7a:53:29:9c:e5:4b:55:1a:30:e5:e0:69:18:
                    d3:ff:22:72:ae:a1:2d:e0:23:dd:4c:2a:8d:ea:be:a6:
                    22:85:3f:e2:3e:9f:e1:ca:b1:56:9e:4f:55:aa:dd:57:
                    03:a9:2d:a1:6f:d7:a4:8d:c7:4f:9b:72:40:bb:eb:29:
                    85:bb:e5:88:55:f8:10:79:31:0e:bc:4e:7b:6b:5c:43:
                    54:29:f0:00:55:0a:bd:ab:28:22:9a:58:ea:bf:90:56:
                    77:42:be:94:66:32:c3:13:b6:27:1e:c9:08:47:8a:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9c:6a:8c:45:f6:5e:79:42:72:11:4d:34:e3:de:c7:23:
        00:ea:8f:a9:04:0f:db:7e:7f:ed:88:3b:b3:fe:81:eb:
        a8:c8:51:4e:f4:3b:36:71:ef:db:67:d7:a6:2b:a3:a5:
        c7:b3:11:25:78:1e:1f:88:03:e7:02:b0:3d:1f:7f:5c:
        4e:7a:56:18:68:3d:1f:b0:82:e4:6c:f1:3e:d2:ac:be:
        34:b2:58:1b:13:70:49:77:2a:e9:de:23:b4:ff:bc:cf:
        17:b5:22:2c:4c:5e:99:be:bc:81:f3:6c:e5:7c:ef:8e:
        ee:57:8c:de:bf:53:6f:31:ad:83:dd:d0:aa:8d:5e:f0:
        90:23:b8:21:c9:39:18:a0:90:ae:c0:ed:87:ef:8a:5b:
        26:c4:d0:f9:90:fb:3d:9a:6e:ca:6a:99:63:fb:ca:95:
        65:b1:f5:a8:d1:37:d9:f2:82:18:20:52:db:46:b7:bc:
        4a:9e:eb:1e:87:fb:a1:01:f2:80:33:6f:4f:1f:6c:d0:
        1c:ed:fb:1a:55:c1:ad:39:d5:ae:49:7e:df:b0:8e:96:
        66:fa:fc:32:58:9d:f4:12:d9:55:b5:97:11:1a:ab:ed:
        56:8e:bf:c8:58:25:df:24:b4:19:0d:4a:93:36:fa:45:
        98:b7:81:dd:4b:16:4f:80:89:d3:50:5f:19:a0:d7:4c
    Fingerprint (SHA-256):
        3B:6B:70:5D:12:14:50:08:26:85:EE:7E:27:F9:0C:11:D8:CF:11:85:96:13:BC:2A:50:01:05:A2:DC:3A:FB:9C
    Fingerprint (SHA1):
        85:31:6F:4D:49:02:70:BB:DB:8E:F4:16:5E:21:6B:A3:13:C1:6F:3D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11089: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160958 (0x1dee5e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:12:24 2017
            Not After : Mon May 02 16:12:24 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:ae:a9:38:ae:20:f1:6a:d3:e6:0e:78:07:02:3e:5c:
                    5b:3e:49:08:1c:ab:95:7b:cc:71:65:14:98:3a:2d:3b:
                    fd:1f:1b:9c:66:bf:f3:a0:88:f6:e8:1a:dc:cf:11:d9:
                    5f:b9:53:1d:e1:e7:3f:c1:66:61:b8:87:dd:c5:4d:2f:
                    f7:15:82:2c:7d:70:21:24:53:d4:da:95:3c:1b:65:70:
                    a1:ac:12:a7:30:92:44:e3:04:fb:21:1b:35:06:bf:18:
                    4f:85:22:19:95:5b:25:a4:c1:3c:92:90:ed:c9:40:5b:
                    d6:86:06:0a:0e:0d:86:6e:e1:25:86:cc:99:c1:2f:73:
                    ee:ac:6a:3f:36:7a:61:c5:fe:f2:30:71:fb:37:87:dc:
                    c7:6e:89:1e:8e:aa:7e:f8:16:98:74:ca:91:3d:e2:cb:
                    99:65:1b:c5:40:69:00:b1:4e:e3:40:a7:05:63:8b:73:
                    3f:4d:7d:e7:dd:0a:6e:c4:b2:d1:f2:9e:19:f5:b1:f3:
                    f7:54:d5:c2:df:5c:88:d2:02:62:9b:40:b5:7e:b2:7e:
                    d3:6e:3e:65:21:77:80:5b:39:43:01:2a:34:9b:8f:1b:
                    17:c7:ab:45:a6:c6:b9:83:bd:41:92:8d:2f:47:cb:56:
                    59:c5:63:97:9e:62:bf:04:b0:2a:70:a0:81:b4:8d:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:48:ba:af:60:ff:8a:0f:90:90:67:44:ea:ee:ff:75:
        52:60:ff:db:59:f8:64:25:c0:8a:24:d3:b0:6d:cd:29:
        4a:3d:d2:8e:e7:9a:1f:f6:b0:1c:b9:02:45:c5:b4:f1:
        67:af:af:d4:27:1a:65:50:b7:04:94:75:6d:03:47:93:
        c4:59:ff:b1:76:b3:fb:2d:96:12:10:77:c4:68:6b:4f:
        f7:3d:3b:13:e9:24:28:b7:d5:2e:5f:32:2a:6c:71:94:
        a2:13:ca:75:97:46:df:a4:49:ce:e2:bb:1a:b8:e0:56:
        71:ea:d9:d0:ca:69:46:2f:7c:c6:7e:a7:e8:69:e8:a3:
        19:dd:e5:58:3b:1c:8c:1d:ab:80:d6:0c:b5:40:ed:09:
        4c:f6:21:74:f7:3d:f5:9d:b3:33:0f:a0:d4:13:c8:8a:
        fb:0d:f6:ae:d2:c4:3b:df:aa:51:0a:e4:69:74:2e:73:
        4f:c8:67:25:44:ed:37:8b:bd:fe:2e:a9:1d:d0:59:54:
        99:22:ee:72:ac:52:62:25:95:73:38:dc:8b:f9:db:80:
        9e:1d:af:d6:ca:65:17:c4:6d:5c:9c:81:f6:f5:4b:2d:
        26:1b:ac:f0:02:5c:87:65:fc:01:2f:d2:60:e9:61:5e:
        69:fc:29:11:5b:f6:e7:41:ad:15:82:18:84:c0:2a:51
    Fingerprint (SHA-256):
        54:C9:3A:D5:B1:A6:12:EE:33:50:E3:9B:01:73:EA:AE:B6:F5:00:5E:36:7E:A7:7A:82:79:CE:7D:C7:A9:C9:70
    Fingerprint (SHA1):
        71:27:76:9C:55:93:0A:81:8F:0D:A2:7A:04:28:4C:80:62:61:D6:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11090: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160958 (0x1dee5e3e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:12:24 2017
            Not After : Mon May 02 16:12:24 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    99:ae:a9:38:ae:20:f1:6a:d3:e6:0e:78:07:02:3e:5c:
                    5b:3e:49:08:1c:ab:95:7b:cc:71:65:14:98:3a:2d:3b:
                    fd:1f:1b:9c:66:bf:f3:a0:88:f6:e8:1a:dc:cf:11:d9:
                    5f:b9:53:1d:e1:e7:3f:c1:66:61:b8:87:dd:c5:4d:2f:
                    f7:15:82:2c:7d:70:21:24:53:d4:da:95:3c:1b:65:70:
                    a1:ac:12:a7:30:92:44:e3:04:fb:21:1b:35:06:bf:18:
                    4f:85:22:19:95:5b:25:a4:c1:3c:92:90:ed:c9:40:5b:
                    d6:86:06:0a:0e:0d:86:6e:e1:25:86:cc:99:c1:2f:73:
                    ee:ac:6a:3f:36:7a:61:c5:fe:f2:30:71:fb:37:87:dc:
                    c7:6e:89:1e:8e:aa:7e:f8:16:98:74:ca:91:3d:e2:cb:
                    99:65:1b:c5:40:69:00:b1:4e:e3:40:a7:05:63:8b:73:
                    3f:4d:7d:e7:dd:0a:6e:c4:b2:d1:f2:9e:19:f5:b1:f3:
                    f7:54:d5:c2:df:5c:88:d2:02:62:9b:40:b5:7e:b2:7e:
                    d3:6e:3e:65:21:77:80:5b:39:43:01:2a:34:9b:8f:1b:
                    17:c7:ab:45:a6:c6:b9:83:bd:41:92:8d:2f:47:cb:56:
                    59:c5:63:97:9e:62:bf:04:b0:2a:70:a0:81:b4:8d:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        04:48:ba:af:60:ff:8a:0f:90:90:67:44:ea:ee:ff:75:
        52:60:ff:db:59:f8:64:25:c0:8a:24:d3:b0:6d:cd:29:
        4a:3d:d2:8e:e7:9a:1f:f6:b0:1c:b9:02:45:c5:b4:f1:
        67:af:af:d4:27:1a:65:50:b7:04:94:75:6d:03:47:93:
        c4:59:ff:b1:76:b3:fb:2d:96:12:10:77:c4:68:6b:4f:
        f7:3d:3b:13:e9:24:28:b7:d5:2e:5f:32:2a:6c:71:94:
        a2:13:ca:75:97:46:df:a4:49:ce:e2:bb:1a:b8:e0:56:
        71:ea:d9:d0:ca:69:46:2f:7c:c6:7e:a7:e8:69:e8:a3:
        19:dd:e5:58:3b:1c:8c:1d:ab:80:d6:0c:b5:40:ed:09:
        4c:f6:21:74:f7:3d:f5:9d:b3:33:0f:a0:d4:13:c8:8a:
        fb:0d:f6:ae:d2:c4:3b:df:aa:51:0a:e4:69:74:2e:73:
        4f:c8:67:25:44:ed:37:8b:bd:fe:2e:a9:1d:d0:59:54:
        99:22:ee:72:ac:52:62:25:95:73:38:dc:8b:f9:db:80:
        9e:1d:af:d6:ca:65:17:c4:6d:5c:9c:81:f6:f5:4b:2d:
        26:1b:ac:f0:02:5c:87:65:fc:01:2f:d2:60:e9:61:5e:
        69:fc:29:11:5b:f6:e7:41:ad:15:82:18:84:c0:2a:51
    Fingerprint (SHA-256):
        54:C9:3A:D5:B1:A6:12:EE:33:50:E3:9B:01:73:EA:AE:B6:F5:00:5E:36:7E:A7:7A:82:79:CE:7D:C7:A9:C9:70
    Fingerprint (SHA1):
        71:27:76:9C:55:93:0A:81:8F:0D:A2:7A:04:28:4C:80:62:61:D6:90
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11091: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11092: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160965 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11093: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11094: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11095: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160966 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11096: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11097: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #11098: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11099: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502160967   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11100: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11101: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #11102: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11103: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502160968   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11104: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11105: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11106: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11107: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502160969 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11108: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11109: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502160970 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11110: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11111: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #11112: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11113: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11114: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502160971   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11115: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11116: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11117: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11118: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502160972   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11119: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11120: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11121: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11122: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502160973   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11123: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11124: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11125: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11126: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502160974   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11127: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11128: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11129: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160965 (0x1dee5e45)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:12:35 2017
            Not After : Mon May 02 16:12:35 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ab:b7:ad:83:e0:03:d4:c4:8c:ea:e8:d0:65:77:90:9c:
                    a4:2e:c2:1b:dc:5d:25:b5:ca:2e:9e:83:e8:16:25:d4:
                    f3:87:4d:44:eb:12:d3:45:ff:52:38:df:05:8c:9c:a4:
                    a2:a5:0b:5a:d0:7b:5f:b5:e8:c2:e4:de:c5:0e:58:b4:
                    97:07:a4:9e:00:6c:cd:e5:ff:74:41:b3:c9:6a:7a:60:
                    3e:ca:e5:10:14:0f:48:2f:8f:25:ca:5c:34:be:e7:da:
                    9b:6d:0f:a1:8b:e9:1e:49:57:40:e0:20:91:e3:8f:c5:
                    57:06:81:93:b1:73:eb:a2:02:f9:9b:40:0a:0d:28:0b:
                    93:5e:bc:d0:f7:d7:9d:c0:3a:24:e6:ad:d3:33:cb:91:
                    96:09:cb:38:69:80:b5:4f:a4:87:60:f9:84:f8:8c:f7:
                    f9:6b:25:62:14:18:4e:ec:02:86:e2:bb:89:92:82:cd:
                    f7:0f:a3:97:01:aa:85:2a:37:80:31:b4:45:3f:8c:24:
                    48:79:46:95:bd:1c:39:ff:56:1b:39:02:b3:1f:c6:50:
                    1e:74:de:de:04:fc:7a:9b:ce:de:40:64:4d:7b:52:9a:
                    52:4b:6f:0c:10:5c:8b:4a:f6:dd:1c:ff:eb:e2:7a:c4:
                    39:d8:4f:0d:28:de:cb:2a:27:8c:4d:26:85:cd:8f:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        25:02:09:d0:b7:8d:8f:70:94:48:4d:bc:e3:44:da:9d:
        f5:ba:4f:4a:16:6e:2d:42:b8:ac:08:27:d1:a1:e3:05:
        c1:a7:29:37:26:7c:fa:ed:d9:f6:8f:c9:a2:73:17:39:
        0b:32:5a:ee:af:ba:e7:5f:0e:24:4f:91:bd:95:76:2c:
        42:94:7a:4b:11:ab:6d:4e:fd:80:03:ed:10:4b:c1:75:
        d4:2f:93:cf:af:2c:92:58:54:de:1c:13:e2:cb:87:ec:
        b1:72:c1:db:9d:b3:87:dc:39:94:10:07:77:9c:69:82:
        75:8f:3c:68:4a:ce:99:46:10:d4:a0:81:b0:c8:57:89:
        71:83:21:25:f2:de:97:b5:00:84:fb:6c:3c:34:06:fa:
        9f:88:61:69:75:31:95:8d:66:8a:fa:19:44:95:8a:4e:
        ef:57:b7:24:1a:3d:3e:f7:0e:cb:eb:4c:26:52:b4:e7:
        7a:a7:a7:db:c0:3f:92:d7:7f:02:63:1c:25:e5:d7:e3:
        96:32:27:d2:c4:60:ba:c7:76:15:4a:98:95:32:d8:5b:
        69:d7:c5:94:04:69:16:75:79:5f:a9:5e:28:38:8e:a0:
        3f:1a:4e:a8:73:6d:27:87:11:b5:a3:67:b6:5e:fa:4b:
        d0:5a:a5:6a:69:e3:09:0d:69:2b:b9:4d:3e:34:4a:48
    Fingerprint (SHA-256):
        C9:80:B9:8E:4C:30:C5:E8:2B:09:3F:A9:29:81:7C:68:9F:91:47:2B:CD:6C:84:53:3D:EF:F7:0A:2B:43:BA:6C
    Fingerprint (SHA1):
        7C:A7:25:7F:83:21:35:52:1B:9D:2A:ED:A2:64:11:6C:D2:75:8E:46
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11130: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11131: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11132: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11133: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11134: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11135: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11136: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11137: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11138: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160966 (0x1dee5e46)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:12:37 2017
            Not After : Mon May 02 16:12:37 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c5:52:64:be:a8:b0:2e:85:dd:c8:cc:6c:86:27:2e:79:
                    b8:32:2e:94:55:2d:55:70:af:58:86:40:9a:c2:25:21:
                    02:eb:50:59:25:e9:b1:0c:a0:4d:a1:6b:d6:a0:74:c9:
                    7e:72:cf:cb:59:0b:45:39:97:9a:d0:4c:b9:24:34:bb:
                    17:19:29:4a:ed:e3:76:64:a2:df:9b:06:44:eb:0f:c3:
                    b9:ad:6d:77:71:5d:b6:29:df:62:1b:0e:a5:07:69:d6:
                    fa:de:b5:2b:60:86:ac:cf:c0:93:8a:41:16:35:15:88:
                    f2:33:b0:dc:12:51:98:89:90:0e:28:a3:13:7a:b7:8e:
                    c4:02:da:06:b1:59:af:bf:da:91:60:b1:c8:46:fc:34:
                    4c:b0:25:12:6e:e0:8a:9c:a2:36:42:ad:60:f9:01:2d:
                    cb:4b:e8:24:24:ce:0f:f3:29:25:f8:c9:e0:98:22:a6:
                    b6:57:7c:a5:7c:78:0a:be:d2:40:e9:0d:53:da:b1:d6:
                    1b:1c:61:3e:27:03:f2:38:af:97:b8:d0:60:5c:e0:2b:
                    05:0e:0e:65:0b:f2:5a:b0:40:1e:f0:c0:08:03:e0:9d:
                    01:87:ff:4b:93:c9:eb:03:db:2b:4a:9b:a6:6b:78:22:
                    e7:33:be:ef:a4:0a:d5:84:98:8e:d7:79:f0:18:16:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        75:fe:c7:e2:95:1d:96:e8:9c:7d:0c:65:bd:44:bd:d7:
        fa:fe:71:7f:ec:1d:b8:bc:b5:93:6d:04:0c:d0:ca:8a:
        02:57:97:02:83:e0:1e:8f:87:27:6c:8f:a1:d0:92:b9:
        05:d7:16:11:ab:d9:db:82:28:a8:08:15:38:36:6e:bd:
        1c:ba:23:16:39:91:c8:11:ec:ba:c5:12:0c:7d:f3:45:
        a6:26:54:16:bb:31:4b:0b:2e:18:26:f7:8c:09:db:9d:
        aa:a9:53:57:a3:58:4d:e4:e9:9b:66:04:ac:77:40:cb:
        bb:f0:d7:31:75:20:dd:b2:a4:3d:1d:0e:f1:33:f8:9c:
        79:db:38:48:62:17:0e:1a:b0:5d:ff:78:b9:6d:68:5f:
        a3:b3:d0:c5:4b:9e:43:88:18:3d:d2:82:70:5f:4e:8f:
        d8:b7:ff:29:ec:7c:a5:a4:ba:e6:58:01:63:3f:d6:4f:
        24:10:57:08:9d:dc:f6:56:da:8e:9b:cb:78:d3:c9:dc:
        96:d0:55:39:c0:e4:0f:1a:2b:ca:4f:bb:51:5f:3c:24:
        96:c6:14:22:1e:6b:32:35:51:a2:99:00:16:d5:9e:85:
        bc:94:75:e9:e9:71:f1:4e:e2:7b:3e:18:fb:93:8d:a6:
        10:5c:8a:43:61:93:7e:b4:c7:db:18:59:64:15:23:5c
    Fingerprint (SHA-256):
        04:B0:9E:5C:91:B1:17:0A:26:90:86:22:18:8A:67:11:AE:49:69:AE:36:16:5B:E2:F0:ED:A8:F9:E8:4B:48:3D
    Fingerprint (SHA1):
        2B:D6:22:50:84:03:D9:9F:E6:53:44:43:F7:70:36:EF:3B:9B:8D:2D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11139: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11140: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11141: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11142: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11143: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11144: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11145: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #11146: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #11147: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #11148: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #11149: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #11150: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #11151: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #11152: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11153: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11154: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #11155: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #11156: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11157: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160975 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11158: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11159: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11160: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11161: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502160976   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11162: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11163: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11164: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11165: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502160977   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11166: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11167: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11168: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11169: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502160978   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11170: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11171: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11172: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11173: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502160979   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11174: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11175: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11176: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11177: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502160980   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11178: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11179: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11180: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11181: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502160981   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11182: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11183: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #11184: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11185: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502160982   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11186: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11187: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11188: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11189: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502160983   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11190: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11191: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11192: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160975 (0x1dee5e4f)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:12:52 2017
            Not After : Mon May 02 16:12:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    86:3e:70:eb:88:c0:27:49:8d:5a:e6:4c:72:6c:db:4d:
                    8a:d1:7e:bd:9e:0c:c0:aa:b3:f2:04:60:61:a3:60:7a:
                    08:c2:34:1e:aa:02:51:98:21:e5:c3:b3:2e:cf:6e:75:
                    19:21:5e:52:a3:5d:ab:09:1e:88:06:61:2e:28:e6:07:
                    20:2f:25:1a:21:6b:9e:34:fa:c4:90:6f:09:3a:72:15:
                    d3:3c:2d:45:f0:4c:e4:2f:68:f7:c8:ab:64:3e:ad:1a:
                    76:03:56:85:01:82:fc:57:9e:63:49:21:19:d8:4c:f5:
                    49:00:4b:11:19:47:8f:74:42:e7:cf:8a:a5:88:02:6f:
                    e7:34:93:cc:6d:59:c9:a4:d5:45:16:a7:42:60:2b:53:
                    b1:50:ab:b8:ce:65:9c:d0:52:4f:48:1e:ee:a1:70:ba:
                    47:08:0b:33:d0:69:61:aa:cb:99:da:9b:84:f5:26:de:
                    3d:6d:68:c6:7b:92:8b:e7:40:ed:6d:b2:e4:d0:55:5c:
                    b0:4b:6f:ee:1c:11:bb:94:ed:aa:d4:c6:91:7b:56:d6:
                    31:e7:65:ba:06:75:73:3e:3d:9f:46:87:f8:22:2f:fe:
                    e6:47:3a:e6:9d:00:a9:47:7c:3e:44:c8:a5:b6:38:5a:
                    47:ad:16:77:b9:9d:93:55:91:cc:c8:79:dd:f3:26:82
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:a5:fc:ba:f4:af:90:2f:8a:bb:aa:41:
        4c:61:0d:23:8b:0b:d0:03:de:9b:b4:0d:1b:cd:04:59:
        ea:02:1c:0c:18:9b:90:57:6e:d8:cc:a1:1e:a7:26:f4:
        0f:75:1d:6e:4f:9d:88:93:60:58:16:6b:99:d3:99
    Fingerprint (SHA-256):
        AE:B2:CE:16:36:58:8E:A9:AB:95:94:3B:57:06:BB:E1:A3:B2:58:6B:CD:86:7F:82:44:9A:E2:11:08:24:B8:EC
    Fingerprint (SHA1):
        00:E7:DB:30:EB:78:9E:65:72:1A:86:D5:BD:BF:FE:B3:0D:FB:07:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11193: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160975 (0x1dee5e4f)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:12:52 2017
            Not After : Mon May 02 16:12:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    86:3e:70:eb:88:c0:27:49:8d:5a:e6:4c:72:6c:db:4d:
                    8a:d1:7e:bd:9e:0c:c0:aa:b3:f2:04:60:61:a3:60:7a:
                    08:c2:34:1e:aa:02:51:98:21:e5:c3:b3:2e:cf:6e:75:
                    19:21:5e:52:a3:5d:ab:09:1e:88:06:61:2e:28:e6:07:
                    20:2f:25:1a:21:6b:9e:34:fa:c4:90:6f:09:3a:72:15:
                    d3:3c:2d:45:f0:4c:e4:2f:68:f7:c8:ab:64:3e:ad:1a:
                    76:03:56:85:01:82:fc:57:9e:63:49:21:19:d8:4c:f5:
                    49:00:4b:11:19:47:8f:74:42:e7:cf:8a:a5:88:02:6f:
                    e7:34:93:cc:6d:59:c9:a4:d5:45:16:a7:42:60:2b:53:
                    b1:50:ab:b8:ce:65:9c:d0:52:4f:48:1e:ee:a1:70:ba:
                    47:08:0b:33:d0:69:61:aa:cb:99:da:9b:84:f5:26:de:
                    3d:6d:68:c6:7b:92:8b:e7:40:ed:6d:b2:e4:d0:55:5c:
                    b0:4b:6f:ee:1c:11:bb:94:ed:aa:d4:c6:91:7b:56:d6:
                    31:e7:65:ba:06:75:73:3e:3d:9f:46:87:f8:22:2f:fe:
                    e6:47:3a:e6:9d:00:a9:47:7c:3e:44:c8:a5:b6:38:5a:
                    47:ad:16:77:b9:9d:93:55:91:cc:c8:79:dd:f3:26:82
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:a5:fc:ba:f4:af:90:2f:8a:bb:aa:41:
        4c:61:0d:23:8b:0b:d0:03:de:9b:b4:0d:1b:cd:04:59:
        ea:02:1c:0c:18:9b:90:57:6e:d8:cc:a1:1e:a7:26:f4:
        0f:75:1d:6e:4f:9d:88:93:60:58:16:6b:99:d3:99
    Fingerprint (SHA-256):
        AE:B2:CE:16:36:58:8E:A9:AB:95:94:3B:57:06:BB:E1:A3:B2:58:6B:CD:86:7F:82:44:9A:E2:11:08:24:B8:EC
    Fingerprint (SHA1):
        00:E7:DB:30:EB:78:9E:65:72:1A:86:D5:BD:BF:FE:B3:0D:FB:07:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11194: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160975 (0x1dee5e4f)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:12:52 2017
            Not After : Mon May 02 16:12:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    86:3e:70:eb:88:c0:27:49:8d:5a:e6:4c:72:6c:db:4d:
                    8a:d1:7e:bd:9e:0c:c0:aa:b3:f2:04:60:61:a3:60:7a:
                    08:c2:34:1e:aa:02:51:98:21:e5:c3:b3:2e:cf:6e:75:
                    19:21:5e:52:a3:5d:ab:09:1e:88:06:61:2e:28:e6:07:
                    20:2f:25:1a:21:6b:9e:34:fa:c4:90:6f:09:3a:72:15:
                    d3:3c:2d:45:f0:4c:e4:2f:68:f7:c8:ab:64:3e:ad:1a:
                    76:03:56:85:01:82:fc:57:9e:63:49:21:19:d8:4c:f5:
                    49:00:4b:11:19:47:8f:74:42:e7:cf:8a:a5:88:02:6f:
                    e7:34:93:cc:6d:59:c9:a4:d5:45:16:a7:42:60:2b:53:
                    b1:50:ab:b8:ce:65:9c:d0:52:4f:48:1e:ee:a1:70:ba:
                    47:08:0b:33:d0:69:61:aa:cb:99:da:9b:84:f5:26:de:
                    3d:6d:68:c6:7b:92:8b:e7:40:ed:6d:b2:e4:d0:55:5c:
                    b0:4b:6f:ee:1c:11:bb:94:ed:aa:d4:c6:91:7b:56:d6:
                    31:e7:65:ba:06:75:73:3e:3d:9f:46:87:f8:22:2f:fe:
                    e6:47:3a:e6:9d:00:a9:47:7c:3e:44:c8:a5:b6:38:5a:
                    47:ad:16:77:b9:9d:93:55:91:cc:c8:79:dd:f3:26:82
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:a5:fc:ba:f4:af:90:2f:8a:bb:aa:41:
        4c:61:0d:23:8b:0b:d0:03:de:9b:b4:0d:1b:cd:04:59:
        ea:02:1c:0c:18:9b:90:57:6e:d8:cc:a1:1e:a7:26:f4:
        0f:75:1d:6e:4f:9d:88:93:60:58:16:6b:99:d3:99
    Fingerprint (SHA-256):
        AE:B2:CE:16:36:58:8E:A9:AB:95:94:3B:57:06:BB:E1:A3:B2:58:6B:CD:86:7F:82:44:9A:E2:11:08:24:B8:EC
    Fingerprint (SHA1):
        00:E7:DB:30:EB:78:9E:65:72:1A:86:D5:BD:BF:FE:B3:0D:FB:07:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11195: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160975 (0x1dee5e4f)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:12:52 2017
            Not After : Mon May 02 16:12:52 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    86:3e:70:eb:88:c0:27:49:8d:5a:e6:4c:72:6c:db:4d:
                    8a:d1:7e:bd:9e:0c:c0:aa:b3:f2:04:60:61:a3:60:7a:
                    08:c2:34:1e:aa:02:51:98:21:e5:c3:b3:2e:cf:6e:75:
                    19:21:5e:52:a3:5d:ab:09:1e:88:06:61:2e:28:e6:07:
                    20:2f:25:1a:21:6b:9e:34:fa:c4:90:6f:09:3a:72:15:
                    d3:3c:2d:45:f0:4c:e4:2f:68:f7:c8:ab:64:3e:ad:1a:
                    76:03:56:85:01:82:fc:57:9e:63:49:21:19:d8:4c:f5:
                    49:00:4b:11:19:47:8f:74:42:e7:cf:8a:a5:88:02:6f:
                    e7:34:93:cc:6d:59:c9:a4:d5:45:16:a7:42:60:2b:53:
                    b1:50:ab:b8:ce:65:9c:d0:52:4f:48:1e:ee:a1:70:ba:
                    47:08:0b:33:d0:69:61:aa:cb:99:da:9b:84:f5:26:de:
                    3d:6d:68:c6:7b:92:8b:e7:40:ed:6d:b2:e4:d0:55:5c:
                    b0:4b:6f:ee:1c:11:bb:94:ed:aa:d4:c6:91:7b:56:d6:
                    31:e7:65:ba:06:75:73:3e:3d:9f:46:87:f8:22:2f:fe:
                    e6:47:3a:e6:9d:00:a9:47:7c:3e:44:c8:a5:b6:38:5a:
                    47:ad:16:77:b9:9d:93:55:91:cc:c8:79:dd:f3:26:82
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:a5:fc:ba:f4:af:90:2f:8a:bb:aa:41:
        4c:61:0d:23:8b:0b:d0:03:de:9b:b4:0d:1b:cd:04:59:
        ea:02:1c:0c:18:9b:90:57:6e:d8:cc:a1:1e:a7:26:f4:
        0f:75:1d:6e:4f:9d:88:93:60:58:16:6b:99:d3:99
    Fingerprint (SHA-256):
        AE:B2:CE:16:36:58:8E:A9:AB:95:94:3B:57:06:BB:E1:A3:B2:58:6B:CD:86:7F:82:44:9A:E2:11:08:24:B8:EC
    Fingerprint (SHA1):
        00:E7:DB:30:EB:78:9E:65:72:1A:86:D5:BD:BF:FE:B3:0D:FB:07:56
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #11196: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11197: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11198: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11199: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #11200: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11201: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11202: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11203: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11204: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11205: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11206: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11207: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #11208: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11209: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11210: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11211: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #11212: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11213: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11214: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11215: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11216: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11217: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11218: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11219: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #11220: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11221: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11222: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11223: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502161312Z
nextupdate=20180502161312Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 16:13:12 2017
    Next Update: Wed May 02 16:13:12 2018
    CRL Extensions:
chains.sh: #11224: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502161312Z
nextupdate=20180502161312Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 16:13:12 2017
    Next Update: Wed May 02 16:13:12 2018
    CRL Extensions:
chains.sh: #11225: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502161313Z
nextupdate=20180502161313Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 16:13:13 2017
    Next Update: Wed May 02 16:13:13 2018
    CRL Extensions:
chains.sh: #11226: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502161313Z
nextupdate=20180502161313Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 16:13:13 2017
    Next Update: Wed May 02 16:13:13 2018
    CRL Extensions:
chains.sh: #11227: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502161314Z
addcert 14 20170502161314Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 16:13:14 2017
    Next Update: Wed May 02 16:13:13 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 16:13:14 2017
    CRL Extensions:
chains.sh: #11228: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502161315Z
addcert 15 20170502161315Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 16:13:15 2017
    Next Update: Wed May 02 16:13:12 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 16:13:15 2017
    CRL Extensions:
chains.sh: #11229: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11230: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11231: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #11232: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #11233: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #11234: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #11235: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #11236: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #11237: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #11238: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:13:04 2017
            Not After : Mon May 02 16:13:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:92:ea:84:ab:7b:f8:a0:23:64:ee:7b:2a:f0:84:92:
                    3a:9c:aa:31:5e:4a:5c:c6:1a:e4:5f:15:7c:85:c7:46:
                    bc:b7:54:c3:88:04:9e:46:ba:1a:71:d1:15:17:aa:b3:
                    69:b9:89:65:52:85:bb:7f:86:72:eb:1c:23:8f:e3:b4:
                    0b:8b:92:d5:1e:dc:a2:98:79:3d:2c:e7:9a:56:07:18:
                    83:f9:07:40:43:0e:ea:0f:5c:83:a7:cc:6b:83:31:82:
                    91:d6:a0:d7:a1:b0:85:5c:dc:fc:c4:96:65:35:bf:d0:
                    f3:f7:3f:c4:f2:4e:4e:33:13:ac:5e:56:10:66:b6:9d:
                    c7:81:23:0d:7f:ac:e3:82:f4:89:dc:4c:44:10:d2:dd:
                    e3:52:6a:4f:bf:66:48:b9:0f:d7:b1:59:04:0b:4f:ed:
                    e6:ea:a9:9c:6d:3d:a5:1c:7e:ad:49:1f:16:4f:78:e3:
                    0f:90:1e:b3:6b:98:63:b1:80:3b:fc:ee:7c:57:0a:21:
                    d8:8b:6d:4f:79:c2:92:64:7b:08:59:ee:82:7f:0f:90:
                    5c:81:6d:be:c7:a0:84:25:09:f6:ff:16:c6:90:28:da:
                    66:60:69:c0:cc:86:97:a6:aa:23:59:34:a0:db:e6:c9:
                    f8:29:cd:ec:f8:13:6f:75:e7:fe:a0:21:95:78:c3:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:a3:5f:20:92:a3:be:72:1b:a3:1c:66:71:02:9b:b1:
        4f:ab:ef:c2:ce:fc:84:21:dd:9a:eb:2e:ef:04:17:18:
        76:72:e3:4b:6e:f5:5d:0c:e9:f0:29:1d:c6:d6:fe:9b:
        db:b1:d5:76:87:be:35:a8:54:32:e2:b0:3b:3e:ff:d6:
        64:14:fa:8d:e1:f7:c4:79:a5:8d:b8:68:92:0a:54:3e:
        0c:d8:67:ce:82:ed:2a:b1:f2:b4:28:43:9a:ac:70:95:
        61:22:0e:92:0b:c6:31:38:8d:4a:d1:46:5b:6a:c5:ea:
        01:3d:c9:0f:cc:07:af:e4:22:b0:67:0e:ad:39:45:61:
        95:c0:e3:cf:0a:f5:e4:9f:30:3c:06:7e:93:75:1d:0b:
        2f:10:e1:26:1b:a4:d5:3a:f8:4b:18:2c:09:01:76:4e:
        16:c6:50:71:43:fe:70:7b:c6:84:82:05:8e:67:14:ed:
        74:71:36:ae:57:e4:3b:ec:ee:3b:c3:34:3a:ef:06:77:
        c6:f5:4d:4f:aa:fd:08:12:7f:72:dc:20:6b:09:90:6a:
        91:8b:a3:be:f4:68:f8:02:b1:54:9c:95:a8:3c:d4:0c:
        77:ad:07:c3:4b:82:b8:90:fa:21:ba:3d:04:52:1b:5e:
        07:4f:48:94:08:35:9b:37:3d:8f:91:13:6c:b9:30:d3
    Fingerprint (SHA-256):
        B6:37:04:F8:51:2C:E4:CD:B7:FB:94:E9:BE:AA:EF:41:47:4D:B9:44:9A:94:C7:2F:0D:3A:7E:86:B2:BF:B6:00
    Fingerprint (SHA1):
        43:7F:7E:1A:D6:3C:43:E5:2E:26:73:DC:1A:CA:17:C8:34:28:3C:3F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11239: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11240: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:13:04 2017
            Not After : Mon May 02 16:13:04 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    be:92:ea:84:ab:7b:f8:a0:23:64:ee:7b:2a:f0:84:92:
                    3a:9c:aa:31:5e:4a:5c:c6:1a:e4:5f:15:7c:85:c7:46:
                    bc:b7:54:c3:88:04:9e:46:ba:1a:71:d1:15:17:aa:b3:
                    69:b9:89:65:52:85:bb:7f:86:72:eb:1c:23:8f:e3:b4:
                    0b:8b:92:d5:1e:dc:a2:98:79:3d:2c:e7:9a:56:07:18:
                    83:f9:07:40:43:0e:ea:0f:5c:83:a7:cc:6b:83:31:82:
                    91:d6:a0:d7:a1:b0:85:5c:dc:fc:c4:96:65:35:bf:d0:
                    f3:f7:3f:c4:f2:4e:4e:33:13:ac:5e:56:10:66:b6:9d:
                    c7:81:23:0d:7f:ac:e3:82:f4:89:dc:4c:44:10:d2:dd:
                    e3:52:6a:4f:bf:66:48:b9:0f:d7:b1:59:04:0b:4f:ed:
                    e6:ea:a9:9c:6d:3d:a5:1c:7e:ad:49:1f:16:4f:78:e3:
                    0f:90:1e:b3:6b:98:63:b1:80:3b:fc:ee:7c:57:0a:21:
                    d8:8b:6d:4f:79:c2:92:64:7b:08:59:ee:82:7f:0f:90:
                    5c:81:6d:be:c7:a0:84:25:09:f6:ff:16:c6:90:28:da:
                    66:60:69:c0:cc:86:97:a6:aa:23:59:34:a0:db:e6:c9:
                    f8:29:cd:ec:f8:13:6f:75:e7:fe:a0:21:95:78:c3:57
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        83:a3:5f:20:92:a3:be:72:1b:a3:1c:66:71:02:9b:b1:
        4f:ab:ef:c2:ce:fc:84:21:dd:9a:eb:2e:ef:04:17:18:
        76:72:e3:4b:6e:f5:5d:0c:e9:f0:29:1d:c6:d6:fe:9b:
        db:b1:d5:76:87:be:35:a8:54:32:e2:b0:3b:3e:ff:d6:
        64:14:fa:8d:e1:f7:c4:79:a5:8d:b8:68:92:0a:54:3e:
        0c:d8:67:ce:82:ed:2a:b1:f2:b4:28:43:9a:ac:70:95:
        61:22:0e:92:0b:c6:31:38:8d:4a:d1:46:5b:6a:c5:ea:
        01:3d:c9:0f:cc:07:af:e4:22:b0:67:0e:ad:39:45:61:
        95:c0:e3:cf:0a:f5:e4:9f:30:3c:06:7e:93:75:1d:0b:
        2f:10:e1:26:1b:a4:d5:3a:f8:4b:18:2c:09:01:76:4e:
        16:c6:50:71:43:fe:70:7b:c6:84:82:05:8e:67:14:ed:
        74:71:36:ae:57:e4:3b:ec:ee:3b:c3:34:3a:ef:06:77:
        c6:f5:4d:4f:aa:fd:08:12:7f:72:dc:20:6b:09:90:6a:
        91:8b:a3:be:f4:68:f8:02:b1:54:9c:95:a8:3c:d4:0c:
        77:ad:07:c3:4b:82:b8:90:fa:21:ba:3d:04:52:1b:5e:
        07:4f:48:94:08:35:9b:37:3d:8f:91:13:6c:b9:30:d3
    Fingerprint (SHA-256):
        B6:37:04:F8:51:2C:E4:CD:B7:FB:94:E9:BE:AA:EF:41:47:4D:B9:44:9A:94:C7:2F:0D:3A:7E:86:B2:BF:B6:00
    Fingerprint (SHA1):
        43:7F:7E:1A:D6:3C:43:E5:2E:26:73:DC:1A:CA:17:C8:34:28:3C:3F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11241: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11242: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11243: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160984 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11244: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11245: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #11246: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11247: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502160985   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11248: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11249: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11250: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502160875.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11251: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502160860.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11252: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11253: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #11254: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502160875.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11255: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502160986   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11256: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11257: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11258: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502160875.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11259: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502160861.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11260: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11261: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #11262: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11263: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502160987   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11264: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11265: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11266: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502160875.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11267: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502160862.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11268: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11269: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11270: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502160875.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11271: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502160863.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11272: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11273: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502161330Z
nextupdate=20180502161330Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 16:13:30 2017
    Next Update: Wed May 02 16:13:30 2018
    CRL Extensions:
chains.sh: #11274: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502161330Z
nextupdate=20180502161330Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 16:13:30 2017
    Next Update: Wed May 02 16:13:30 2018
    CRL Extensions:
chains.sh: #11275: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502161330Z
nextupdate=20180502161330Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 16:13:30 2017
    Next Update: Wed May 02 16:13:30 2018
    CRL Extensions:
chains.sh: #11276: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502161330Z
nextupdate=20180502161330Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 16:13:30 2017
    Next Update: Wed May 02 16:13:30 2018
    CRL Extensions:
chains.sh: #11277: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502161331Z
addcert 20 20170502161331Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 16:13:31 2017
    Next Update: Wed May 02 16:13:30 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 16:13:31 2017
    CRL Extensions:
chains.sh: #11278: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502161332Z
addcert 40 20170502161332Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 16:13:32 2017
    Next Update: Wed May 02 16:13:30 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 16:13:31 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 16:13:32 2017
    CRL Extensions:
chains.sh: #11279: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11280: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11281: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #11282: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160984 (0x1dee5e58)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:13:19 2017
            Not After : Mon May 02 16:13:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:fc:5e:c8:33:c1:5a:db:30:32:c7:8f:a1:aa:82:ec:
                    d7:aa:dc:aa:3d:e9:57:56:52:ed:87:e0:8c:ae:01:b1:
                    a1:58:55:21:4d:92:c8:67:1c:8d:7b:ae:c0:54:5c:e4:
                    78:f3:79:f7:cb:50:5b:3a:70:86:e5:79:65:85:b0:93:
                    1d:b9:c6:50:2a:a4:36:b7:15:0f:68:a5:54:34:ad:d0:
                    8d:3d:ca:d2:6d:4b:39:5e:bb:b2:79:ea:ae:3d:17:51:
                    40:e7:11:cf:66:80:40:3a:cb:70:b6:a2:9f:8b:3a:94:
                    59:03:dd:86:56:61:6d:9e:29:6f:cb:fe:37:30:a9:5c:
                    1b:90:aa:19:45:88:2a:ab:9e:70:98:2d:a8:81:b5:d6:
                    6f:89:5d:9e:01:09:a7:5a:e9:8f:4d:69:73:17:8c:9d:
                    7e:f9:eb:5c:d1:99:d6:34:06:a8:bd:ce:85:e6:17:7c:
                    1a:a9:d4:9c:0f:e4:20:6a:c8:a2:f4:8f:d9:de:a0:9e:
                    fb:7b:a3:5f:aa:2d:2e:bb:10:9f:1f:de:27:59:bd:9b:
                    1e:f6:a9:59:88:5d:a4:31:99:d6:d0:dc:26:dc:07:db:
                    31:4d:58:bf:6b:a2:21:74:20:72:6d:62:e1:09:d6:4e:
                    49:1f:24:c7:42:9a:9c:7d:bb:cb:87:f7:b5:10:7c:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:fb:e2:f9:0e:7d:e4:80:1a:62:0a:4c:69:d5:48:9f:
        1d:09:a2:d4:0e:87:36:3a:51:04:30:db:6f:ba:39:3e:
        bf:dc:64:c7:2d:68:4e:73:0e:96:c1:4d:85:5b:6e:bb:
        d2:a8:9c:14:b4:f8:09:3b:4f:92:3f:e4:4e:08:53:74:
        c7:93:38:1b:d6:99:9f:cb:64:21:83:3d:0e:07:6e:d0:
        d3:d0:28:97:39:92:12:41:8c:0e:72:e5:70:2c:01:f0:
        26:40:74:1c:e9:8b:e2:e7:9d:b2:90:3c:68:21:fc:f8:
        1b:fe:e1:55:23:64:bd:a7:08:7c:d1:2d:cf:79:f9:e0:
        33:a7:e4:8e:6d:60:c7:fc:55:7a:c5:a0:e2:3a:39:1b:
        70:4c:ed:8a:0a:82:a5:9e:88:df:68:3e:c8:cf:71:4b:
        69:cd:50:8b:42:bc:3a:0c:06:63:ae:95:84:59:f7:22:
        ee:72:14:0d:e4:a0:e8:5b:6e:70:6a:52:eb:18:44:e8:
        85:c2:cf:70:93:9f:3c:0d:61:8b:9f:51:6c:72:85:dc:
        46:bb:6e:a2:c6:10:0d:78:60:93:4b:35:e8:55:2c:97:
        69:bb:b3:20:f8:b7:8c:b1:ce:6f:3b:53:4c:f0:69:b2:
        12:60:aa:ba:d5:b4:14:34:d6:77:f3:e2:2b:ca:b7:ce
    Fingerprint (SHA-256):
        D6:4A:E2:58:7C:E8:97:CE:0E:27:21:9E:FA:53:6F:62:70:EC:2F:A9:81:D4:7B:10:AB:15:0A:03:62:0A:86:84
    Fingerprint (SHA1):
        35:59:31:17:88:A3:AA:75:4B:23:83:D1:24:2C:8D:E2:10:E8:6D:69
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11283: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11284: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160984 (0x1dee5e58)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:13:19 2017
            Not After : Mon May 02 16:13:19 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b0:fc:5e:c8:33:c1:5a:db:30:32:c7:8f:a1:aa:82:ec:
                    d7:aa:dc:aa:3d:e9:57:56:52:ed:87:e0:8c:ae:01:b1:
                    a1:58:55:21:4d:92:c8:67:1c:8d:7b:ae:c0:54:5c:e4:
                    78:f3:79:f7:cb:50:5b:3a:70:86:e5:79:65:85:b0:93:
                    1d:b9:c6:50:2a:a4:36:b7:15:0f:68:a5:54:34:ad:d0:
                    8d:3d:ca:d2:6d:4b:39:5e:bb:b2:79:ea:ae:3d:17:51:
                    40:e7:11:cf:66:80:40:3a:cb:70:b6:a2:9f:8b:3a:94:
                    59:03:dd:86:56:61:6d:9e:29:6f:cb:fe:37:30:a9:5c:
                    1b:90:aa:19:45:88:2a:ab:9e:70:98:2d:a8:81:b5:d6:
                    6f:89:5d:9e:01:09:a7:5a:e9:8f:4d:69:73:17:8c:9d:
                    7e:f9:eb:5c:d1:99:d6:34:06:a8:bd:ce:85:e6:17:7c:
                    1a:a9:d4:9c:0f:e4:20:6a:c8:a2:f4:8f:d9:de:a0:9e:
                    fb:7b:a3:5f:aa:2d:2e:bb:10:9f:1f:de:27:59:bd:9b:
                    1e:f6:a9:59:88:5d:a4:31:99:d6:d0:dc:26:dc:07:db:
                    31:4d:58:bf:6b:a2:21:74:20:72:6d:62:e1:09:d6:4e:
                    49:1f:24:c7:42:9a:9c:7d:bb:cb:87:f7:b5:10:7c:97
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        90:fb:e2:f9:0e:7d:e4:80:1a:62:0a:4c:69:d5:48:9f:
        1d:09:a2:d4:0e:87:36:3a:51:04:30:db:6f:ba:39:3e:
        bf:dc:64:c7:2d:68:4e:73:0e:96:c1:4d:85:5b:6e:bb:
        d2:a8:9c:14:b4:f8:09:3b:4f:92:3f:e4:4e:08:53:74:
        c7:93:38:1b:d6:99:9f:cb:64:21:83:3d:0e:07:6e:d0:
        d3:d0:28:97:39:92:12:41:8c:0e:72:e5:70:2c:01:f0:
        26:40:74:1c:e9:8b:e2:e7:9d:b2:90:3c:68:21:fc:f8:
        1b:fe:e1:55:23:64:bd:a7:08:7c:d1:2d:cf:79:f9:e0:
        33:a7:e4:8e:6d:60:c7:fc:55:7a:c5:a0:e2:3a:39:1b:
        70:4c:ed:8a:0a:82:a5:9e:88:df:68:3e:c8:cf:71:4b:
        69:cd:50:8b:42:bc:3a:0c:06:63:ae:95:84:59:f7:22:
        ee:72:14:0d:e4:a0:e8:5b:6e:70:6a:52:eb:18:44:e8:
        85:c2:cf:70:93:9f:3c:0d:61:8b:9f:51:6c:72:85:dc:
        46:bb:6e:a2:c6:10:0d:78:60:93:4b:35:e8:55:2c:97:
        69:bb:b3:20:f8:b7:8c:b1:ce:6f:3b:53:4c:f0:69:b2:
        12:60:aa:ba:d5:b4:14:34:d6:77:f3:e2:2b:ca:b7:ce
    Fingerprint (SHA-256):
        D6:4A:E2:58:7C:E8:97:CE:0E:27:21:9E:FA:53:6F:62:70:EC:2F:A9:81:D4:7B:10:AB:15:0A:03:62:0A:86:84
    Fingerprint (SHA1):
        35:59:31:17:88:A3:AA:75:4B:23:83:D1:24:2C:8D:E2:10:E8:6D:69
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #11285: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #11286: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11287: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160988 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11288: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11289: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11290: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11291: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502160989   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11292: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11293: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11294: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11295: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502160990   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11296: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11297: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11298: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11299: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502160991   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11300: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11301: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #11302: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160992 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11303: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #11304: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #11305: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11306: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502160993   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11307: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11308: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11309: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11310: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502160994   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11311: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11312: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #11313: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #11314: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #11315: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160988 (0x1dee5e5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:13:35 2017
            Not After : Mon May 02 16:13:35 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:9e:40:45:57:00:93:9f:22:33:48:11:05:50:b9:0a:
                    5b:ea:9f:59:fc:a8:2e:86:d9:b5:08:a0:ff:f2:09:6d:
                    39:79:64:ec:6e:0e:5e:bc:c3:f1:05:1f:54:33:63:80:
                    64:be:27:96:d7:92:e8:dd:17:a2:ef:db:71:a6:4a:24:
                    ee:d2:2d:6c:9d:3a:a8:7e:1f:14:9a:fa:4f:4c:d1:df:
                    29:55:d6:5a:d3:de:d7:9a:b1:82:7e:cf:81:fa:c8:6d:
                    a8:3a:d3:6d:ba:d1:77:17:69:1e:f5:dd:4a:f1:c6:b2:
                    e7:ca:d0:74:6c:90:e6:54:da:13:60:76:bf:f3:2c:6c:
                    6a:0d:8b:5c:1e:ef:a2:24:40:f2:35:22:c7:c1:03:17:
                    24:52:86:b3:7f:7e:e8:b1:bb:78:7e:d0:d2:51:c6:2e:
                    87:91:d9:a2:7d:93:e1:6c:b3:1d:33:a9:0b:e9:0b:a5:
                    17:3e:51:8b:0d:83:5c:9b:91:a3:c8:9e:29:62:32:d5:
                    be:d6:d0:6f:68:e5:7a:13:58:6d:90:3c:05:0b:d7:02:
                    05:bd:ad:03:f9:7f:67:ac:db:74:a3:6f:17:96:3e:98:
                    0e:04:48:7e:08:07:fd:ee:1e:b9:8a:f3:2e:37:6e:5d:
                    0d:a0:57:a1:26:e9:d8:7c:99:b5:37:48:dc:92:c1:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:6c:82:88:e6:7b:a2:f4:87:5c:fd:40:3f:5d:79:4f:
        46:3b:cd:06:7a:d6:2d:92:22:df:60:df:50:95:15:d7:
        9e:00:e7:47:b2:d5:37:2d:e1:44:7b:64:99:73:db:bc:
        f7:97:d9:64:f8:0d:7c:ef:22:87:55:82:43:3c:5f:7e:
        93:c1:c8:dc:58:21:92:61:4c:86:91:d0:08:47:15:da:
        d7:c9:ab:7f:e0:4d:4d:a2:1d:39:88:85:e7:78:6c:25:
        a8:3a:38:c6:30:7b:eb:0b:f1:1f:f4:35:1b:4b:71:b7:
        06:6e:7b:b6:d1:cd:de:ef:b2:20:74:9f:68:26:98:f0:
        11:4f:5e:8b:4c:ea:c6:32:1f:87:1a:b3:f5:3a:53:f3:
        2f:9c:59:76:e6:29:0a:70:9e:89:6c:bb:f1:96:1b:6f:
        2f:95:80:5d:0a:90:25:22:29:98:9c:59:ac:9b:89:72:
        ec:51:2d:06:45:3e:bc:21:6a:41:30:17:ea:09:23:11:
        ec:01:69:a9:2b:79:0e:50:02:c7:a5:30:5a:5e:b2:7d:
        3b:42:69:4e:ad:55:45:64:bc:3b:6d:1e:9f:d8:45:d6:
        68:3a:e2:85:5c:0f:e2:e6:76:f6:85:b5:36:34:fc:a1:
        70:c1:fd:bd:d4:af:d5:86:61:02:18:79:ac:66:94:34
    Fingerprint (SHA-256):
        C4:02:D1:7D:AD:F2:5B:BD:C1:7F:EA:FD:40:06:93:89:B3:C8:60:0D:30:6E:B5:60:21:08:23:4D:15:63:71:B3
    Fingerprint (SHA1):
        55:23:1F:DF:46:35:E3:40:FD:83:73:E0:5D:DC:A6:BD:66:0E:B6:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11316: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160990 (0x1dee5e5e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:13:38 2017
            Not After : Mon May 02 16:13:38 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:f6:0a:be:df:99:64:54:61:71:21:bc:34:37:93:41:
                    b3:33:44:67:ef:12:e7:ae:b1:e4:e6:26:bf:77:7a:36:
                    54:4a:0f:11:1b:b6:35:8b:2b:35:75:a6:d2:03:68:be:
                    bf:36:9f:c8:38:91:38:75:1d:5b:ad:c4:cd:b1:27:6c:
                    f6:02:fa:6a:90:2d:c6:c3:e7:f3:fb:50:17:7f:bb:c9:
                    60:9e:89:16:1a:53:6e:57:2b:3e:57:e8:3b:98:f8:4b:
                    9b:4c:67:58:a5:61:9d:f3:83:2f:58:0b:4a:3f:68:61:
                    92:3d:88:35:d5:8b:76:e3:4c:de:8c:6a:88:11:ff:d4:
                    42:23:c4:e0:d3:97:0d:43:51:36:d1:f5:bd:78:ac:49:
                    31:08:6d:47:6c:f7:02:69:54:66:7b:6f:91:9d:0d:09:
                    ac:42:b1:32:ee:fb:2b:96:77:1c:af:60:4d:a7:4a:74:
                    01:ba:2a:a2:13:c8:1d:69:07:db:ee:46:a1:ac:8c:67:
                    dd:5c:13:c5:11:8a:be:97:42:57:04:d6:8c:fd:c3:4f:
                    82:60:a5:4c:8f:23:5d:32:8a:e2:0d:8f:ad:40:6b:09:
                    bd:d5:c5:d7:5c:d9:bc:2a:3d:07:fc:f5:89:09:85:78:
                    94:f4:82:35:90:4b:44:2a:95:44:63:08:a9:fa:1b:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:a8:cf:e6:e4:28:a8:02:0b:6c:5c:a5:fe:17:51:b0:
        70:97:af:0a:98:49:63:47:74:4e:d1:4c:ad:53:cb:ad:
        85:be:a3:7e:88:0b:93:36:2a:c2:43:06:f2:57:23:28:
        9b:92:26:68:65:ac:7b:98:f6:e0:56:d1:66:92:03:77:
        3e:72:57:f3:b8:a5:a9:b4:d1:b6:49:9c:90:1c:f3:ec:
        62:01:81:56:e1:4e:16:22:73:9c:af:02:9a:e1:82:c5:
        3b:34:93:44:ad:a1:fd:83:9a:50:18:c7:c4:66:07:23:
        33:12:58:1c:49:1e:be:07:1c:f9:dc:ee:84:0e:b8:29:
        4c:59:d7:5d:c1:01:46:4a:ab:aa:4a:3c:0b:5c:7b:17:
        1d:86:f3:a7:fa:2c:2b:60:ae:89:51:2a:50:81:e8:cb:
        c5:aa:76:04:e9:e6:58:17:9c:fc:aa:97:7d:a4:0f:68:
        9b:47:db:0a:6c:78:e5:37:d2:a5:85:12:38:c1:e1:e9:
        8d:a3:a9:a4:9c:00:ae:20:8d:07:86:50:28:5f:fd:35:
        65:a1:10:a2:4e:f6:bb:2c:d1:25:d4:f9:fb:77:ec:c7:
        2d:a6:73:ba:50:fc:77:bf:82:05:9f:e9:63:35:14:74:
        f8:5b:a6:29:5a:a9:a0:8a:e0:d0:07:16:97:fd:f9:d4
    Fingerprint (SHA-256):
        B2:6A:77:EE:00:10:A0:E9:4E:FE:4F:BF:A7:58:06:31:06:55:64:8A:41:15:DA:67:00:2B:BF:C2:04:F7:A0:51
    Fingerprint (SHA1):
        E3:46:95:CC:8A:13:E3:47:DB:63:44:7B:8A:50:17:89:98:26:44:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11317: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160988 (0x1dee5e5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:13:35 2017
            Not After : Mon May 02 16:13:35 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:9e:40:45:57:00:93:9f:22:33:48:11:05:50:b9:0a:
                    5b:ea:9f:59:fc:a8:2e:86:d9:b5:08:a0:ff:f2:09:6d:
                    39:79:64:ec:6e:0e:5e:bc:c3:f1:05:1f:54:33:63:80:
                    64:be:27:96:d7:92:e8:dd:17:a2:ef:db:71:a6:4a:24:
                    ee:d2:2d:6c:9d:3a:a8:7e:1f:14:9a:fa:4f:4c:d1:df:
                    29:55:d6:5a:d3:de:d7:9a:b1:82:7e:cf:81:fa:c8:6d:
                    a8:3a:d3:6d:ba:d1:77:17:69:1e:f5:dd:4a:f1:c6:b2:
                    e7:ca:d0:74:6c:90:e6:54:da:13:60:76:bf:f3:2c:6c:
                    6a:0d:8b:5c:1e:ef:a2:24:40:f2:35:22:c7:c1:03:17:
                    24:52:86:b3:7f:7e:e8:b1:bb:78:7e:d0:d2:51:c6:2e:
                    87:91:d9:a2:7d:93:e1:6c:b3:1d:33:a9:0b:e9:0b:a5:
                    17:3e:51:8b:0d:83:5c:9b:91:a3:c8:9e:29:62:32:d5:
                    be:d6:d0:6f:68:e5:7a:13:58:6d:90:3c:05:0b:d7:02:
                    05:bd:ad:03:f9:7f:67:ac:db:74:a3:6f:17:96:3e:98:
                    0e:04:48:7e:08:07:fd:ee:1e:b9:8a:f3:2e:37:6e:5d:
                    0d:a0:57:a1:26:e9:d8:7c:99:b5:37:48:dc:92:c1:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:6c:82:88:e6:7b:a2:f4:87:5c:fd:40:3f:5d:79:4f:
        46:3b:cd:06:7a:d6:2d:92:22:df:60:df:50:95:15:d7:
        9e:00:e7:47:b2:d5:37:2d:e1:44:7b:64:99:73:db:bc:
        f7:97:d9:64:f8:0d:7c:ef:22:87:55:82:43:3c:5f:7e:
        93:c1:c8:dc:58:21:92:61:4c:86:91:d0:08:47:15:da:
        d7:c9:ab:7f:e0:4d:4d:a2:1d:39:88:85:e7:78:6c:25:
        a8:3a:38:c6:30:7b:eb:0b:f1:1f:f4:35:1b:4b:71:b7:
        06:6e:7b:b6:d1:cd:de:ef:b2:20:74:9f:68:26:98:f0:
        11:4f:5e:8b:4c:ea:c6:32:1f:87:1a:b3:f5:3a:53:f3:
        2f:9c:59:76:e6:29:0a:70:9e:89:6c:bb:f1:96:1b:6f:
        2f:95:80:5d:0a:90:25:22:29:98:9c:59:ac:9b:89:72:
        ec:51:2d:06:45:3e:bc:21:6a:41:30:17:ea:09:23:11:
        ec:01:69:a9:2b:79:0e:50:02:c7:a5:30:5a:5e:b2:7d:
        3b:42:69:4e:ad:55:45:64:bc:3b:6d:1e:9f:d8:45:d6:
        68:3a:e2:85:5c:0f:e2:e6:76:f6:85:b5:36:34:fc:a1:
        70:c1:fd:bd:d4:af:d5:86:61:02:18:79:ac:66:94:34
    Fingerprint (SHA-256):
        C4:02:D1:7D:AD:F2:5B:BD:C1:7F:EA:FD:40:06:93:89:B3:C8:60:0D:30:6E:B5:60:21:08:23:4D:15:63:71:B3
    Fingerprint (SHA1):
        55:23:1F:DF:46:35:E3:40:FD:83:73:E0:5D:DC:A6:BD:66:0E:B6:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11318: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #11319: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160988 (0x1dee5e5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:13:35 2017
            Not After : Mon May 02 16:13:35 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:9e:40:45:57:00:93:9f:22:33:48:11:05:50:b9:0a:
                    5b:ea:9f:59:fc:a8:2e:86:d9:b5:08:a0:ff:f2:09:6d:
                    39:79:64:ec:6e:0e:5e:bc:c3:f1:05:1f:54:33:63:80:
                    64:be:27:96:d7:92:e8:dd:17:a2:ef:db:71:a6:4a:24:
                    ee:d2:2d:6c:9d:3a:a8:7e:1f:14:9a:fa:4f:4c:d1:df:
                    29:55:d6:5a:d3:de:d7:9a:b1:82:7e:cf:81:fa:c8:6d:
                    a8:3a:d3:6d:ba:d1:77:17:69:1e:f5:dd:4a:f1:c6:b2:
                    e7:ca:d0:74:6c:90:e6:54:da:13:60:76:bf:f3:2c:6c:
                    6a:0d:8b:5c:1e:ef:a2:24:40:f2:35:22:c7:c1:03:17:
                    24:52:86:b3:7f:7e:e8:b1:bb:78:7e:d0:d2:51:c6:2e:
                    87:91:d9:a2:7d:93:e1:6c:b3:1d:33:a9:0b:e9:0b:a5:
                    17:3e:51:8b:0d:83:5c:9b:91:a3:c8:9e:29:62:32:d5:
                    be:d6:d0:6f:68:e5:7a:13:58:6d:90:3c:05:0b:d7:02:
                    05:bd:ad:03:f9:7f:67:ac:db:74:a3:6f:17:96:3e:98:
                    0e:04:48:7e:08:07:fd:ee:1e:b9:8a:f3:2e:37:6e:5d:
                    0d:a0:57:a1:26:e9:d8:7c:99:b5:37:48:dc:92:c1:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:6c:82:88:e6:7b:a2:f4:87:5c:fd:40:3f:5d:79:4f:
        46:3b:cd:06:7a:d6:2d:92:22:df:60:df:50:95:15:d7:
        9e:00:e7:47:b2:d5:37:2d:e1:44:7b:64:99:73:db:bc:
        f7:97:d9:64:f8:0d:7c:ef:22:87:55:82:43:3c:5f:7e:
        93:c1:c8:dc:58:21:92:61:4c:86:91:d0:08:47:15:da:
        d7:c9:ab:7f:e0:4d:4d:a2:1d:39:88:85:e7:78:6c:25:
        a8:3a:38:c6:30:7b:eb:0b:f1:1f:f4:35:1b:4b:71:b7:
        06:6e:7b:b6:d1:cd:de:ef:b2:20:74:9f:68:26:98:f0:
        11:4f:5e:8b:4c:ea:c6:32:1f:87:1a:b3:f5:3a:53:f3:
        2f:9c:59:76:e6:29:0a:70:9e:89:6c:bb:f1:96:1b:6f:
        2f:95:80:5d:0a:90:25:22:29:98:9c:59:ac:9b:89:72:
        ec:51:2d:06:45:3e:bc:21:6a:41:30:17:ea:09:23:11:
        ec:01:69:a9:2b:79:0e:50:02:c7:a5:30:5a:5e:b2:7d:
        3b:42:69:4e:ad:55:45:64:bc:3b:6d:1e:9f:d8:45:d6:
        68:3a:e2:85:5c:0f:e2:e6:76:f6:85:b5:36:34:fc:a1:
        70:c1:fd:bd:d4:af:d5:86:61:02:18:79:ac:66:94:34
    Fingerprint (SHA-256):
        C4:02:D1:7D:AD:F2:5B:BD:C1:7F:EA:FD:40:06:93:89:B3:C8:60:0D:30:6E:B5:60:21:08:23:4D:15:63:71:B3
    Fingerprint (SHA1):
        55:23:1F:DF:46:35:E3:40:FD:83:73:E0:5D:DC:A6:BD:66:0E:B6:99
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11320: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160990 (0x1dee5e5e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:13:38 2017
            Not After : Mon May 02 16:13:38 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a9:f6:0a:be:df:99:64:54:61:71:21:bc:34:37:93:41:
                    b3:33:44:67:ef:12:e7:ae:b1:e4:e6:26:bf:77:7a:36:
                    54:4a:0f:11:1b:b6:35:8b:2b:35:75:a6:d2:03:68:be:
                    bf:36:9f:c8:38:91:38:75:1d:5b:ad:c4:cd:b1:27:6c:
                    f6:02:fa:6a:90:2d:c6:c3:e7:f3:fb:50:17:7f:bb:c9:
                    60:9e:89:16:1a:53:6e:57:2b:3e:57:e8:3b:98:f8:4b:
                    9b:4c:67:58:a5:61:9d:f3:83:2f:58:0b:4a:3f:68:61:
                    92:3d:88:35:d5:8b:76:e3:4c:de:8c:6a:88:11:ff:d4:
                    42:23:c4:e0:d3:97:0d:43:51:36:d1:f5:bd:78:ac:49:
                    31:08:6d:47:6c:f7:02:69:54:66:7b:6f:91:9d:0d:09:
                    ac:42:b1:32:ee:fb:2b:96:77:1c:af:60:4d:a7:4a:74:
                    01:ba:2a:a2:13:c8:1d:69:07:db:ee:46:a1:ac:8c:67:
                    dd:5c:13:c5:11:8a:be:97:42:57:04:d6:8c:fd:c3:4f:
                    82:60:a5:4c:8f:23:5d:32:8a:e2:0d:8f:ad:40:6b:09:
                    bd:d5:c5:d7:5c:d9:bc:2a:3d:07:fc:f5:89:09:85:78:
                    94:f4:82:35:90:4b:44:2a:95:44:63:08:a9:fa:1b:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        89:a8:cf:e6:e4:28:a8:02:0b:6c:5c:a5:fe:17:51:b0:
        70:97:af:0a:98:49:63:47:74:4e:d1:4c:ad:53:cb:ad:
        85:be:a3:7e:88:0b:93:36:2a:c2:43:06:f2:57:23:28:
        9b:92:26:68:65:ac:7b:98:f6:e0:56:d1:66:92:03:77:
        3e:72:57:f3:b8:a5:a9:b4:d1:b6:49:9c:90:1c:f3:ec:
        62:01:81:56:e1:4e:16:22:73:9c:af:02:9a:e1:82:c5:
        3b:34:93:44:ad:a1:fd:83:9a:50:18:c7:c4:66:07:23:
        33:12:58:1c:49:1e:be:07:1c:f9:dc:ee:84:0e:b8:29:
        4c:59:d7:5d:c1:01:46:4a:ab:aa:4a:3c:0b:5c:7b:17:
        1d:86:f3:a7:fa:2c:2b:60:ae:89:51:2a:50:81:e8:cb:
        c5:aa:76:04:e9:e6:58:17:9c:fc:aa:97:7d:a4:0f:68:
        9b:47:db:0a:6c:78:e5:37:d2:a5:85:12:38:c1:e1:e9:
        8d:a3:a9:a4:9c:00:ae:20:8d:07:86:50:28:5f:fd:35:
        65:a1:10:a2:4e:f6:bb:2c:d1:25:d4:f9:fb:77:ec:c7:
        2d:a6:73:ba:50:fc:77:bf:82:05:9f:e9:63:35:14:74:
        f8:5b:a6:29:5a:a9:a0:8a:e0:d0:07:16:97:fd:f9:d4
    Fingerprint (SHA-256):
        B2:6A:77:EE:00:10:A0:E9:4E:FE:4F:BF:A7:58:06:31:06:55:64:8A:41:15:DA:67:00:2B:BF:C2:04:F7:A0:51
    Fingerprint (SHA1):
        E3:46:95:CC:8A:13:E3:47:DB:63:44:7B:8A:50:17:89:98:26:44:CE
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11321: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #11322: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #11323: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #11324: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160988 (0x1dee5e5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:13:35 2017
            Not After : Mon May 02 16:13:35 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:9e:40:45:57:00:93:9f:22:33:48:11:05:50:b9:0a:
                    5b:ea:9f:59:fc:a8:2e:86:d9:b5:08:a0:ff:f2:09:6d:
                    39:79:64:ec:6e:0e:5e:bc:c3:f1:05:1f:54:33:63:80:
                    64:be:27:96:d7:92:e8:dd:17:a2:ef:db:71:a6:4a:24:
                    ee:d2:2d:6c:9d:3a:a8:7e:1f:14:9a:fa:4f:4c:d1:df:
                    29:55:d6:5a:d3:de:d7:9a:b1:82:7e:cf:81:fa:c8:6d:
                    a8:3a:d3:6d:ba:d1:77:17:69:1e:f5:dd:4a:f1:c6:b2:
                    e7:ca:d0:74:6c:90:e6:54:da:13:60:76:bf:f3:2c:6c:
                    6a:0d:8b:5c:1e:ef:a2:24:40:f2:35:22:c7:c1:03:17:
                    24:52:86:b3:7f:7e:e8:b1:bb:78:7e:d0:d2:51:c6:2e:
                    87:91:d9:a2:7d:93:e1:6c:b3:1d:33:a9:0b:e9:0b:a5:
                    17:3e:51:8b:0d:83:5c:9b:91:a3:c8:9e:29:62:32:d5:
                    be:d6:d0:6f:68:e5:7a:13:58:6d:90:3c:05:0b:d7:02:
                    05:bd:ad:03:f9:7f:67:ac:db:74:a3:6f:17:96:3e:98:
                    0e:04:48:7e:08:07:fd:ee:1e:b9:8a:f3:2e:37:6e:5d:
                    0d:a0:57:a1:26:e9:d8:7c:99:b5:37:48:dc:92:c1:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:6c:82:88:e6:7b:a2:f4:87:5c:fd:40:3f:5d:79:4f:
        46:3b:cd:06:7a:d6:2d:92:22:df:60:df:50:95:15:d7:
        9e:00:e7:47:b2:d5:37:2d:e1:44:7b:64:99:73:db:bc:
        f7:97:d9:64:f8:0d:7c:ef:22:87:55:82:43:3c:5f:7e:
        93:c1:c8:dc:58:21:92:61:4c:86:91:d0:08:47:15:da:
        d7:c9:ab:7f:e0:4d:4d:a2:1d:39:88:85:e7:78:6c:25:
        a8:3a:38:c6:30:7b:eb:0b:f1:1f:f4:35:1b:4b:71:b7:
        06:6e:7b:b6:d1:cd:de:ef:b2:20:74:9f:68:26:98:f0:
        11:4f:5e:8b:4c:ea:c6:32:1f:87:1a:b3:f5:3a:53:f3:
        2f:9c:59:76:e6:29:0a:70:9e:89:6c:bb:f1:96:1b:6f:
        2f:95:80:5d:0a:90:25:22:29:98:9c:59:ac:9b:89:72:
        ec:51:2d:06:45:3e:bc:21:6a:41:30:17:ea:09:23:11:
        ec:01:69:a9:2b:79:0e:50:02:c7:a5:30:5a:5e:b2:7d:
        3b:42:69:4e:ad:55:45:64:bc:3b:6d:1e:9f:d8:45:d6:
        68:3a:e2:85:5c:0f:e2:e6:76:f6:85:b5:36:34:fc:a1:
        70:c1:fd:bd:d4:af:d5:86:61:02:18:79:ac:66:94:34
    Fingerprint (SHA-256):
        C4:02:D1:7D:AD:F2:5B:BD:C1:7F:EA:FD:40:06:93:89:B3:C8:60:0D:30:6E:B5:60:21:08:23:4D:15:63:71:B3
    Fingerprint (SHA1):
        55:23:1F:DF:46:35:E3:40:FD:83:73:E0:5D:DC:A6:BD:66:0E:B6:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11325: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160992 (0x1dee5e60)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 16:13:41 2017
            Not After : Mon May 02 16:13:41 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:fc:11:04:fb:72:c6:f6:79:c0:8d:b9:c4:7a:ea:3e:
                    b6:2b:4f:0f:5b:ca:5c:7a:c2:34:a9:39:99:56:19:86:
                    07:98:73:ef:3e:84:3c:94:82:65:5b:ef:55:b7:29:e4:
                    47:21:86:c4:94:77:54:21:05:c1:1c:56:9d:97:b3:96:
                    41:91:b8:b8:3b:b0:7e:3d:bb:3d:7f:71:4d:47:64:40:
                    6f:3a:74:3b:2d:29:21:92:83:7d:1b:f8:e9:7e:ea:a8:
                    63:87:25:f1:6a:6c:10:8d:9c:f0:bd:a4:65:a1:42:f5:
                    40:52:5b:0b:1c:1f:cd:cd:60:d6:e8:65:78:33:59:b5:
                    a4:29:45:e7:96:01:5f:2a:6e:0a:1f:cb:35:66:85:4c:
                    af:61:17:ff:08:a3:d0:32:f2:87:3e:a8:d2:0c:58:f2:
                    dd:e8:c5:0e:8a:3c:03:d5:cd:16:ca:f4:43:5e:87:ee:
                    8d:ba:70:c3:4d:8b:91:10:08:0a:d2:70:65:79:76:5b:
                    5b:3f:18:10:c5:1d:51:30:f4:1a:be:f8:6c:29:30:03:
                    66:e0:23:21:86:8d:a2:32:1c:3e:3d:ae:64:73:39:fe:
                    d4:7f:24:78:76:90:5d:61:c3:bf:72:b0:29:15:80:e1:
                    b1:3d:30:fd:2a:a9:25:40:40:9a:1c:f9:e7:f7:c1:a7
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        13:52:2b:5e:37:e5:ec:2a:3c:13:60:ce:df:2a:87:98:
        ee:2b:02:92:51:60:00:01:bc:10:ad:19:47:60:32:a6:
        19:44:d3:7a:af:ce:8d:5c:20:99:3c:50:52:98:4d:0c:
        b2:83:e3:51:bb:2d:cf:25:1b:a3:3b:0a:b6:95:b2:f0:
        59:f9:e8:40:6d:ea:80:75:da:77:f2:54:bf:c7:4e:14:
        e3:7c:ee:3d:e0:4d:b3:aa:3d:57:e3:7e:3d:2f:21:56:
        f1:56:88:f9:65:d2:2d:3c:ab:55:9d:37:1e:89:15:58:
        81:03:65:3b:e3:ee:88:47:12:6b:5a:60:2e:1c:61:95:
        4f:e7:96:4d:bb:41:44:45:57:b7:c3:95:12:f4:7c:5a:
        18:98:55:a8:79:61:7f:c9:35:df:d0:9b:4c:9d:e4:5b:
        fd:76:98:dd:0e:af:54:95:97:a8:7c:a5:d2:40:d0:73:
        bf:d3:98:4d:e3:4c:03:be:c4:1a:8c:92:04:62:96:84:
        2d:b1:6f:57:42:d3:35:d4:43:1d:8d:58:29:7b:99:07:
        99:20:54:ff:21:8c:60:30:b9:76:c4:3d:43:03:e0:0e:
        44:17:dc:67:d9:ef:64:22:29:22:8b:94:84:a8:1b:fa:
        71:a4:0f:10:9d:ba:2e:77:10:dd:84:0f:27:e3:8e:bb
    Fingerprint (SHA-256):
        D0:85:D5:67:66:63:7E:71:7B:29:BD:E9:0F:38:13:1A:6B:3D:A2:02:B0:6A:EF:D5:97:08:7D:C1:84:B9:9D:81
    Fingerprint (SHA1):
        A8:D2:8D:B3:BC:4B:5E:73:7B:ED:13:E5:0C:DC:63:8D:43:56:C5:78
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #11326: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160988 (0x1dee5e5c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:13:35 2017
            Not After : Mon May 02 16:13:35 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b1:9e:40:45:57:00:93:9f:22:33:48:11:05:50:b9:0a:
                    5b:ea:9f:59:fc:a8:2e:86:d9:b5:08:a0:ff:f2:09:6d:
                    39:79:64:ec:6e:0e:5e:bc:c3:f1:05:1f:54:33:63:80:
                    64:be:27:96:d7:92:e8:dd:17:a2:ef:db:71:a6:4a:24:
                    ee:d2:2d:6c:9d:3a:a8:7e:1f:14:9a:fa:4f:4c:d1:df:
                    29:55:d6:5a:d3:de:d7:9a:b1:82:7e:cf:81:fa:c8:6d:
                    a8:3a:d3:6d:ba:d1:77:17:69:1e:f5:dd:4a:f1:c6:b2:
                    e7:ca:d0:74:6c:90:e6:54:da:13:60:76:bf:f3:2c:6c:
                    6a:0d:8b:5c:1e:ef:a2:24:40:f2:35:22:c7:c1:03:17:
                    24:52:86:b3:7f:7e:e8:b1:bb:78:7e:d0:d2:51:c6:2e:
                    87:91:d9:a2:7d:93:e1:6c:b3:1d:33:a9:0b:e9:0b:a5:
                    17:3e:51:8b:0d:83:5c:9b:91:a3:c8:9e:29:62:32:d5:
                    be:d6:d0:6f:68:e5:7a:13:58:6d:90:3c:05:0b:d7:02:
                    05:bd:ad:03:f9:7f:67:ac:db:74:a3:6f:17:96:3e:98:
                    0e:04:48:7e:08:07:fd:ee:1e:b9:8a:f3:2e:37:6e:5d:
                    0d:a0:57:a1:26:e9:d8:7c:99:b5:37:48:dc:92:c1:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        08:6c:82:88:e6:7b:a2:f4:87:5c:fd:40:3f:5d:79:4f:
        46:3b:cd:06:7a:d6:2d:92:22:df:60:df:50:95:15:d7:
        9e:00:e7:47:b2:d5:37:2d:e1:44:7b:64:99:73:db:bc:
        f7:97:d9:64:f8:0d:7c:ef:22:87:55:82:43:3c:5f:7e:
        93:c1:c8:dc:58:21:92:61:4c:86:91:d0:08:47:15:da:
        d7:c9:ab:7f:e0:4d:4d:a2:1d:39:88:85:e7:78:6c:25:
        a8:3a:38:c6:30:7b:eb:0b:f1:1f:f4:35:1b:4b:71:b7:
        06:6e:7b:b6:d1:cd:de:ef:b2:20:74:9f:68:26:98:f0:
        11:4f:5e:8b:4c:ea:c6:32:1f:87:1a:b3:f5:3a:53:f3:
        2f:9c:59:76:e6:29:0a:70:9e:89:6c:bb:f1:96:1b:6f:
        2f:95:80:5d:0a:90:25:22:29:98:9c:59:ac:9b:89:72:
        ec:51:2d:06:45:3e:bc:21:6a:41:30:17:ea:09:23:11:
        ec:01:69:a9:2b:79:0e:50:02:c7:a5:30:5a:5e:b2:7d:
        3b:42:69:4e:ad:55:45:64:bc:3b:6d:1e:9f:d8:45:d6:
        68:3a:e2:85:5c:0f:e2:e6:76:f6:85:b5:36:34:fc:a1:
        70:c1:fd:bd:d4:af:d5:86:61:02:18:79:ac:66:94:34
    Fingerprint (SHA-256):
        C4:02:D1:7D:AD:F2:5B:BD:C1:7F:EA:FD:40:06:93:89:B3:C8:60:0D:30:6E:B5:60:21:08:23:4D:15:63:71:B3
    Fingerprint (SHA1):
        55:23:1F:DF:46:35:E3:40:FD:83:73:E0:5D:DC:A6:BD:66:0E:B6:99
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11327: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #11328: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #11329: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #11330: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #11331: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #11332: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160993 (0x1dee5e61)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 16:13:42 2017
            Not After : Mon May 02 16:13:42 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f4:05:69:4f:dd:50:c4:dc:12:a5:a9:dd:4b:c7:79:5d:
                    08:3b:7f:f8:a1:e0:9b:9a:2d:34:0c:3b:dc:3a:b0:77:
                    cb:37:39:b6:77:ea:59:33:1d:f7:76:7c:49:32:4d:23:
                    03:90:88:63:6e:70:b5:09:ca:82:bc:92:f5:d5:c4:19:
                    bc:5f:2c:d2:c4:8c:58:5b:5d:e0:bb:25:34:06:1c:8a:
                    95:de:ee:3f:0b:08:a5:44:4c:d9:da:22:27:98:c8:c7:
                    d9:b3:4d:ea:7f:53:1c:56:cc:55:32:ad:b0:0d:3a:01:
                    34:5b:d2:24:4f:9c:ae:a2:a5:db:fc:f2:87:cd:4a:ff:
                    5b:e3:f9:da:d2:3a:9e:61:c0:f1:94:cf:25:4f:0c:a4:
                    70:e5:db:9b:6f:4c:52:8c:a2:ed:ca:a4:9e:59:8a:72:
                    34:f0:ff:35:41:2a:a9:19:96:93:a9:23:c1:45:b9:88:
                    4b:3b:ea:bb:97:48:d5:5b:6c:a3:d4:30:ca:69:79:84:
                    78:3d:46:01:40:75:b8:10:34:e4:18:77:8a:67:80:27:
                    97:25:c0:67:18:6c:c3:75:e1:23:f8:e6:41:be:31:e2:
                    c5:42:40:84:51:8f:ed:65:80:35:d8:81:6e:9c:52:ed:
                    08:3e:e9:f4:7d:29:c9:64:d3:38:9d:bf:5d:fd:cd:a3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        4b:db:58:20:11:a7:72:8b:17:56:40:7a:44:e7:cb:ee:
        79:d2:cc:44:3b:38:4b:9d:92:62:5e:a0:37:b2:dd:7f:
        05:9d:0f:ea:a6:bc:f9:37:b1:2b:a4:9e:b3:a8:5c:e2:
        53:f9:42:34:d2:b7:f3:32:6c:ff:61:00:03:3f:5d:3f:
        67:38:74:20:17:16:95:fb:e7:7e:e8:18:d6:c6:90:aa:
        d5:81:b9:fe:ad:21:ca:f4:25:e4:b2:ee:89:5a:af:14:
        1d:f9:d2:f0:a8:5c:2c:3d:ec:59:96:aa:1a:27:dd:c4:
        88:3f:2d:1e:af:e6:a6:a3:48:7f:78:b7:37:4a:ee:2f:
        31:2f:ed:11:52:8c:d3:0a:fc:11:b1:88:c3:6e:09:8b:
        4f:51:f1:8a:02:ce:e5:43:a7:62:61:8b:3c:60:e1:17:
        0d:c4:06:8f:a2:b2:a9:bf:51:ea:09:36:d4:74:43:a4:
        24:9d:c7:08:21:fd:3a:21:37:8e:2e:70:f3:f4:e7:25:
        53:77:99:e3:bc:90:62:ea:f2:94:9c:08:c8:d8:d0:f2:
        04:e9:dc:0b:90:3f:db:a8:9c:3a:c9:2d:7d:78:d7:44:
        2c:bd:4a:87:80:5f:9d:fa:98:84:1f:a8:de:e5:14:4d:
        c8:d6:68:a9:72:64:19:e0:e0:6d:5a:97:77:92:36:8d
    Fingerprint (SHA-256):
        E5:E6:F2:11:0F:E5:15:A0:3A:1B:36:D0:6E:95:A6:EA:8B:E5:31:4C:7A:F7:1E:8A:FD:0D:9F:54:3E:F8:4B:38
    Fingerprint (SHA1):
        6B:D9:E5:B1:11:E3:B1:98:D5:05:73:B0:49:1D:57:6E:55:E6:A7:59
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11333: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #11334: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #11335: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #11336: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #11337: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11338: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11339: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11340: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11341: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11342: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11343: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11344: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11345: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11346: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11347: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11348: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11349: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11350: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11351: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #11352: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11353: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11354: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #11355: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11356: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 16317 at Tue May  2 16:13:53 UTC 2017
kill -USR1 16317
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 16317 killed at Tue May  2 16:13:53 UTC 2017
httpserv starting at Tue May  2 16:13:53 UTC 2017
httpserv -D -p 9600  \
         -A OCSPRoot -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPRoot.crl -A OCSPCA1 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA1.crl \
         -A OCSPCA2  -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA2.crl  -A OCSPCA3 -C /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/OCSPCA3.crl \
         -O get-unknown -d /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/ -f /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/chains/OCSPD/ServerDB/dbpasswd \
         -i /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/aiahttp/http_pid.17356  &
trying to connect to httpserv at Tue May  2 16:13:53 UTC 2017
tstclnt -p 9600 -h localhost.localdomain -q -v
tstclnt: connecting to localhost.localdomain:9600 (address=::1)
tstclnt: exiting with return code 0
kill -0 31733 >/dev/null 2>/dev/null
httpserv with PID 31733 found at Tue May  2 16:13:53 UTC 2017
httpserv with PID 31733 started at Tue May  2 16:13:53 UTC 2017
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11357: Bridge: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160995 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11358: Bridge: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11359: Bridge: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11360: Bridge: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502160996 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11361: Bridge: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11362: Bridge: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11363: Bridge: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11364: Bridge: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502160997 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11365: Bridge: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11366: Bridge: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502160998 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11367: Bridge: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11368: Bridge: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11369: Bridge: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11370: Bridge: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11371: Bridge: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserBridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i UserReq.der -o UserBridge.der -f BridgeDB/dbpasswd -m 502160999   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11372: Bridge: Creating certficate UserBridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate UserBridge.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserBridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11373: Bridge: Importing certificate UserBridge.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11374: Bridge: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Army.der to AllDB database
certutil -A -n Army  -t "" -d AllDB -f AllDB/dbpasswd -i Army.der
chains.sh: #11375: Bridge: Importing certificate Army.der to AllDB database  - PASSED
chains.sh: Importing certificate Navy.der to AllDB database
certutil -A -n Navy  -t "" -d AllDB -f AllDB/dbpasswd -i Navy.der
chains.sh: #11376: Bridge: Importing certificate Navy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160996 (0x1dee5e64)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:13:56 2017
            Not After : Mon May 02 16:13:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:79:b4:76:5d:70:49:a2:64:10:0c:0b:2f:4e:09:e7:
                    9c:8f:c4:c9:d5:14:b7:18:92:1a:2e:ae:81:a1:12:4e:
                    aa:4c:33:19:33:6a:f4:4b:0e:e7:6c:c4:b8:fc:40:a7:
                    bd:5c:dd:4f:7e:2c:36:74:93:08:72:90:0c:53:64:5e:
                    84:af:d6:de:a9:66:ac:56:29:e2:03:7f:55:41:00:89:
                    02:72:53:fb:ad:17:11:d4:72:c9:5f:bb:65:27:b1:98:
                    fa:2f:d7:08:18:bf:e1:5d:2d:ea:2e:74:31:5e:85:30:
                    e9:22:0f:d4:8e:6a:62:bc:1c:85:91:ac:09:2a:e2:d9:
                    c0:76:31:78:3c:5e:79:b7:c2:04:1c:33:af:80:3f:98:
                    fc:a1:f0:7a:b9:19:36:65:25:24:c4:62:f8:8b:17:f7:
                    ed:02:7f:21:a6:72:59:38:35:20:b6:22:b3:30:29:40:
                    17:5d:a0:0e:19:0e:27:fe:71:ea:e7:5f:7f:54:9d:75:
                    95:f8:85:5e:84:ec:c9:6c:87:a7:ba:18:78:2d:34:e2:
                    38:23:65:15:dd:45:22:c5:81:43:bd:e5:ea:04:b6:50:
                    af:b2:cb:9b:22:fc:74:cd:b5:74:98:9a:97:28:6c:14:
                    b8:fa:40:62:b4:5d:d0:7c:7a:e6:d4:e2:71:93:03:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:4c:51:dc:ae:ae:95:fb:8f:34:d9:d7:ec:6c:34:5c:
        63:d8:68:8f:05:5c:f1:9c:09:2c:f1:e8:ea:51:26:12:
        ba:7d:25:57:7e:5b:82:76:a6:af:16:31:dc:08:ad:dd:
        71:7b:17:f0:64:61:f1:98:0c:6d:00:71:76:e9:d5:c4:
        ae:fb:5d:15:4c:7e:f8:89:3e:6f:bc:8a:17:f1:9a:a4:
        47:b7:0f:33:91:82:e6:f2:c8:22:10:34:6e:de:ee:bb:
        9a:59:af:41:2a:a2:e2:05:2c:a4:0e:1e:c9:6f:bf:c8:
        fe:b0:77:71:43:66:1d:0f:e6:32:4c:47:cf:39:f6:1e:
        d8:d5:55:92:c7:fd:bf:22:15:d8:a2:f3:81:aa:fe:4a:
        ed:04:b8:11:79:13:11:a9:36:a4:89:3d:44:ac:4d:5e:
        81:ef:b5:c9:c1:40:c5:e4:df:96:73:47:a0:fd:38:75:
        35:74:1e:7f:c3:e1:46:92:fb:1a:c4:13:ef:56:62:dd:
        60:7a:67:e9:18:10:c0:57:2a:35:9c:ad:f1:9d:fe:78:
        09:c4:e6:26:e1:4b:06:fe:f6:16:65:be:8f:e5:92:f5:
        cf:32:c4:7a:0d:b3:fe:e4:88:1a:8f:19:86:c3:58:2b:
        d4:66:5d:16:e9:65:54:58:03:0e:7a:b0:8f:79:41:4b
    Fingerprint (SHA-256):
        D7:0E:E6:AA:F3:53:FD:C3:4D:3A:C1:58:8A:24:34:01:BE:D3:34:54:39:2C:18:13:CA:44:C7:25:52:47:C6:02
    Fingerprint (SHA1):
        88:AC:CE:C1:06:CC:C0:29:FA:9D:F1:BF:73:3F:3E:C6:1F:A9:43:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11377: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160995 (0x1dee5e63)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:13:54 2017
            Not After : Mon May 02 16:13:54 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:07:c3:fb:d4:7b:12:fb:38:80:0a:83:92:ef:eb:85:
                    d2:da:60:0c:45:4f:e0:e7:aa:65:ff:41:d0:fb:06:58:
                    5b:71:b5:4f:8e:37:3d:99:8b:10:16:e7:18:d6:79:a1:
                    ce:85:f0:fc:9b:f1:b0:4c:ed:e0:5a:bc:9c:61:b1:c2:
                    9e:85:4c:de:89:e8:5c:7e:16:85:5d:32:5a:f4:29:bc:
                    37:91:e7:36:a7:f9:2c:87:3f:43:89:58:a7:65:de:0b:
                    4b:d9:68:05:55:66:da:70:1c:14:ba:d4:02:1c:51:69:
                    c9:ff:4a:49:9f:09:18:cb:78:81:fd:13:50:4b:3a:25:
                    d6:c1:3d:fd:33:b7:23:2f:ae:fb:e3:d4:57:17:03:f7:
                    c8:76:f9:43:47:02:f2:fb:b1:17:fb:f1:ce:b3:a7:d9:
                    c7:71:54:4a:a7:7d:32:1a:40:09:c9:a7:6f:78:d8:f1:
                    de:bb:28:9e:4d:6e:0f:b6:c7:80:54:c2:40:2d:7c:7e:
                    62:af:ca:70:0c:12:14:35:50:e6:03:5a:a1:1c:cb:56:
                    9d:d1:39:67:03:ae:6c:76:c8:69:1c:31:39:91:7a:a4:
                    18:f6:a9:23:73:94:ff:55:4f:3f:0b:2f:06:a1:1c:2c:
                    ce:0a:e0:db:40:25:d8:f3:1d:70:e4:3e:14:6b:49:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        da:51:3e:79:a7:77:02:b0:1f:ff:f7:11:76:ae:7a:15:
        a6:07:0b:10:31:fc:20:e6:61:e5:76:e5:0a:20:6c:54:
        1f:ee:b9:6c:e7:59:54:27:23:0f:5d:8e:5e:a8:41:53:
        21:84:ca:0b:45:07:62:07:bb:05:a0:1c:5e:52:c1:56:
        f0:4f:69:28:cf:ba:88:11:73:3a:16:b6:36:3f:40:fe:
        5f:4f:fb:76:04:16:1e:d6:13:0d:7c:59:bb:bb:44:c6:
        78:b4:18:1e:50:55:f7:b4:0c:37:ca:cf:c3:4f:7f:53:
        ea:97:fb:78:91:20:0d:94:be:73:83:ce:1b:85:a5:47:
        5b:a1:0c:aa:cf:91:05:cd:7d:7d:18:75:0f:45:50:1c:
        4c:97:9d:5d:36:b8:89:f2:e4:4a:00:84:fd:76:da:27:
        a5:0c:1f:28:b1:d2:f6:91:5d:73:fe:d1:80:b5:7b:c5:
        5b:01:f5:85:36:ff:7b:64:4a:db:16:12:db:ac:55:6a:
        dc:a3:1c:bd:10:0c:9b:71:2e:37:0f:a0:cd:2b:5c:44:
        2b:c0:fa:f1:d0:5c:41:20:07:2a:35:55:31:81:50:25:
        3b:ee:4b:cb:97:a7:c8:94:df:46:59:77:a4:14:25:bc:
        99:01:7a:28:8a:25:ee:e4:3f:75:e8:e2:02:16:31:e0
    Fingerprint (SHA-256):
        C2:BE:25:C9:A4:BF:50:CA:AE:A4:C4:D0:09:0B:A4:BA:45:EC:45:CA:E6:33:20:87:97:15:25:4E:05:FE:EB:DD
    Fingerprint (SHA1):
        56:1C:C4:91:BF:0B:57:A0:86:45:F6:FD:15:09:AF:05:69:AA:57:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11378: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der BridgeNavy.der  -t Army
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Navy [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11379: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Importing certificate BridgeArmy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeArmy.der
chains.sh: #11380: Bridge: Importing certificate BridgeArmy.der to AllDB database  - PASSED
chains.sh: Importing certificate BridgeNavy.der to AllDB database
certutil -A -n Bridge  -t "" -d AllDB -f AllDB/dbpasswd -i BridgeNavy.der
chains.sh: #11381: Bridge: Importing certificate BridgeNavy.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army
vfychain -d AllDB -pp -vv       UserBridge.der  -t Army
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160995 (0x1dee5e63)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:13:54 2017
            Not After : Mon May 02 16:13:54 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:07:c3:fb:d4:7b:12:fb:38:80:0a:83:92:ef:eb:85:
                    d2:da:60:0c:45:4f:e0:e7:aa:65:ff:41:d0:fb:06:58:
                    5b:71:b5:4f:8e:37:3d:99:8b:10:16:e7:18:d6:79:a1:
                    ce:85:f0:fc:9b:f1:b0:4c:ed:e0:5a:bc:9c:61:b1:c2:
                    9e:85:4c:de:89:e8:5c:7e:16:85:5d:32:5a:f4:29:bc:
                    37:91:e7:36:a7:f9:2c:87:3f:43:89:58:a7:65:de:0b:
                    4b:d9:68:05:55:66:da:70:1c:14:ba:d4:02:1c:51:69:
                    c9:ff:4a:49:9f:09:18:cb:78:81:fd:13:50:4b:3a:25:
                    d6:c1:3d:fd:33:b7:23:2f:ae:fb:e3:d4:57:17:03:f7:
                    c8:76:f9:43:47:02:f2:fb:b1:17:fb:f1:ce:b3:a7:d9:
                    c7:71:54:4a:a7:7d:32:1a:40:09:c9:a7:6f:78:d8:f1:
                    de:bb:28:9e:4d:6e:0f:b6:c7:80:54:c2:40:2d:7c:7e:
                    62:af:ca:70:0c:12:14:35:50:e6:03:5a:a1:1c:cb:56:
                    9d:d1:39:67:03:ae:6c:76:c8:69:1c:31:39:91:7a:a4:
                    18:f6:a9:23:73:94:ff:55:4f:3f:0b:2f:06:a1:1c:2c:
                    ce:0a:e0:db:40:25:d8:f3:1d:70:e4:3e:14:6b:49:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        da:51:3e:79:a7:77:02:b0:1f:ff:f7:11:76:ae:7a:15:
        a6:07:0b:10:31:fc:20:e6:61:e5:76:e5:0a:20:6c:54:
        1f:ee:b9:6c:e7:59:54:27:23:0f:5d:8e:5e:a8:41:53:
        21:84:ca:0b:45:07:62:07:bb:05:a0:1c:5e:52:c1:56:
        f0:4f:69:28:cf:ba:88:11:73:3a:16:b6:36:3f:40:fe:
        5f:4f:fb:76:04:16:1e:d6:13:0d:7c:59:bb:bb:44:c6:
        78:b4:18:1e:50:55:f7:b4:0c:37:ca:cf:c3:4f:7f:53:
        ea:97:fb:78:91:20:0d:94:be:73:83:ce:1b:85:a5:47:
        5b:a1:0c:aa:cf:91:05:cd:7d:7d:18:75:0f:45:50:1c:
        4c:97:9d:5d:36:b8:89:f2:e4:4a:00:84:fd:76:da:27:
        a5:0c:1f:28:b1:d2:f6:91:5d:73:fe:d1:80:b5:7b:c5:
        5b:01:f5:85:36:ff:7b:64:4a:db:16:12:db:ac:55:6a:
        dc:a3:1c:bd:10:0c:9b:71:2e:37:0f:a0:cd:2b:5c:44:
        2b:c0:fa:f1:d0:5c:41:20:07:2a:35:55:31:81:50:25:
        3b:ee:4b:cb:97:a7:c8:94:df:46:59:77:a4:14:25:bc:
        99:01:7a:28:8a:25:ee:e4:3f:75:e8:e2:02:16:31:e0
    Fingerprint (SHA-256):
        C2:BE:25:C9:A4:BF:50:CA:AE:A4:C4:D0:09:0B:A4:BA:45:EC:45:CA:E6:33:20:87:97:15:25:4E:05:FE:EB:DD
    Fingerprint (SHA1):
        56:1C:C4:91:BF:0B:57:A0:86:45:F6:FD:15:09:AF:05:69:AA:57:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11382: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Army - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy
vfychain -d AllDB -pp -vv       UserBridge.der  -t Navy
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160996 (0x1dee5e64)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:13:56 2017
            Not After : Mon May 02 16:13:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:79:b4:76:5d:70:49:a2:64:10:0c:0b:2f:4e:09:e7:
                    9c:8f:c4:c9:d5:14:b7:18:92:1a:2e:ae:81:a1:12:4e:
                    aa:4c:33:19:33:6a:f4:4b:0e:e7:6c:c4:b8:fc:40:a7:
                    bd:5c:dd:4f:7e:2c:36:74:93:08:72:90:0c:53:64:5e:
                    84:af:d6:de:a9:66:ac:56:29:e2:03:7f:55:41:00:89:
                    02:72:53:fb:ad:17:11:d4:72:c9:5f:bb:65:27:b1:98:
                    fa:2f:d7:08:18:bf:e1:5d:2d:ea:2e:74:31:5e:85:30:
                    e9:22:0f:d4:8e:6a:62:bc:1c:85:91:ac:09:2a:e2:d9:
                    c0:76:31:78:3c:5e:79:b7:c2:04:1c:33:af:80:3f:98:
                    fc:a1:f0:7a:b9:19:36:65:25:24:c4:62:f8:8b:17:f7:
                    ed:02:7f:21:a6:72:59:38:35:20:b6:22:b3:30:29:40:
                    17:5d:a0:0e:19:0e:27:fe:71:ea:e7:5f:7f:54:9d:75:
                    95:f8:85:5e:84:ec:c9:6c:87:a7:ba:18:78:2d:34:e2:
                    38:23:65:15:dd:45:22:c5:81:43:bd:e5:ea:04:b6:50:
                    af:b2:cb:9b:22:fc:74:cd:b5:74:98:9a:97:28:6c:14:
                    b8:fa:40:62:b4:5d:d0:7c:7a:e6:d4:e2:71:93:03:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:4c:51:dc:ae:ae:95:fb:8f:34:d9:d7:ec:6c:34:5c:
        63:d8:68:8f:05:5c:f1:9c:09:2c:f1:e8:ea:51:26:12:
        ba:7d:25:57:7e:5b:82:76:a6:af:16:31:dc:08:ad:dd:
        71:7b:17:f0:64:61:f1:98:0c:6d:00:71:76:e9:d5:c4:
        ae:fb:5d:15:4c:7e:f8:89:3e:6f:bc:8a:17:f1:9a:a4:
        47:b7:0f:33:91:82:e6:f2:c8:22:10:34:6e:de:ee:bb:
        9a:59:af:41:2a:a2:e2:05:2c:a4:0e:1e:c9:6f:bf:c8:
        fe:b0:77:71:43:66:1d:0f:e6:32:4c:47:cf:39:f6:1e:
        d8:d5:55:92:c7:fd:bf:22:15:d8:a2:f3:81:aa:fe:4a:
        ed:04:b8:11:79:13:11:a9:36:a4:89:3d:44:ac:4d:5e:
        81:ef:b5:c9:c1:40:c5:e4:df:96:73:47:a0:fd:38:75:
        35:74:1e:7f:c3:e1:46:92:fb:1a:c4:13:ef:56:62:dd:
        60:7a:67:e9:18:10:c0:57:2a:35:9c:ad:f1:9d:fe:78:
        09:c4:e6:26:e1:4b:06:fe:f6:16:65:be:8f:e5:92:f5:
        cf:32:c4:7a:0d:b3:fe:e4:88:1a:8f:19:86:c3:58:2b:
        d4:66:5d:16:e9:65:54:58:03:0e:7a:b0:8f:79:41:4b
    Fingerprint (SHA-256):
        D7:0E:E6:AA:F3:53:FD:C3:4D:3A:C1:58:8A:24:34:01:BE:D3:34:54:39:2C:18:13:CA:44:C7:25:52:47:C6:02
    Fingerprint (SHA1):
        88:AC:CE:C1:06:CC:C0:29:FA:9D:F1:BF:73:3F:3E:C6:1F:A9:43:A9
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11383: Bridge: Verifying certificate(s)  UserBridge.der with flags -d AllDB -pp       -t Navy - PASSED
chains.sh: Creating DB ArmyOnlyDB
certutil -N -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd
chains.sh: #11384: Bridge: Creating DB ArmyOnlyDB  - PASSED
chains.sh: Importing certificate Army.der to ArmyOnlyDB database
certutil -A -n Army  -t "C,," -d ArmyOnlyDB -f ArmyOnlyDB/dbpasswd -i Army.der
chains.sh: #11385: Bridge: Importing certificate Army.der to ArmyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11386: Bridge: Verifying certificate(s)  UserBridge.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@navy [Certificate Authority]:
Email Address(es): bridge@navy
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11387: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp      
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Navy ROOT CA,O=Navy,C=US
Returned value is 1, expected result is fail
chains.sh: #11388: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der Navy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160996 (0x1dee5e64)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:13:56 2017
            Not After : Mon May 02 16:13:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:79:b4:76:5d:70:49:a2:64:10:0c:0b:2f:4e:09:e7:
                    9c:8f:c4:c9:d5:14:b7:18:92:1a:2e:ae:81:a1:12:4e:
                    aa:4c:33:19:33:6a:f4:4b:0e:e7:6c:c4:b8:fc:40:a7:
                    bd:5c:dd:4f:7e:2c:36:74:93:08:72:90:0c:53:64:5e:
                    84:af:d6:de:a9:66:ac:56:29:e2:03:7f:55:41:00:89:
                    02:72:53:fb:ad:17:11:d4:72:c9:5f:bb:65:27:b1:98:
                    fa:2f:d7:08:18:bf:e1:5d:2d:ea:2e:74:31:5e:85:30:
                    e9:22:0f:d4:8e:6a:62:bc:1c:85:91:ac:09:2a:e2:d9:
                    c0:76:31:78:3c:5e:79:b7:c2:04:1c:33:af:80:3f:98:
                    fc:a1:f0:7a:b9:19:36:65:25:24:c4:62:f8:8b:17:f7:
                    ed:02:7f:21:a6:72:59:38:35:20:b6:22:b3:30:29:40:
                    17:5d:a0:0e:19:0e:27:fe:71:ea:e7:5f:7f:54:9d:75:
                    95:f8:85:5e:84:ec:c9:6c:87:a7:ba:18:78:2d:34:e2:
                    38:23:65:15:dd:45:22:c5:81:43:bd:e5:ea:04:b6:50:
                    af:b2:cb:9b:22:fc:74:cd:b5:74:98:9a:97:28:6c:14:
                    b8:fa:40:62:b4:5d:d0:7c:7a:e6:d4:e2:71:93:03:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:4c:51:dc:ae:ae:95:fb:8f:34:d9:d7:ec:6c:34:5c:
        63:d8:68:8f:05:5c:f1:9c:09:2c:f1:e8:ea:51:26:12:
        ba:7d:25:57:7e:5b:82:76:a6:af:16:31:dc:08:ad:dd:
        71:7b:17:f0:64:61:f1:98:0c:6d:00:71:76:e9:d5:c4:
        ae:fb:5d:15:4c:7e:f8:89:3e:6f:bc:8a:17:f1:9a:a4:
        47:b7:0f:33:91:82:e6:f2:c8:22:10:34:6e:de:ee:bb:
        9a:59:af:41:2a:a2:e2:05:2c:a4:0e:1e:c9:6f:bf:c8:
        fe:b0:77:71:43:66:1d:0f:e6:32:4c:47:cf:39:f6:1e:
        d8:d5:55:92:c7:fd:bf:22:15:d8:a2:f3:81:aa:fe:4a:
        ed:04:b8:11:79:13:11:a9:36:a4:89:3d:44:ac:4d:5e:
        81:ef:b5:c9:c1:40:c5:e4:df:96:73:47:a0:fd:38:75:
        35:74:1e:7f:c3:e1:46:92:fb:1a:c4:13:ef:56:62:dd:
        60:7a:67:e9:18:10:c0:57:2a:35:9c:ad:f1:9d:fe:78:
        09:c4:e6:26:e1:4b:06:fe:f6:16:65:be:8f:e5:92:f5:
        cf:32:c4:7a:0d:b3:fe:e4:88:1a:8f:19:86:c3:58:2b:
        d4:66:5d:16:e9:65:54:58:03:0e:7a:b0:8f:79:41:4b
    Fingerprint (SHA-256):
        D7:0E:E6:AA:F3:53:FD:C3:4D:3A:C1:58:8A:24:34:01:BE:D3:34:54:39:2C:18:13:CA:44:C7:25:52:47:C6:02
    Fingerprint (SHA1):
        88:AC:CE:C1:06:CC:C0:29:FA:9D:F1:BF:73:3F:3E:C6:1F:A9:43:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11389: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der Navy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der
vfychain -d ArmyOnlyDB -pp -vv       UserBridge.der BridgeNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160996 (0x1dee5e64)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:13:56 2017
            Not After : Mon May 02 16:13:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f8:79:b4:76:5d:70:49:a2:64:10:0c:0b:2f:4e:09:e7:
                    9c:8f:c4:c9:d5:14:b7:18:92:1a:2e:ae:81:a1:12:4e:
                    aa:4c:33:19:33:6a:f4:4b:0e:e7:6c:c4:b8:fc:40:a7:
                    bd:5c:dd:4f:7e:2c:36:74:93:08:72:90:0c:53:64:5e:
                    84:af:d6:de:a9:66:ac:56:29:e2:03:7f:55:41:00:89:
                    02:72:53:fb:ad:17:11:d4:72:c9:5f:bb:65:27:b1:98:
                    fa:2f:d7:08:18:bf:e1:5d:2d:ea:2e:74:31:5e:85:30:
                    e9:22:0f:d4:8e:6a:62:bc:1c:85:91:ac:09:2a:e2:d9:
                    c0:76:31:78:3c:5e:79:b7:c2:04:1c:33:af:80:3f:98:
                    fc:a1:f0:7a:b9:19:36:65:25:24:c4:62:f8:8b:17:f7:
                    ed:02:7f:21:a6:72:59:38:35:20:b6:22:b3:30:29:40:
                    17:5d:a0:0e:19:0e:27:fe:71:ea:e7:5f:7f:54:9d:75:
                    95:f8:85:5e:84:ec:c9:6c:87:a7:ba:18:78:2d:34:e2:
                    38:23:65:15:dd:45:22:c5:81:43:bd:e5:ea:04:b6:50:
                    af:b2:cb:9b:22:fc:74:cd:b5:74:98:9a:97:28:6c:14:
                    b8:fa:40:62:b4:5d:d0:7c:7a:e6:d4:e2:71:93:03:ab
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        d8:4c:51:dc:ae:ae:95:fb:8f:34:d9:d7:ec:6c:34:5c:
        63:d8:68:8f:05:5c:f1:9c:09:2c:f1:e8:ea:51:26:12:
        ba:7d:25:57:7e:5b:82:76:a6:af:16:31:dc:08:ad:dd:
        71:7b:17:f0:64:61:f1:98:0c:6d:00:71:76:e9:d5:c4:
        ae:fb:5d:15:4c:7e:f8:89:3e:6f:bc:8a:17:f1:9a:a4:
        47:b7:0f:33:91:82:e6:f2:c8:22:10:34:6e:de:ee:bb:
        9a:59:af:41:2a:a2:e2:05:2c:a4:0e:1e:c9:6f:bf:c8:
        fe:b0:77:71:43:66:1d:0f:e6:32:4c:47:cf:39:f6:1e:
        d8:d5:55:92:c7:fd:bf:22:15:d8:a2:f3:81:aa:fe:4a:
        ed:04:b8:11:79:13:11:a9:36:a4:89:3d:44:ac:4d:5e:
        81:ef:b5:c9:c1:40:c5:e4:df:96:73:47:a0:fd:38:75:
        35:74:1e:7f:c3:e1:46:92:fb:1a:c4:13:ef:56:62:dd:
        60:7a:67:e9:18:10:c0:57:2a:35:9c:ad:f1:9d:fe:78:
        09:c4:e6:26:e1:4b:06:fe:f6:16:65:be:8f:e5:92:f5:
        cf:32:c4:7a:0d:b3:fe:e4:88:1a:8f:19:86:c3:58:2b:
        d4:66:5d:16:e9:65:54:58:03:0e:7a:b0:8f:79:41:4b
    Fingerprint (SHA-256):
        D7:0E:E6:AA:F3:53:FD:C3:4D:3A:C1:58:8A:24:34:01:BE:D3:34:54:39:2C:18:13:CA:44:C7:25:52:47:C6:02
    Fingerprint (SHA1):
        88:AC:CE:C1:06:CC:C0:29:FA:9D:F1:BF:73:3F:3E:C6:1F:A9:43:A9
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11390: Bridge: Verifying certificate(s)  UserBridge.der BridgeNavy.der with flags -d ArmyOnlyDB -pp       -t Navy.der - PASSED
chains.sh: Creating DB NavyOnlyDB
certutil -N -d NavyOnlyDB -f NavyOnlyDB/dbpasswd
chains.sh: #11391: Bridge: Creating DB NavyOnlyDB  - PASSED
chains.sh: Importing certificate Navy.der to NavyOnlyDB database
certutil -A -n Navy  -t "C,," -d NavyOnlyDB -f NavyOnlyDB/dbpasswd -i Navy.der
chains.sh: #11392: Bridge: Importing certificate Navy.der to NavyOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=User EE,O=User,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11393: Bridge: Verifying certificate(s)  UserBridge.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. bridge@army [Certificate Authority]:
Email Address(es): bridge@army
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #11394: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp      
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8172: Peer's certificate issuer has been marked as not trusted by the user.
    CN=Army ROOT CA,O=Army,C=US
Returned value is 1, expected result is fail
chains.sh: #11395: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der Army.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160995 (0x1dee5e63)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:13:54 2017
            Not After : Mon May 02 16:13:54 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:07:c3:fb:d4:7b:12:fb:38:80:0a:83:92:ef:eb:85:
                    d2:da:60:0c:45:4f:e0:e7:aa:65:ff:41:d0:fb:06:58:
                    5b:71:b5:4f:8e:37:3d:99:8b:10:16:e7:18:d6:79:a1:
                    ce:85:f0:fc:9b:f1:b0:4c:ed:e0:5a:bc:9c:61:b1:c2:
                    9e:85:4c:de:89:e8:5c:7e:16:85:5d:32:5a:f4:29:bc:
                    37:91:e7:36:a7:f9:2c:87:3f:43:89:58:a7:65:de:0b:
                    4b:d9:68:05:55:66:da:70:1c:14:ba:d4:02:1c:51:69:
                    c9:ff:4a:49:9f:09:18:cb:78:81:fd:13:50:4b:3a:25:
                    d6:c1:3d:fd:33:b7:23:2f:ae:fb:e3:d4:57:17:03:f7:
                    c8:76:f9:43:47:02:f2:fb:b1:17:fb:f1:ce:b3:a7:d9:
                    c7:71:54:4a:a7:7d:32:1a:40:09:c9:a7:6f:78:d8:f1:
                    de:bb:28:9e:4d:6e:0f:b6:c7:80:54:c2:40:2d:7c:7e:
                    62:af:ca:70:0c:12:14:35:50:e6:03:5a:a1:1c:cb:56:
                    9d:d1:39:67:03:ae:6c:76:c8:69:1c:31:39:91:7a:a4:
                    18:f6:a9:23:73:94:ff:55:4f:3f:0b:2f:06:a1:1c:2c:
                    ce:0a:e0:db:40:25:d8:f3:1d:70:e4:3e:14:6b:49:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        da:51:3e:79:a7:77:02:b0:1f:ff:f7:11:76:ae:7a:15:
        a6:07:0b:10:31:fc:20:e6:61:e5:76:e5:0a:20:6c:54:
        1f:ee:b9:6c:e7:59:54:27:23:0f:5d:8e:5e:a8:41:53:
        21:84:ca:0b:45:07:62:07:bb:05:a0:1c:5e:52:c1:56:
        f0:4f:69:28:cf:ba:88:11:73:3a:16:b6:36:3f:40:fe:
        5f:4f:fb:76:04:16:1e:d6:13:0d:7c:59:bb:bb:44:c6:
        78:b4:18:1e:50:55:f7:b4:0c:37:ca:cf:c3:4f:7f:53:
        ea:97:fb:78:91:20:0d:94:be:73:83:ce:1b:85:a5:47:
        5b:a1:0c:aa:cf:91:05:cd:7d:7d:18:75:0f:45:50:1c:
        4c:97:9d:5d:36:b8:89:f2:e4:4a:00:84:fd:76:da:27:
        a5:0c:1f:28:b1:d2:f6:91:5d:73:fe:d1:80:b5:7b:c5:
        5b:01:f5:85:36:ff:7b:64:4a:db:16:12:db:ac:55:6a:
        dc:a3:1c:bd:10:0c:9b:71:2e:37:0f:a0:cd:2b:5c:44:
        2b:c0:fa:f1:d0:5c:41:20:07:2a:35:55:31:81:50:25:
        3b:ee:4b:cb:97:a7:c8:94:df:46:59:77:a4:14:25:bc:
        99:01:7a:28:8a:25:ee:e4:3f:75:e8:e2:02:16:31:e0
    Fingerprint (SHA-256):
        C2:BE:25:C9:A4:BF:50:CA:AE:A4:C4:D0:09:0B:A4:BA:45:EC:45:CA:E6:33:20:87:97:15:25:4E:05:FE:EB:DD
    Fingerprint (SHA1):
        56:1C:C4:91:BF:0B:57:A0:86:45:F6:FD:15:09:AF:05:69:AA:57:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11396: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der Army.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der
vfychain -d NavyOnlyDB -pp -vv       UserBridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502160995 (0x1dee5e63)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:13:54 2017
            Not After : Mon May 02 16:13:54 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f0:07:c3:fb:d4:7b:12:fb:38:80:0a:83:92:ef:eb:85:
                    d2:da:60:0c:45:4f:e0:e7:aa:65:ff:41:d0:fb:06:58:
                    5b:71:b5:4f:8e:37:3d:99:8b:10:16:e7:18:d6:79:a1:
                    ce:85:f0:fc:9b:f1:b0:4c:ed:e0:5a:bc:9c:61:b1:c2:
                    9e:85:4c:de:89:e8:5c:7e:16:85:5d:32:5a:f4:29:bc:
                    37:91:e7:36:a7:f9:2c:87:3f:43:89:58:a7:65:de:0b:
                    4b:d9:68:05:55:66:da:70:1c:14:ba:d4:02:1c:51:69:
                    c9:ff:4a:49:9f:09:18:cb:78:81:fd:13:50:4b:3a:25:
                    d6:c1:3d:fd:33:b7:23:2f:ae:fb:e3:d4:57:17:03:f7:
                    c8:76:f9:43:47:02:f2:fb:b1:17:fb:f1:ce:b3:a7:d9:
                    c7:71:54:4a:a7:7d:32:1a:40:09:c9:a7:6f:78:d8:f1:
                    de:bb:28:9e:4d:6e:0f:b6:c7:80:54:c2:40:2d:7c:7e:
                    62:af:ca:70:0c:12:14:35:50:e6:03:5a:a1:1c:cb:56:
                    9d:d1:39:67:03:ae:6c:76:c8:69:1c:31:39:91:7a:a4:
                    18:f6:a9:23:73:94:ff:55:4f:3f:0b:2f:06:a1:1c:2c:
                    ce:0a:e0:db:40:25:d8:f3:1d:70:e4:3e:14:6b:49:3b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        da:51:3e:79:a7:77:02:b0:1f:ff:f7:11:76:ae:7a:15:
        a6:07:0b:10:31:fc:20:e6:61:e5:76:e5:0a:20:6c:54:
        1f:ee:b9:6c:e7:59:54:27:23:0f:5d:8e:5e:a8:41:53:
        21:84:ca:0b:45:07:62:07:bb:05:a0:1c:5e:52:c1:56:
        f0:4f:69:28:cf:ba:88:11:73:3a:16:b6:36:3f:40:fe:
        5f:4f:fb:76:04:16:1e:d6:13:0d:7c:59:bb:bb:44:c6:
        78:b4:18:1e:50:55:f7:b4:0c:37:ca:cf:c3:4f:7f:53:
        ea:97:fb:78:91:20:0d:94:be:73:83:ce:1b:85:a5:47:
        5b:a1:0c:aa:cf:91:05:cd:7d:7d:18:75:0f:45:50:1c:
        4c:97:9d:5d:36:b8:89:f2:e4:4a:00:84:fd:76:da:27:
        a5:0c:1f:28:b1:d2:f6:91:5d:73:fe:d1:80:b5:7b:c5:
        5b:01:f5:85:36:ff:7b:64:4a:db:16:12:db:ac:55:6a:
        dc:a3:1c:bd:10:0c:9b:71:2e:37:0f:a0:cd:2b:5c:44:
        2b:c0:fa:f1:d0:5c:41:20:07:2a:35:55:31:81:50:25:
        3b:ee:4b:cb:97:a7:c8:94:df:46:59:77:a4:14:25:bc:
        99:01:7a:28:8a:25:ee:e4:3f:75:e8:e2:02:16:31:e0
    Fingerprint (SHA-256):
        C2:BE:25:C9:A4:BF:50:CA:AE:A4:C4:D0:09:0B:A4:BA:45:EC:45:CA:E6:33:20:87:97:15:25:4E:05:FE:EB:DD
    Fingerprint (SHA1):
        56:1C:C4:91:BF:0B:57:A0:86:45:F6:FD:15:09:AF:05:69:AA:57:8B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11397: Bridge: Verifying certificate(s)  UserBridge.der BridgeArmy.der with flags -d NavyOnlyDB -pp       -t Army.der - PASSED
chains.sh: Creating DB Root1DB
certutil -N -d Root1DB -f Root1DB/dbpasswd
chains.sh: #11398: MegaBridge_3_2: Creating DB Root1DB  - PASSED
chains.sh: Creating Root CA Root1
certutil -s "CN=Root1 ROOT CA, O=Root1, C=US" -S -n Root1  -t CTu,CTu,CTu -v 600 -x -d Root1DB -1 -2 -5 -f Root1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161000 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11399: MegaBridge_3_2: Creating Root CA Root1  - PASSED
chains.sh: Exporting Root CA Root1.der
certutil -L -d Root1DB -r -n Root1 -o Root1.der
chains.sh: #11400: MegaBridge_3_2: Exporting Root CA Root1.der  - PASSED
chains.sh: Creating DB Root2DB
certutil -N -d Root2DB -f Root2DB/dbpasswd
chains.sh: #11401: MegaBridge_3_2: Creating DB Root2DB  - PASSED
chains.sh: Creating Root CA Root2
certutil -s "CN=Root2 ROOT CA, O=Root2, C=US" -S -n Root2  -t CTu,CTu,CTu -v 600 -x -d Root2DB -1 -2 -5 -f Root2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161001 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11402: MegaBridge_3_2: Creating Root CA Root2  - PASSED
chains.sh: Exporting Root CA Root2.der
certutil -L -d Root2DB -r -n Root2 -o Root2.der
chains.sh: #11403: MegaBridge_3_2: Exporting Root CA Root2.der  - PASSED
chains.sh: Creating DB Root3DB
certutil -N -d Root3DB -f Root3DB/dbpasswd
chains.sh: #11404: MegaBridge_3_2: Creating DB Root3DB  - PASSED
chains.sh: Creating Root CA Root3
certutil -s "CN=Root3 ROOT CA, O=Root3, C=US" -S -n Root3  -t CTu,CTu,CTu -v 600 -x -d Root3DB -1 -2 -5 -f Root3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161002 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11405: MegaBridge_3_2: Creating Root CA Root3  - PASSED
chains.sh: Exporting Root CA Root3.der
certutil -L -d Root3DB -r -n Root3 -o Root3.der
chains.sh: #11406: MegaBridge_3_2: Exporting Root CA Root3.der  - PASSED
chains.sh: Creating DB Root4DB
certutil -N -d Root4DB -f Root4DB/dbpasswd
chains.sh: #11407: MegaBridge_3_2: Creating DB Root4DB  - PASSED
chains.sh: Creating Root CA Root4
certutil -s "CN=Root4 ROOT CA, O=Root4, C=US" -S -n Root4  -t CTu,CTu,CTu -v 600 -x -d Root4DB -1 -2 -5 -f Root4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161003 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11408: MegaBridge_3_2: Creating Root CA Root4  - PASSED
chains.sh: Exporting Root CA Root4.der
certutil -L -d Root4DB -r -n Root4 -o Root4.der
chains.sh: #11409: MegaBridge_3_2: Exporting Root CA Root4.der  - PASSED
chains.sh: Creating DB Root5DB
certutil -N -d Root5DB -f Root5DB/dbpasswd
chains.sh: #11410: MegaBridge_3_2: Creating DB Root5DB  - PASSED
chains.sh: Creating Root CA Root5
certutil -s "CN=Root5 ROOT CA, O=Root5, C=US" -S -n Root5  -t CTu,CTu,CTu -v 600 -x -d Root5DB -1 -2 -5 -f Root5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161004 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11411: MegaBridge_3_2: Creating Root CA Root5  - PASSED
chains.sh: Exporting Root CA Root5.der
certutil -L -d Root5DB -r -n Root5 -o Root5.der
chains.sh: #11412: MegaBridge_3_2: Exporting Root CA Root5.der  - PASSED
chains.sh: Creating DB Root6DB
certutil -N -d Root6DB -f Root6DB/dbpasswd
chains.sh: #11413: MegaBridge_3_2: Creating DB Root6DB  - PASSED
chains.sh: Creating Root CA Root6
certutil -s "CN=Root6 ROOT CA, O=Root6, C=US" -S -n Root6  -t CTu,CTu,CTu -v 600 -x -d Root6DB -1 -2 -5 -f Root6DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161005 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11414: MegaBridge_3_2: Creating Root CA Root6  - PASSED
chains.sh: Exporting Root CA Root6.der
certutil -L -d Root6DB -r -n Root6 -o Root6.der
chains.sh: #11415: MegaBridge_3_2: Exporting Root CA Root6.der  - PASSED
chains.sh: Creating DB Root7DB
certutil -N -d Root7DB -f Root7DB/dbpasswd
chains.sh: #11416: MegaBridge_3_2: Creating DB Root7DB  - PASSED
chains.sh: Creating Root CA Root7
certutil -s "CN=Root7 ROOT CA, O=Root7, C=US" -S -n Root7  -t CTu,CTu,CTu -v 600 -x -d Root7DB -1 -2 -5 -f Root7DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161006 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11417: MegaBridge_3_2: Creating Root CA Root7  - PASSED
chains.sh: Exporting Root CA Root7.der
certutil -L -d Root7DB -r -n Root7 -o Root7.der
chains.sh: #11418: MegaBridge_3_2: Exporting Root CA Root7.der  - PASSED
chains.sh: Creating DB Root8DB
certutil -N -d Root8DB -f Root8DB/dbpasswd
chains.sh: #11419: MegaBridge_3_2: Creating DB Root8DB  - PASSED
chains.sh: Creating Root CA Root8
certutil -s "CN=Root8 ROOT CA, O=Root8, C=US" -S -n Root8  -t CTu,CTu,CTu -v 600 -x -d Root8DB -1 -2 -5 -f Root8DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161007 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11420: MegaBridge_3_2: Creating Root CA Root8  - PASSED
chains.sh: Exporting Root CA Root8.der
certutil -L -d Root8DB -r -n Root8 -o Root8.der
chains.sh: #11421: MegaBridge_3_2: Exporting Root CA Root8.der  - PASSED
chains.sh: Creating DB Root9DB
certutil -N -d Root9DB -f Root9DB/dbpasswd
chains.sh: #11422: MegaBridge_3_2: Creating DB Root9DB  - PASSED
chains.sh: Creating Root CA Root9
certutil -s "CN=Root9 ROOT CA, O=Root9, C=US" -S -n Root9  -t CTu,CTu,CTu -v 600 -x -d Root9DB -1 -2 -5 -f Root9DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161008 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11423: MegaBridge_3_2: Creating Root CA Root9  - PASSED
chains.sh: Exporting Root CA Root9.der
certutil -L -d Root9DB -r -n Root9 -o Root9.der
chains.sh: #11424: MegaBridge_3_2: Exporting Root CA Root9.der  - PASSED
chains.sh: Creating DB Bridge11DB
certutil -N -d Bridge11DB -f Bridge11DB/dbpasswd
chains.sh: #11425: MegaBridge_3_2: Creating DB Bridge11DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge11Req.der
certutil -s "CN=Bridge11 Bridge, O=Bridge11, C=US"  -R -2 -d Bridge11DB -f Bridge11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11426: MegaBridge_3_2: Creating Bridge certifiate request Bridge11Req.der  - PASSED
chains.sh: Creating certficate Bridge11Root1.der signed by Root1
certutil -C -c Root1 -v 60 -d Root1DB -i Bridge11Req.der -o Bridge11Root1.der -f Root1DB/dbpasswd -m 502161009 -7 Bridge11@Root1  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11427: MegaBridge_3_2: Creating certficate Bridge11Root1.der signed by Root1  - PASSED
chains.sh: Importing certificate Bridge11Root1.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11428: MegaBridge_3_2: Importing certificate Bridge11Root1.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root2.der signed by Root2
certutil -C -c Root2 -v 60 -d Root2DB -i Bridge11Req.der -o Bridge11Root2.der -f Root2DB/dbpasswd -m 502161010 -7 Bridge11@Root2  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11429: MegaBridge_3_2: Creating certficate Bridge11Root2.der signed by Root2  - PASSED
chains.sh: Importing certificate Bridge11Root2.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11430: MegaBridge_3_2: Importing certificate Bridge11Root2.der to Bridge11DB database  - PASSED
chains.sh: Creating certficate Bridge11Root3.der signed by Root3
certutil -C -c Root3 -v 60 -d Root3DB -i Bridge11Req.der -o Bridge11Root3.der -f Root3DB/dbpasswd -m 502161011 -7 Bridge11@Root3  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11431: MegaBridge_3_2: Creating certficate Bridge11Root3.der signed by Root3  - PASSED
chains.sh: Importing certificate Bridge11Root3.der to Bridge11DB database
certutil -A -n Bridge11 -t u,u,u -d Bridge11DB -f Bridge11DB/dbpasswd -i Bridge11Root3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11432: MegaBridge_3_2: Importing certificate Bridge11Root3.der to Bridge11DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge11DB database
cmsutil -O -r "Bridge11@Root1,Bridge11@Root2,Bridge11@Root3" -d Bridge11DB > Bridge11.p7
chains.sh: #11433: MegaBridge_3_2: Generating PKCS7 package from Bridge11DB database  - PASSED
chains.sh: Creating DB Bridge12DB
certutil -N -d Bridge12DB -f Bridge12DB/dbpasswd
chains.sh: #11434: MegaBridge_3_2: Creating DB Bridge12DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge12Req.der
certutil -s "CN=Bridge12 Bridge, O=Bridge12, C=US"  -R -2 -d Bridge12DB -f Bridge12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11435: MegaBridge_3_2: Creating Bridge certifiate request Bridge12Req.der  - PASSED
chains.sh: Creating certficate Bridge12Root4.der signed by Root4
certutil -C -c Root4 -v 60 -d Root4DB -i Bridge12Req.der -o Bridge12Root4.der -f Root4DB/dbpasswd -m 502161012 -7 Bridge12@Root4  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11436: MegaBridge_3_2: Creating certficate Bridge12Root4.der signed by Root4  - PASSED
chains.sh: Importing certificate Bridge12Root4.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11437: MegaBridge_3_2: Importing certificate Bridge12Root4.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root5.der signed by Root5
certutil -C -c Root5 -v 60 -d Root5DB -i Bridge12Req.der -o Bridge12Root5.der -f Root5DB/dbpasswd -m 502161013 -7 Bridge12@Root5  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11438: MegaBridge_3_2: Creating certficate Bridge12Root5.der signed by Root5  - PASSED
chains.sh: Importing certificate Bridge12Root5.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root5.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11439: MegaBridge_3_2: Importing certificate Bridge12Root5.der to Bridge12DB database  - PASSED
chains.sh: Creating certficate Bridge12Root6.der signed by Root6
certutil -C -c Root6 -v 60 -d Root6DB -i Bridge12Req.der -o Bridge12Root6.der -f Root6DB/dbpasswd -m 502161014 -7 Bridge12@Root6  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11440: MegaBridge_3_2: Creating certficate Bridge12Root6.der signed by Root6  - PASSED
chains.sh: Importing certificate Bridge12Root6.der to Bridge12DB database
certutil -A -n Bridge12 -t u,u,u -d Bridge12DB -f Bridge12DB/dbpasswd -i Bridge12Root6.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11441: MegaBridge_3_2: Importing certificate Bridge12Root6.der to Bridge12DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge12DB database
cmsutil -O -r "Bridge12@Root4,Bridge12@Root5,Bridge12@Root6" -d Bridge12DB > Bridge12.p7
chains.sh: #11442: MegaBridge_3_2: Generating PKCS7 package from Bridge12DB database  - PASSED
chains.sh: Creating DB Bridge13DB
certutil -N -d Bridge13DB -f Bridge13DB/dbpasswd
chains.sh: #11443: MegaBridge_3_2: Creating DB Bridge13DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge13Req.der
certutil -s "CN=Bridge13 Bridge, O=Bridge13, C=US"  -R -2 -d Bridge13DB -f Bridge13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11444: MegaBridge_3_2: Creating Bridge certifiate request Bridge13Req.der  - PASSED
chains.sh: Creating certficate Bridge13Root7.der signed by Root7
certutil -C -c Root7 -v 60 -d Root7DB -i Bridge13Req.der -o Bridge13Root7.der -f Root7DB/dbpasswd -m 502161015 -7 Bridge13@Root7  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11445: MegaBridge_3_2: Creating certficate Bridge13Root7.der signed by Root7  - PASSED
chains.sh: Importing certificate Bridge13Root7.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root7.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11446: MegaBridge_3_2: Importing certificate Bridge13Root7.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root8.der signed by Root8
certutil -C -c Root8 -v 60 -d Root8DB -i Bridge13Req.der -o Bridge13Root8.der -f Root8DB/dbpasswd -m 502161016 -7 Bridge13@Root8  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11447: MegaBridge_3_2: Creating certficate Bridge13Root8.der signed by Root8  - PASSED
chains.sh: Importing certificate Bridge13Root8.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root8.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11448: MegaBridge_3_2: Importing certificate Bridge13Root8.der to Bridge13DB database  - PASSED
chains.sh: Creating certficate Bridge13Root9.der signed by Root9
certutil -C -c Root9 -v 60 -d Root9DB -i Bridge13Req.der -o Bridge13Root9.der -f Root9DB/dbpasswd -m 502161017 -7 Bridge13@Root9  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11449: MegaBridge_3_2: Creating certficate Bridge13Root9.der signed by Root9  - PASSED
chains.sh: Importing certificate Bridge13Root9.der to Bridge13DB database
certutil -A -n Bridge13 -t u,u,u -d Bridge13DB -f Bridge13DB/dbpasswd -i Bridge13Root9.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11450: MegaBridge_3_2: Importing certificate Bridge13Root9.der to Bridge13DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge13DB database
cmsutil -O -r "Bridge13@Root7,Bridge13@Root8,Bridge13@Root9" -d Bridge13DB > Bridge13.p7
chains.sh: #11451: MegaBridge_3_2: Generating PKCS7 package from Bridge13DB database  - PASSED
chains.sh: Creating DB Bridge21DB
certutil -N -d Bridge21DB -f Bridge21DB/dbpasswd
chains.sh: #11452: MegaBridge_3_2: Creating DB Bridge21DB  - PASSED
chains.sh: Creating Bridge certifiate request Bridge21Req.der
certutil -s "CN=Bridge21 Bridge, O=Bridge21, C=US"  -R -2 -d Bridge21DB -f Bridge21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o Bridge21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11453: MegaBridge_3_2: Creating Bridge certifiate request Bridge21Req.der  - PASSED
chains.sh: Creating certficate Bridge21Bridge11.der signed by Bridge11
certutil -C -c Bridge11 -v 60 -d Bridge11DB -i Bridge21Req.der -o Bridge21Bridge11.der -f Bridge11DB/dbpasswd -m 502161018 -7 Bridge21@Bridge11  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11454: MegaBridge_3_2: Creating certficate Bridge21Bridge11.der signed by Bridge11  - PASSED
chains.sh: Importing certificate Bridge21Bridge11.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge11.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11455: MegaBridge_3_2: Importing certificate Bridge21Bridge11.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge12.der signed by Bridge12
certutil -C -c Bridge12 -v 60 -d Bridge12DB -i Bridge21Req.der -o Bridge21Bridge12.der -f Bridge12DB/dbpasswd -m 502161019 -7 Bridge21@Bridge12  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11456: MegaBridge_3_2: Creating certficate Bridge21Bridge12.der signed by Bridge12  - PASSED
chains.sh: Importing certificate Bridge21Bridge12.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11457: MegaBridge_3_2: Importing certificate Bridge21Bridge12.der to Bridge21DB database  - PASSED
chains.sh: Creating certficate Bridge21Bridge13.der signed by Bridge13
certutil -C -c Bridge13 -v 60 -d Bridge13DB -i Bridge21Req.der -o Bridge21Bridge13.der -f Bridge13DB/dbpasswd -m 502161020 -7 Bridge21@Bridge13  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11458: MegaBridge_3_2: Creating certficate Bridge21Bridge13.der signed by Bridge13  - PASSED
chains.sh: Importing certificate Bridge21Bridge13.der to Bridge21DB database
certutil -A -n Bridge21 -t u,u,u -d Bridge21DB -f Bridge21DB/dbpasswd -i Bridge21Bridge13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11459: MegaBridge_3_2: Importing certificate Bridge21Bridge13.der to Bridge21DB database  - PASSED
chains.sh: Generating PKCS7 package from Bridge21DB database
cmsutil -O -r "Bridge21@Bridge11,Bridge21@Bridge12,Bridge21@Bridge13" -d Bridge21DB > Bridge21.p7
chains.sh: #11460: MegaBridge_3_2: Generating PKCS7 package from Bridge21DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11461: MegaBridge_3_2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11462: MegaBridge_3_2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge21.der signed by Bridge21
certutil -C -c Bridge21 -v 60 -d Bridge21DB -i CA1Req.der -o CA1Bridge21.der -f Bridge21DB/dbpasswd -m 502161021   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11463: MegaBridge_3_2: Creating certficate CA1Bridge21.der signed by Bridge21  - PASSED
chains.sh: Importing certificate CA1Bridge21.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge21.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11464: MegaBridge_3_2: Importing certificate CA1Bridge21.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11465: MegaBridge_3_2: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11466: MegaBridge_3_2: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502161022   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11467: MegaBridge_3_2: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11468: MegaBridge_3_2: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der  -t Root1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161000 (0x1dee5e68)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root1 ROOT CA,O=Root1,C=US"
        Validity:
            Not Before: Tue May 02 16:14:05 2017
            Not After : Mon May 02 16:14:05 2067
        Subject: "CN=Root1 ROOT CA,O=Root1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:eb:eb:76:46:cb:04:3d:f0:e3:b4:c7:0c:b4:d4:7e:
                    9e:8f:50:90:aa:04:47:3c:ad:98:82:83:05:fd:91:f5:
                    7d:7a:29:09:7b:40:36:14:00:fb:e7:31:c6:53:2a:0e:
                    83:86:67:00:06:b7:5a:8a:72:60:b2:8d:2d:8e:d8:9c:
                    d3:2a:af:a9:44:23:62:32:f3:d8:29:83:c9:9f:34:09:
                    d8:7c:16:55:12:4b:e7:cf:24:c9:4b:e4:c4:99:93:2c:
                    5a:1b:57:ff:f5:39:d8:cb:c7:6a:f1:2a:af:34:40:52:
                    f0:ed:99:73:d3:ef:3e:90:80:e4:53:2b:ff:24:86:1f:
                    5b:85:dd:1c:63:59:c7:17:33:a2:03:ec:ce:d7:95:a5:
                    69:22:06:76:9d:42:f6:d4:44:b9:17:16:2f:d1:d2:11:
                    54:3b:cc:51:d5:a7:30:f7:a0:ae:81:07:0f:4f:f5:35:
                    aa:c5:da:c5:ec:f4:af:b4:72:8e:f1:bd:87:6a:95:38:
                    d0:77:52:98:19:b4:03:04:3e:98:96:71:85:a9:e3:00:
                    fe:c7:be:4d:97:b9:85:22:b2:50:3d:2b:14:35:72:5a:
                    04:a3:7a:61:26:c6:54:e6:a3:98:32:ce:a6:9c:b3:31:
                    21:6d:ce:0a:3e:9f:5e:2f:7e:4f:60:ca:74:ac:6b:93
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0e:3d:e6:01:ed:5f:f1:9b:41:d3:8d:b6:98:8d:61:a6:
        0d:4b:0f:16:be:2d:09:35:93:b3:68:0e:d7:d3:d8:96:
        0e:52:43:9e:67:94:2f:ca:27:0a:64:a8:49:b4:65:4d:
        82:5f:9d:97:3d:c6:e1:8f:bc:ae:20:6b:d4:43:14:21:
        40:2d:43:ba:99:d2:eb:4d:85:a5:06:d5:e6:7f:6a:24:
        94:d1:e5:24:6a:bf:5b:9e:99:24:45:5e:8d:29:37:c7:
        5b:1f:2a:ee:a3:18:b6:86:c1:d4:b7:89:4f:ab:bf:7b:
        ec:16:8d:3f:5c:e7:47:90:5c:b6:8d:c1:3d:41:0c:e3:
        e8:ff:9c:a6:64:2c:ea:a7:64:b4:e2:28:22:8d:f7:0c:
        a8:d9:10:04:57:1a:d1:cb:6c:b5:1e:dc:1a:48:86:06:
        2b:95:c7:d0:5f:00:ae:fb:1a:2c:74:c2:78:79:c3:3e:
        09:1f:35:c3:cd:d3:96:06:c8:ca:6a:fd:eb:86:67:25:
        03:ea:e0:74:cb:49:97:d2:47:f4:b7:44:86:dd:ae:c8:
        33:53:c3:79:0b:16:1d:00:aa:7a:76:03:af:3e:ee:99:
        da:03:c6:2b:3f:f6:c5:dc:4c:5c:11:10:fd:51:57:0b:
        e4:b8:e1:dd:e9:03:d4:72:ea:9f:b2:00:ea:b0:8d:f6
    Fingerprint (SHA-256):
        E2:1A:A2:CF:46:2C:79:5D:B9:22:B1:FB:54:0D:24:78:B8:00:B5:BB:FA:76:52:73:27:7A:4C:AC:5F:DF:CC:6B
    Fingerprint (SHA1):
        66:2D:F7:2E:4F:8C:CF:10:71:E3:55:80:F6:18:C9:9A:00:57:D1:3B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11469: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root1.der with flags -d EE1DB -pp       -t Root1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der  -t Root2.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161001 (0x1dee5e69)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root2 ROOT CA,O=Root2,C=US"
        Validity:
            Not Before: Tue May 02 16:14:07 2017
            Not After : Mon May 02 16:14:07 2067
        Subject: "CN=Root2 ROOT CA,O=Root2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:d7:a5:59:93:1b:8a:60:ba:44:f7:ae:df:0b:65:30:
                    c5:5a:12:cb:83:d4:40:20:88:74:bf:66:01:a5:60:a8:
                    49:8a:8c:bd:27:05:4a:c6:66:4e:ac:44:16:c5:e1:05:
                    f7:4f:ce:df:7b:01:72:26:23:19:bc:cf:19:93:e8:63:
                    ad:26:33:09:60:ab:93:9f:a4:83:a2:b2:c6:70:78:60:
                    ea:38:34:76:70:9b:7a:55:53:2f:e2:f5:01:df:34:b3:
                    cd:fc:32:b6:34:2d:e2:87:c8:b0:36:70:f5:27:dd:3b:
                    ea:ed:91:db:38:f9:f4:7b:03:4c:f2:5a:dd:9f:93:ad:
                    6c:67:c5:ec:ca:1b:d5:5e:80:4a:59:1b:5c:de:88:4d:
                    9d:d1:b6:3b:20:db:92:4c:ff:6b:4c:40:60:05:19:41:
                    bd:c6:2f:4a:33:9a:7d:91:b5:11:be:a3:f2:2b:4e:ca:
                    ac:30:cd:a9:7a:44:85:ca:05:2b:a0:0a:75:6a:74:77:
                    a8:d0:fb:45:69:53:0b:a4:fe:e5:b7:78:60:21:81:34:
                    1c:57:89:76:83:4c:87:80:e8:97:56:48:2d:b9:72:5a:
                    0f:a3:43:61:2b:5f:63:39:e5:75:4a:a8:22:50:d0:fe:
                    44:79:af:b7:f0:4a:92:49:0b:59:2d:ea:70:b7:52:03
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        1f:78:1f:5b:c1:8d:20:83:60:1f:66:7e:6c:eb:9a:19:
        a9:4b:ec:c8:cb:36:9b:ee:5c:ac:ce:b6:2c:11:a4:45:
        2a:d0:06:5c:61:a4:41:8d:5f:b3:c6:ea:43:ff:07:1e:
        da:eb:60:a4:4e:11:ad:34:31:50:b4:17:58:d4:36:e8:
        09:1b:f7:e8:0b:fa:8a:26:d5:0f:5b:1f:c5:de:8d:33:
        08:68:8a:38:00:4f:c0:2c:29:de:ca:1e:8f:c8:73:a9:
        8d:48:e8:dd:a8:dd:c2:0f:8a:c2:e8:9b:e0:60:b8:9a:
        ff:0c:2a:55:d9:6d:c5:ad:eb:20:30:b1:56:22:77:ce:
        8f:40:5f:05:f6:2d:a2:45:7e:87:f9:83:0f:10:38:56:
        00:be:ed:90:04:62:af:4c:70:9b:78:06:c6:86:7d:4e:
        3c:45:73:bf:54:ce:79:85:b9:85:f7:52:69:92:93:fd:
        52:ce:03:7a:aa:68:e1:72:57:57:16:22:8d:c4:31:89:
        67:18:96:e0:60:91:17:3d:7d:bc:48:c1:23:cb:b2:14:
        17:09:39:01:f7:a1:a5:66:6d:02:0c:cf:6c:8f:c9:53:
        57:d1:ac:50:2d:b6:f6:c4:28:6a:08:5b:a9:38:aa:29:
        52:db:5a:ca:9b:cb:99:e4:33:78:d0:bf:c8:aa:5a:3c
    Fingerprint (SHA-256):
        06:50:B7:59:40:44:EC:5E:4C:2B:2C:2F:46:2D:95:51:70:8F:98:01:29:97:67:B1:05:16:A3:0D:E2:42:8D:5C
    Fingerprint (SHA1):
        C6:ED:6C:C1:09:E9:89:B3:55:B7:64:88:4C:8A:B7:FF:CA:C3:74:1A
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11470: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root2.der with flags -d EE1DB -pp       -t Root2.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der  -t Root3.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161002 (0x1dee5e6a)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root3 ROOT CA,O=Root3,C=US"
        Validity:
            Not Before: Tue May 02 16:14:08 2017
            Not After : Mon May 02 16:14:08 2067
        Subject: "CN=Root3 ROOT CA,O=Root3,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f9:2f:ff:77:0b:48:bb:07:e5:2b:32:ba:a5:15:4e:c4:
                    7c:50:4a:3b:69:3a:57:dd:a8:ec:45:8a:ac:6d:d6:97:
                    a6:b2:fe:b1:ac:b7:bf:f1:51:2c:fa:eb:e1:11:67:ec:
                    3b:95:27:03:dd:ed:f4:57:0c:ee:18:9f:44:14:3f:3a:
                    d0:93:1e:f1:2a:b2:5b:04:ea:bb:06:e1:63:1e:97:d9:
                    22:35:25:d2:64:bf:ca:8b:71:de:27:c0:f4:35:fb:b6:
                    9d:16:ca:0f:5a:9e:41:23:25:eb:0c:b1:48:99:60:e3:
                    e5:21:c0:d1:31:48:af:97:f8:48:de:6e:0f:6d:38:a7:
                    31:7f:4f:40:a5:a7:48:b8:d5:1a:b6:06:97:ea:fe:f5:
                    37:29:a2:ff:d0:a1:20:f6:05:01:60:fd:b0:67:fd:74:
                    15:92:c4:1e:0c:67:3c:b3:11:ea:d0:bf:d1:a0:0a:b7:
                    c2:a8:2a:1f:17:17:3d:29:3e:6c:46:e0:e2:7e:9d:5d:
                    22:7c:de:96:b5:8b:cb:e5:3e:5c:4f:40:21:1a:08:a2:
                    85:c1:4f:88:39:a9:bb:a9:07:7f:e9:15:da:28:a5:78:
                    51:11:70:2a:bd:92:48:53:96:cf:23:4b:94:03:b0:0a:
                    b9:61:19:42:1f:74:05:f4:51:6f:fb:1d:19:b1:74:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        52:13:e6:1a:2a:50:64:04:76:7a:e3:d6:e1:dd:21:62:
        4f:2c:42:c1:47:12:aa:e8:aa:16:21:04:80:c6:11:ba:
        40:d7:79:37:b3:7a:33:9e:d7:ae:02:c4:e2:af:d5:5f:
        75:84:d6:76:f8:f6:57:c9:d4:17:a5:d5:a3:db:69:79:
        92:95:7f:12:9e:1d:dd:c3:17:39:51:e3:31:fd:49:1c:
        57:2c:be:63:f8:2a:82:57:b0:a4:c5:23:cd:34:21:19:
        24:0c:40:fa:e7:e9:ea:9f:27:10:88:a7:1a:4a:27:ab:
        ef:db:c5:d4:d5:f3:4e:ac:27:84:12:83:a7:ad:d4:6f:
        f0:8f:5f:4a:43:77:5f:2c:f9:4a:97:24:fc:1c:f6:36:
        44:e9:b8:ef:59:75:cb:5c:1c:10:7e:a7:b3:af:09:74:
        e9:5f:4f:44:f2:80:c4:95:6c:cc:f9:9b:17:86:b4:78:
        85:05:9b:2f:85:5f:29:44:fe:b5:41:8b:ea:d1:39:34:
        c5:ae:53:f0:9e:d1:40:75:61:92:67:0e:fc:78:cd:4e:
        d6:7f:82:bb:02:0e:50:fa:e8:76:4f:5c:0b:7f:e3:f7:
        10:d1:1b:0c:de:14:e3:c3:31:94:f4:a3:3c:78:87:7e:
        67:ef:92:d9:73:fb:76:30:88:16:4b:96:88:04:71:d5
    Fingerprint (SHA-256):
        45:F2:87:3A:40:9A:F4:52:5A:CD:25:47:37:DD:52:97:8A:50:DE:AE:9E:3C:D0:97:75:E1:BC:14:82:2A:67:DD
    Fingerprint (SHA1):
        67:D3:9C:F9:A0:73:A5:99:91:0F:C5:3F:1D:0D:0F:AC:DD:25:68:B4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge11 Bridge,O=Bridge11,C=US"
Returned value is 0, expected result is pass
chains.sh: #11471: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge11.der Bridge11Root3.der with flags -d EE1DB -pp       -t Root3.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der  -t Root4.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161003 (0x1dee5e6b)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root4 ROOT CA,O=Root4,C=US"
        Validity:
            Not Before: Tue May 02 16:14:09 2017
            Not After : Mon May 02 16:14:09 2067
        Subject: "CN=Root4 ROOT CA,O=Root4,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    94:d9:36:08:39:57:75:97:44:54:81:27:77:b6:b8:11:
                    85:bc:43:a8:78:cf:a2:75:81:de:60:26:7c:fd:d1:3b:
                    3c:b9:9d:c9:d6:08:c5:73:2d:7f:ba:e4:fa:0d:c1:42:
                    30:c1:8e:4a:a4:29:3a:e1:22:07:f6:fa:3f:e5:bf:a9:
                    f4:d4:18:bc:ab:b6:13:2a:f4:38:ec:2d:ac:4a:08:b0:
                    8f:79:fe:69:db:e5:9f:a5:1e:f6:a6:83:a1:10:5a:ab:
                    fa:cd:ff:8f:60:68:d3:1e:95:7f:a8:79:85:67:57:71:
                    03:b9:19:69:a1:47:c1:91:2e:7b:bb:d6:0e:ea:43:cc:
                    06:ea:07:5a:95:ad:60:ec:1b:13:58:49:da:9c:ee:0a:
                    8c:a8:b8:d4:73:2b:b2:d9:83:38:3b:40:16:04:10:10:
                    3e:bb:cd:d8:86:b1:19:ae:83:1d:c0:9c:b9:c9:33:ad:
                    05:e0:5b:da:4a:b8:81:76:89:9a:1b:40:c2:12:45:5e:
                    7d:ff:de:ae:38:4c:63:1c:d9:9a:a8:1a:e5:9e:73:2b:
                    be:25:f3:59:ce:5d:90:d4:c1:fb:36:f9:80:cd:07:81:
                    96:6c:10:a2:30:85:fe:b0:bc:d9:78:32:37:77:b2:1f:
                    85:cc:54:ee:f1:37:4e:12:da:8e:06:bb:c3:d0:0c:d1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        23:16:8f:02:33:fa:4f:22:5f:38:ec:3f:4f:db:84:13:
        1a:9e:27:0f:24:5e:de:2f:ce:c9:c3:cf:14:45:f1:f8:
        fd:1b:77:31:cf:0d:67:3c:3a:8f:b0:87:63:f7:a1:66:
        51:3a:8c:25:4d:37:bb:e9:b7:7d:f3:87:50:39:c6:23:
        4c:3d:df:50:30:76:09:e3:a8:69:c3:9c:f8:12:fe:c3:
        56:a5:73:f2:8d:4d:a9:63:f8:9b:e0:15:60:87:7a:8c:
        67:2a:8e:05:50:04:23:c6:19:b8:67:3f:f5:b4:a4:03:
        22:82:62:3c:ff:3c:95:bb:46:f4:c0:63:04:1d:e9:6c:
        13:4a:ea:e2:d3:b0:3f:21:ff:1c:3f:3c:70:31:79:6d:
        c2:52:5b:83:e0:ef:2b:07:d6:e3:64:fa:c7:ad:2c:e0:
        86:88:f8:35:be:cf:a8:f2:67:f3:f7:28:54:2f:a2:da:
        26:dc:98:e7:e4:14:4f:5f:ab:e1:99:37:bd:03:f5:0e:
        9d:7b:d1:f9:a3:c2:a9:50:7b:7c:7e:e1:fd:e6:03:9c:
        c2:b0:ab:03:8c:93:8c:96:48:39:52:7d:e0:fe:e2:0e:
        6c:f1:63:84:dc:3c:71:bb:6f:8e:cd:c2:7a:38:32:17:
        d1:13:60:e6:db:53:8e:60:5c:1d:9a:ff:d5:0d:76:2c
    Fingerprint (SHA-256):
        7F:60:18:23:2F:93:91:30:98:4F:EF:93:5B:2E:80:8B:9E:3E:F3:63:C1:6E:66:00:72:CC:24:20:3A:1B:48:18
    Fingerprint (SHA1):
        9E:F2:B2:58:B4:74:DE:5D:82:4D:CA:75:64:F7:D2:F0:BB:D2:27:1E
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11472: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root4.der with flags -d EE1DB -pp       -t Root4.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der  -t Root5.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161004 (0x1dee5e6c)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root5 ROOT CA,O=Root5,C=US"
        Validity:
            Not Before: Tue May 02 16:14:10 2017
            Not After : Mon May 02 16:14:10 2067
        Subject: "CN=Root5 ROOT CA,O=Root5,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ba:14:bf:a3:47:a5:dc:c5:70:5c:b6:c2:32:b1:03:ec:
                    3b:d4:ef:da:53:06:d3:e4:20:74:11:0f:44:eb:e3:3b:
                    d4:e5:92:8f:c9:9e:3b:94:2a:74:14:60:f9:e7:8f:1c:
                    9d:f8:c7:38:27:08:af:db:c6:c3:17:2c:70:02:af:b9:
                    3d:93:db:40:4f:41:bd:e6:cf:b3:73:d6:8f:25:82:4c:
                    dc:ab:9b:b1:13:a2:d1:fd:c6:f9:61:be:c1:d3:eb:d2:
                    d8:a5:e6:7b:6e:59:c6:70:8b:16:b7:79:37:3b:3b:9b:
                    e7:a3:57:92:f9:2b:7b:b6:9d:0d:8b:98:6e:90:8e:68:
                    03:0d:70:c1:00:56:3c:63:55:c8:f1:9f:fc:6a:02:30:
                    44:74:69:cb:c3:40:a1:ce:3f:92:a4:14:e0:a0:fd:90:
                    0b:97:54:8a:5e:ea:67:c5:c3:70:0f:f4:a4:37:6d:1b:
                    a2:41:02:67:bc:aa:14:6a:bc:80:3e:d9:f4:cf:21:ce:
                    58:03:2a:23:df:4c:0d:2f:b7:ed:9f:97:07:74:5f:02:
                    c9:d1:7a:1d:61:f8:ab:8f:fe:d2:6e:8f:8a:23:05:19:
                    d6:01:57:35:d2:4f:81:b7:5b:74:0b:db:cb:8e:c3:4b:
                    1b:a2:dd:1f:54:d6:91:cf:c9:07:51:65:aa:27:9a:4b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        6a:e6:67:a0:65:f9:03:d3:0b:de:49:c7:6a:b7:0f:76:
        08:95:01:ac:9d:d2:f7:42:18:a8:7b:7b:62:dc:6a:9c:
        2e:09:52:cf:bf:ba:c5:ae:75:88:32:d7:c6:4c:8b:62:
        92:f9:57:50:66:bb:72:7f:94:16:60:9d:35:4a:e1:3d:
        a9:78:35:c7:62:d4:39:ff:e3:c5:1d:0f:a1:2f:81:21:
        99:62:5e:fd:ac:b0:f3:cf:b1:d0:50:91:f0:a0:63:e1:
        08:06:46:9c:c9:b0:23:fb:2b:2a:a9:02:72:b0:f2:2c:
        92:c9:05:4b:d3:df:69:49:fc:1c:dd:bd:67:85:83:0c:
        47:a2:a7:b4:de:1e:4e:eb:c9:7a:7b:8a:5b:df:3e:7e:
        ea:4f:59:4c:74:c5:9a:b9:70:2d:60:76:b3:07:52:9a:
        0a:a9:df:91:f1:80:54:d5:ff:96:87:01:52:f1:f7:51:
        a7:1a:6f:4a:fa:18:f6:f0:de:c1:cb:43:61:42:ee:2e:
        47:0d:5a:f6:42:73:07:ed:a9:21:da:11:f1:8a:35:5e:
        d3:f0:4e:b8:f1:2d:c4:55:a5:95:b1:1e:54:8a:e6:e3:
        e7:08:34:3a:15:ae:a6:65:31:9d:1c:f5:56:d9:9b:27:
        85:b5:cf:cf:4c:36:88:cc:35:f6:21:a3:95:c5:83:f4
    Fingerprint (SHA-256):
        08:45:C6:3C:D6:A0:D8:9A:06:2F:B9:55:E0:17:87:0C:AB:2D:23:6D:41:E9:CA:91:46:E2:8C:1C:3B:FF:A2:76
    Fingerprint (SHA1):
        01:76:56:26:A9:0E:3F:DB:74:F4:FC:6E:66:A4:07:7D:4D:9B:5E:3F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11473: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root5.der with flags -d EE1DB -pp       -t Root5.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der  -t Root6.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161005 (0x1dee5e6d)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root6 ROOT CA,O=Root6,C=US"
        Validity:
            Not Before: Tue May 02 16:14:12 2017
            Not After : Mon May 02 16:14:12 2067
        Subject: "CN=Root6 ROOT CA,O=Root6,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    f5:f2:94:2b:3f:f0:d0:6d:75:be:31:4e:be:16:e3:ea:
                    43:af:81:d2:fe:08:bc:3f:aa:d6:7a:a0:cf:ea:79:a0:
                    dd:69:cf:d1:39:c7:a1:ab:84:09:fc:64:b3:08:82:3d:
                    24:ae:d7:07:07:bc:65:92:1b:82:f7:53:4f:14:af:78:
                    d7:0c:cd:14:f7:a8:7b:3c:f9:a2:3a:d1:9f:d5:3e:3f:
                    99:97:ed:6c:f9:f3:da:26:3d:2e:7b:d1:a5:79:48:dd:
                    04:ee:d3:4f:32:99:d8:e4:7a:1f:38:3d:31:03:70:07:
                    d8:3d:9e:65:ed:e2:14:cd:29:ad:68:e1:6e:86:46:50:
                    a5:03:5b:e6:9d:e4:6d:25:ed:3b:e1:ea:b2:8e:f2:69:
                    e1:b8:83:34:6d:1e:68:04:4b:22:75:d0:77:05:88:15:
                    c4:d6:d7:ba:53:15:8f:ce:ac:82:bf:ef:ae:7f:81:6d:
                    c6:46:3c:66:9a:cd:8d:f4:2d:e6:42:da:82:6b:2e:b6:
                    6e:e2:cd:50:74:08:a3:a8:bf:b1:60:d0:40:fa:5d:dd:
                    6b:f0:b1:13:5a:f3:ac:40:4e:54:ac:71:35:be:f7:63:
                    3c:3c:f2:be:19:fd:ee:00:d0:bd:98:09:e8:5f:cd:dc:
                    79:27:33:94:95:8c:ca:ab:0c:c1:e7:b4:40:a4:8d:5d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b0:1e:d8:2d:e1:78:c1:35:20:db:ef:fa:b0:0b:dc:83:
        0e:fb:35:43:69:e9:b8:c4:13:bf:bd:3f:78:6b:b4:6a:
        36:cf:8f:c6:7a:f6:eb:5f:3d:76:54:50:75:be:70:09:
        79:a2:5b:79:ea:67:f2:ee:2c:43:af:14:ef:53:53:b2:
        75:06:1d:91:07:87:c9:7d:ad:7e:01:b0:51:aa:eb:04:
        50:d4:d4:6d:2c:bb:41:10:c4:36:26:67:6a:a5:75:f4:
        1b:08:a3:db:1e:02:95:79:8c:a1:8b:36:e9:54:22:05:
        d2:47:53:02:d1:5c:a5:f1:f4:35:07:5a:82:7b:6f:d0:
        2b:69:86:47:a6:03:e1:06:b5:15:16:74:2a:77:c3:a1:
        80:6b:cc:3b:3e:af:8e:09:74:45:6e:a1:c5:55:10:8b:
        5a:67:1a:a4:7d:24:c6:d2:6c:d8:94:84:fd:82:05:51:
        dd:a7:24:d0:2c:05:44:8f:e0:0f:3d:f1:ba:5e:f5:ce:
        dc:b0:31:16:7c:7c:87:22:6a:99:2b:6e:8e:39:f4:e0:
        1f:06:eb:86:0c:8c:91:48:ec:71:17:02:aa:fa:18:ca:
        5f:f5:51:68:84:36:b6:0a:55:be:10:9a:64:15:09:77:
        c7:4c:ef:e8:30:51:b2:61:07:c1:79:b2:72:e1:8b:c8
    Fingerprint (SHA-256):
        1E:A4:71:D8:D8:52:A6:09:EE:6C:A8:1F:7A:8D:6D:8C:7E:3E:0D:6E:1B:AC:3A:FC:45:2E:AF:71:54:56:64:FA
    Fingerprint (SHA1):
        E1:E9:DC:B5:0E:5E:D1:D5:66:C0:7A:B5:BE:5D:FC:4D:EC:FD:BF:83
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge12 Bridge,O=Bridge12,C=US"
Returned value is 0, expected result is pass
chains.sh: #11474: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge12.der Bridge12Root6.der with flags -d EE1DB -pp       -t Root6.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der  -t Root7.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161006 (0x1dee5e6e)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root7 ROOT CA,O=Root7,C=US"
        Validity:
            Not Before: Tue May 02 16:14:13 2017
            Not After : Mon May 02 16:14:13 2067
        Subject: "CN=Root7 ROOT CA,O=Root7,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cc:35:fc:ee:41:f0:99:47:84:40:d8:cc:4a:03:6f:b2:
                    7a:8f:99:a9:16:f0:92:b4:89:17:61:0a:6b:35:87:9e:
                    58:46:21:5f:f7:d5:d7:a6:b7:cf:bb:56:de:aa:3b:6f:
                    ea:6d:c2:16:52:b9:e2:26:6e:1e:4d:e9:63:2a:9a:5d:
                    1b:c0:53:64:f3:cc:28:79:1f:0b:cb:9d:74:e9:3c:59:
                    09:8c:00:ad:bb:92:6f:ad:04:58:d1:c5:27:22:69:fa:
                    15:e9:20:71:75:f5:c0:08:7e:fb:6c:7a:8f:47:85:e2:
                    d1:e1:53:7e:3d:98:df:cf:c7:b6:28:ae:82:b9:72:c8:
                    da:dc:85:8c:15:72:37:5b:3a:0c:9e:10:2b:76:ee:8c:
                    c9:eb:28:69:cc:16:11:56:5b:c0:48:f8:86:6e:12:f2:
                    bc:f6:26:e0:ad:98:08:30:ce:b6:20:03:23:d0:65:f8:
                    61:6e:71:ca:83:35:0a:34:07:52:71:75:8c:d6:0c:f1:
                    50:75:6f:ec:bf:4e:ef:bf:69:53:e8:10:bb:01:53:c8:
                    52:5f:ee:60:f6:b6:65:8c:8d:b9:40:e4:f7:1e:b4:7c:
                    56:52:66:0c:87:1b:04:a0:3b:e6:a5:93:c7:59:e2:5d:
                    ff:e4:3c:ff:d0:b4:49:7b:d5:cf:a8:2c:32:27:5c:cd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b2:24:27:33:65:99:f9:36:7b:4f:4d:af:50:fc:1b:42:
        f7:09:ee:b2:e9:fd:68:f1:8c:fa:f0:c2:29:60:6c:21:
        d1:a0:c2:b0:b5:56:13:82:29:1b:42:ac:aa:fd:c7:4c:
        f0:c9:9e:48:8f:91:40:80:ec:90:93:19:7a:32:76:6f:
        e3:44:84:13:88:70:0a:18:47:ee:e0:d2:34:31:ce:bf:
        ec:bc:17:66:70:f8:83:2c:d1:ed:36:c6:28:a8:4b:2f:
        04:d0:50:50:71:3b:4b:0d:49:87:b2:65:e5:d7:ae:a7:
        3d:30:0d:96:e8:11:3f:f9:77:b7:ef:d0:8f:d5:ff:1e:
        7b:f3:ad:21:85:60:2d:c8:98:b8:78:f5:8d:0b:08:10:
        d4:1a:62:3e:fd:74:6b:e2:f5:19:38:94:e9:90:50:51:
        20:ba:37:ab:ad:15:2a:4c:72:4f:d5:e6:64:11:df:3e:
        54:e7:63:18:c7:aa:75:54:f5:65:a2:b1:28:6d:7b:2f:
        06:9d:9d:34:df:2a:47:27:4f:8f:af:41:bf:9d:7c:c2:
        6b:da:d7:46:5a:22:dd:00:b2:90:3f:6b:8f:b8:28:71:
        d4:84:b4:f5:c7:91:6a:e9:54:56:58:cf:db:79:14:0f:
        12:97:e3:5c:be:9a:59:3d:5b:12:8e:81:c5:6d:58:cc
    Fingerprint (SHA-256):
        26:F4:2C:C2:D0:DA:B3:9A:96:37:82:DD:80:C9:9C:37:15:69:AE:B2:72:36:13:75:51:2C:21:CB:F1:20:96:4D
    Fingerprint (SHA1):
        B7:1E:55:70:7A:55:1E:F5:40:DC:F3:A0:5A:F1:20:75:17:6A:55:D1
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11475: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root7.der with flags -d EE1DB -pp       -t Root7.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der  -t Root8.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161007 (0x1dee5e6f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root8 ROOT CA,O=Root8,C=US"
        Validity:
            Not Before: Tue May 02 16:14:15 2017
            Not After : Mon May 02 16:14:15 2067
        Subject: "CN=Root8 ROOT CA,O=Root8,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c1:9e:45:a5:28:c7:0b:1d:07:72:18:f1:94:f7:ea:94:
                    86:fd:33:9d:eb:c6:5f:b2:a5:62:aa:29:68:58:f6:a0:
                    05:3f:94:4c:18:85:64:93:88:e5:1c:8a:18:56:c7:5a:
                    85:ce:37:ef:17:14:29:e1:6d:7b:c1:b5:fd:8e:00:48:
                    db:55:6e:ad:45:43:f4:dc:71:e1:f5:87:a0:0f:71:61:
                    13:f4:c0:71:6f:77:fa:19:76:18:8b:01:4d:95:78:2a:
                    f7:af:c4:d3:21:a4:94:8a:04:29:5f:dc:b2:63:6a:55:
                    f2:63:49:f5:81:c9:d0:e6:28:a8:c1:ee:46:38:11:13:
                    47:6e:cb:ce:84:3e:5d:7a:ec:8a:9d:52:4f:97:98:38:
                    b5:60:41:18:b5:cf:be:c6:ba:d5:70:ea:6c:5d:de:65:
                    3f:f3:ad:4d:ca:cb:d8:3d:3e:61:86:5f:04:4a:5d:04:
                    26:c5:47:55:28:76:e7:e7:7f:4f:1a:69:37:ef:d1:ba:
                    d7:85:ad:c9:27:bb:63:af:e9:90:f6:79:6f:c4:95:05:
                    84:8c:fe:3b:a5:72:77:76:8e:c6:9e:6a:e3:9c:53:c6:
                    7a:47:3a:7b:ab:93:4c:07:ba:aa:94:81:ae:20:73:76:
                    2e:69:d6:28:85:4f:a8:17:55:68:38:bb:25:c2:57:fb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        05:b6:30:e3:9b:d4:07:bb:b2:78:9e:b4:9c:e7:e8:fa:
        b5:7d:97:e3:36:59:f2:72:a1:b3:a7:4c:46:95:95:07:
        d2:b4:14:3d:f5:d1:20:5c:c7:cc:8b:5b:90:42:65:96:
        30:bd:14:1a:95:18:fa:42:f7:9e:94:d7:72:3d:dd:86:
        ec:7c:81:25:3c:0d:0c:5a:33:6a:e5:10:20:62:62:f0:
        df:9d:29:4b:4a:9c:99:cf:09:84:42:6e:4a:bf:01:9c:
        4a:96:8f:be:6d:94:a8:13:66:1e:7a:43:67:51:d3:73:
        cb:fb:69:29:67:71:84:f5:a4:67:95:25:2a:ee:bf:22:
        8f:8f:f8:b4:53:c5:1e:32:cf:e8:9c:45:9c:8c:5e:f2:
        3f:c7:3f:a3:74:bc:61:f2:a1:70:73:22:15:fa:2c:f4:
        81:f4:79:7c:5b:7a:55:d8:03:9c:8f:37:93:c8:5d:fa:
        c7:9f:2a:43:18:c9:3e:fc:fc:ff:31:0a:01:62:00:8f:
        6c:7d:03:f3:d0:ef:f7:0a:37:ce:13:31:e3:3e:02:45:
        30:27:9e:cf:34:ef:ca:cc:ae:e2:6a:c1:f4:65:48:0c:
        9b:e2:d1:74:16:fc:8e:0c:50:d2:a7:a8:cd:20:61:86:
        fe:5f:e7:28:c7:a9:98:2c:96:52:93:60:02:28:78:24
    Fingerprint (SHA-256):
        49:63:1E:B4:12:15:26:33:4E:A2:AF:46:3F:A1:67:F0:C3:9F:31:64:54:C9:CF:A2:94:89:41:B2:65:B9:E8:E1
    Fingerprint (SHA1):
        29:91:29:F0:54:CC:A7:09:73:4D:09:CE:0A:E1:A5:F5:A8:1A:69:F7
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11476: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root8.der with flags -d EE1DB -pp       -t Root8.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der  -t Root9.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161008 (0x1dee5e70)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root9 ROOT CA,O=Root9,C=US"
        Validity:
            Not Before: Tue May 02 16:14:16 2017
            Not After : Mon May 02 16:14:16 2067
        Subject: "CN=Root9 ROOT CA,O=Root9,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:65:0c:2a:95:5a:91:fe:6e:36:22:37:de:4a:d6:b2:
                    ac:88:07:0a:78:53:77:31:fc:12:7d:61:d0:ac:8f:cb:
                    88:a7:97:2b:70:db:38:fc:9b:d8:00:48:4b:1a:ab:cd:
                    c3:6f:c3:69:fd:d9:ff:0f:46:c0:8c:ec:96:63:81:c7:
                    82:9f:8e:6b:56:c5:13:9a:34:f1:50:5c:18:50:ff:06:
                    64:7b:0f:07:aa:dd:d2:bd:ec:a3:07:2d:ec:57:64:f7:
                    45:b3:e9:86:63:15:15:b7:a3:1e:0c:f2:65:8a:3e:dc:
                    93:40:80:30:cb:09:31:36:33:3c:4e:14:12:e1:69:3c:
                    4b:26:ac:0f:8a:46:3c:9b:6e:e5:34:34:83:a8:42:e8:
                    54:a9:b7:61:b7:f9:ed:39:aa:66:f0:1e:dd:81:5b:e8:
                    d0:0a:10:b1:35:fb:e5:4c:fc:35:38:e5:e2:df:d4:b7:
                    50:d0:d9:1b:67:ab:c3:1c:40:01:9c:5b:b7:3b:77:bc:
                    af:5e:13:f0:a1:23:79:60:16:85:f3:c4:7f:00:78:4d:
                    89:4d:f9:3c:e5:fe:82:29:6d:67:fa:1a:9c:b3:3b:fc:
                    c5:66:54:2c:00:e4:e0:0f:10:d2:74:7f:25:8c:a2:14:
                    35:8d:f1:59:25:eb:92:f2:53:78:31:6a:6f:7d:58:2f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        0b:1b:85:38:bf:88:bc:a0:b2:2e:98:4e:80:27:60:d6:
        d3:1f:1b:f4:da:ac:c1:aa:fc:1b:fd:f3:6b:38:a9:7a:
        6d:e5:82:d2:99:14:e6:66:43:35:6c:10:80:ad:2a:20:
        26:70:20:f9:e4:77:3e:93:2a:62:9e:33:55:5f:61:fe:
        eb:03:a6:7b:52:e2:4f:d8:92:48:f3:d5:f0:6a:82:ce:
        85:ac:31:e6:78:44:98:c7:56:11:6f:63:b8:4f:70:f0:
        72:9a:d0:0b:87:9e:33:93:5a:cf:81:b5:e7:e0:f9:16:
        09:11:3c:f2:d7:60:54:d2:06:f1:27:eb:8f:ad:7d:59:
        60:84:ea:ad:26:2d:0b:a4:4e:f4:b5:7d:18:a8:f0:34:
        e2:3e:75:8f:27:51:0a:98:7f:86:f6:96:7b:7f:04:3a:
        0b:8b:4e:34:3b:f4:8c:dd:c6:f4:aa:91:90:a4:8a:82:
        68:3b:0b:bf:ef:48:97:95:fa:fb:a4:d7:43:5f:4e:05:
        18:0c:2d:20:62:ca:33:0b:9c:06:93:a1:b4:f5:9f:31:
        cd:4c:a4:cd:dc:1d:7a:67:d1:79:7c:64:e2:5e:d9:ec:
        b0:7c:4c:04:79:b8:37:26:94:a8:ea:52:82:50:1c:28:
        85:b6:d4:45:0c:78:8a:fe:4e:c3:98:46:cb:17:fb:47
    Fingerprint (SHA-256):
        CE:5B:79:E3:46:A2:34:56:61:C5:0D:FE:C3:5C:98:0F:29:1C:34:EA:7E:B3:57:7A:73:FB:F2:48:6F:EE:29:B6
    Fingerprint (SHA1):
        7C:48:0A:93:D6:84:AA:D5:93:51:AB:A6:4E:20:5B:3D:F6:31:8F:55
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge21 Bridge,O=Bridge21,C=US"
Certificate 4 Subject: "CN=Bridge13 Bridge,O=Bridge13,C=US"
Returned value is 0, expected result is pass
chains.sh: #11477: MegaBridge_3_2: Verifying certificate(s)  EE1CA1.der CA1Bridge21.der Bridge21Bridge13.der Bridge13Root9.der with flags -d EE1DB -pp       -t Root9.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11478: Extension: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161023 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11479: Extension: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11480: Extension: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11481: Extension: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11482: Extension: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502161024   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11483: Extension: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11484: Extension: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11485: Extension: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11486: Extension: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502161025   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11487: Extension: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11488: Extension: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11489: Extension: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11490: Extension: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502161026   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11491: Extension: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11492: Extension: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11493: Extension: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161023 (0x1dee5e7f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:32 2017
            Not After : Mon May 02 16:14:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:85:5b:10:66:0a:5d:21:a6:e0:87:19:85:6f:dc:05:
                    04:c0:d3:e9:ed:7a:76:57:10:a3:a1:8c:89:14:e4:4f:
                    03:43:0b:56:38:6a:96:0a:e7:ca:f4:4e:5a:c2:3d:91:
                    d7:1f:27:a5:9b:ab:89:f5:ea:a8:0f:34:0b:fc:6d:62:
                    96:87:4f:e1:65:92:2d:3f:d4:21:6f:00:52:9f:0d:1e:
                    41:61:87:e2:e2:c7:81:47:91:e7:69:3e:eb:54:74:0f:
                    4e:62:6d:98:a8:60:cf:59:ba:9d:91:32:e4:3f:f5:dc:
                    e5:4a:e1:90:61:26:a0:78:30:4b:cb:c0:f5:38:f6:1d:
                    48:f1:1f:6d:e5:17:d0:6b:9c:09:6b:81:22:31:4a:9b:
                    ab:4c:61:e7:52:25:a6:e3:f9:bb:6c:20:5c:de:e4:4b:
                    04:1e:ad:e3:1d:00:a3:db:10:30:45:db:58:a5:9c:3c:
                    a2:ba:be:7a:5d:53:aa:87:36:09:1d:d7:ba:26:20:c3:
                    f3:f2:67:f8:72:7e:50:e7:35:ee:ec:8f:34:29:be:d8:
                    51:e8:c9:cf:e1:9b:71:9e:e6:0f:05:fc:4d:7f:46:fa:
                    a6:fe:aa:a0:a6:d0:ad:ce:2d:fd:b2:21:98:c3:86:3d:
                    5a:e4:36:bc:28:c3:77:46:93:f6:35:5b:b1:b3:3f:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:bf:e0:fc:a2:eb:c1:62:fb:83:1c:91:2a:ea:c0:12:
        ae:ca:45:de:c0:ac:30:c9:0b:24:f6:c1:be:9d:91:ba:
        8e:20:54:ef:b9:fa:ef:ab:f2:03:c1:94:43:e3:3e:60:
        01:82:be:c3:dc:a1:ee:47:f2:2d:f4:b5:a2:c2:30:f1:
        73:d8:05:18:07:98:09:4e:5d:9b:bc:df:4a:89:24:c3:
        8f:e7:be:b4:da:94:d0:25:d4:77:e5:b8:18:14:0f:a4:
        ff:e7:81:16:6d:26:c0:0f:f3:13:e2:71:a7:8a:f2:0f:
        f0:b6:39:fe:ef:23:23:43:b3:61:0f:44:d4:3f:38:26:
        7b:9c:65:5b:83:18:27:cb:a7:c1:70:53:49:f7:f7:c7:
        60:1b:bd:80:95:dc:c2:bc:ec:b6:93:60:bd:7e:91:5b:
        19:d2:eb:9b:a8:d5:75:f5:a5:2d:74:6d:9e:4a:eb:59:
        91:dc:20:c0:3b:3f:4a:15:36:9f:37:bf:cc:79:50:81:
        41:25:3c:f1:73:72:7e:ec:1b:08:9a:a5:80:52:66:0e:
        ed:17:9a:0d:66:ae:ab:77:84:28:6b:8d:b3:3b:dc:74:
        84:56:3e:ba:d4:62:70:41:45:f2:f2:01:2b:8d:49:95:
        02:0e:4b:8c:f8:ae:ed:44:f4:17:db:88:a9:ba:95:43
    Fingerprint (SHA-256):
        8C:0A:0D:FA:1A:54:D4:AA:3B:47:48:6C:D2:BE:5D:BC:6C:F7:B9:BA:25:E9:FE:DD:95:5F:B5:6F:2A:AF:89:C9
    Fingerprint (SHA1):
        15:8B:75:89:E3:D2:93:CE:21:77:E9:95:73:4F:A2:8D:DF:06:AB:59
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11494: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11495: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161024 (0x1dee5e80)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:34 2017
            Not After : Mon May 02 16:14:34 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:51:eb:b8:f7:2f:2d:a6:84:9c:f2:02:64:60:ec:b6:
                    3d:01:64:e2:bd:ff:76:23:21:1b:91:01:17:6a:b7:fd:
                    d9:ec:4c:b7:66:1a:f2:b4:80:7b:a1:80:76:e9:74:a2:
                    39:ba:12:0b:cf:e3:bb:e1:38:27:d3:84:83:03:3f:ba:
                    c2:a0:61:8c:7c:29:b2:32:7b:a1:54:34:f2:34:0a:8c:
                    04:d3:5a:e9:a6:72:78:f8:ac:be:9e:80:91:6a:6e:25:
                    03:f2:a9:cf:5e:12:d0:1d:78:3e:2c:59:36:a0:d1:3d:
                    22:6a:41:d8:80:1d:9e:66:d1:f3:31:18:2c:03:1a:a8:
                    bd:ed:ac:7a:e4:07:04:7c:ce:b6:da:7d:22:56:09:42:
                    a2:4e:1f:53:32:96:8c:62:03:5a:54:d4:cc:16:85:bd:
                    5e:ca:25:6a:bf:a0:22:32:72:1a:2a:12:02:70:cc:0c:
                    46:ac:18:4f:2b:c8:a4:ab:71:f3:e9:61:bc:3c:2f:71:
                    6c:ab:15:41:e6:66:ac:4c:ee:d5:90:d9:b6:51:e6:a3:
                    1e:4f:6d:20:dd:df:f0:7d:84:4c:cc:1d:30:8f:31:ef:
                    95:1b:25:1b:01:dd:2a:ba:b2:5e:57:68:3b:7c:5d:3f:
                    70:96:59:bd:98:6a:97:ca:92:b1:a1:49:08:be:f2:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:26:1f:11:f2:ee:8f:de:fb:09:bd:34:77:08:32:a6:
        e4:27:f8:a2:6b:82:3b:9f:9b:d2:f3:a7:82:43:13:98:
        ba:ee:4f:08:72:27:b3:88:fc:55:86:da:7f:c6:b1:8d:
        3c:bd:00:b8:d2:63:ac:09:10:81:97:22:f4:3f:31:c7:
        14:a6:d1:23:3d:8b:0c:9f:59:27:df:92:16:c5:d9:3e:
        c9:50:3d:3e:9c:ad:94:f9:1e:28:ba:13:61:3d:14:b0:
        31:72:63:d8:cd:04:a9:f8:ef:39:b3:fd:b0:4e:f8:f8:
        44:ab:a0:96:94:a0:52:3c:47:d9:84:58:ae:28:3f:5e:
        1c:49:a6:23:b1:f2:d1:7d:51:ff:bd:78:67:a7:9f:09:
        c0:c0:ee:b3:f1:b1:23:26:0c:8e:5b:e7:65:3b:df:7c:
        45:70:e7:af:fe:d7:22:06:31:6d:e8:48:b0:ee:88:30:
        30:ca:f0:0f:a2:a8:6d:22:eb:61:c4:40:0a:91:d8:30:
        da:3b:28:96:5d:8d:06:00:d7:28:3b:f4:36:34:50:db:
        82:ee:f1:e5:51:46:79:51:5f:b7:70:35:5d:74:f2:d7:
        e0:45:c1:47:8f:b0:89:95:51:58:f3:04:e4:b2:2d:23:
        91:fc:b5:71:94:41:94:52:cc:e3:f7:b9:49:f2:85:53
    Fingerprint (SHA-256):
        CA:17:E3:FE:98:84:9E:BE:4B:49:F3:C6:6B:07:CB:01:93:6C:C0:B9:2A:4F:E1:16:E3:E3:11:7F:1B:75:0D:81
    Fingerprint (SHA1):
        09:F2:52:68:C1:1F:E1:89:3A:ED:14:D7:9A:99:39:E7:44:A9:CA:9B
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11496: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11497: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161025 (0x1dee5e81)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:14:35 2017
            Not After : Mon May 02 16:14:35 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:86:55:0b:79:6e:81:ff:2e:b3:6c:19:64:68:8a:6f:
                    bb:4d:ec:dc:3d:4b:6e:9b:bd:e7:3a:72:b3:6c:79:99:
                    75:d2:27:c8:c2:3f:59:9d:88:c6:9b:bc:07:a6:ba:e1:
                    b6:06:3c:51:bc:06:7f:66:71:88:ec:5e:77:74:ce:5d:
                    0e:a0:4b:fe:71:8f:47:69:6f:88:59:05:4e:1f:c3:a0:
                    a1:0e:42:a4:bb:3b:01:34:f0:9f:41:6b:3f:93:0b:18:
                    4c:9b:c2:39:42:b6:b7:23:45:4c:6e:df:74:14:ed:53:
                    90:2c:5e:b9:0b:be:7e:05:0a:3c:26:c7:c0:ab:6b:e6:
                    ec:71:8a:e2:12:42:80:91:f8:9b:74:30:4c:98:11:67:
                    64:a9:57:63:79:16:b6:8c:e0:5b:5e:4f:0d:5e:d8:58:
                    6a:43:14:d3:24:94:cc:4f:70:ee:9c:3a:85:2c:45:09:
                    17:8a:1e:06:55:e7:ad:13:bd:94:11:da:2a:8a:fe:8c:
                    bd:cf:22:c6:52:a1:b2:2b:14:a1:54:73:17:f5:a4:9a:
                    29:fe:a0:61:cf:a6:39:40:4e:9c:40:d8:71:91:fc:c2:
                    90:12:5e:4c:96:45:eb:50:4b:90:2b:84:3d:f9:4a:d8:
                    4c:91:75:ed:b2:80:69:ae:f2:1b:97:c2:80:dc:d2:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:af:5d:cd:99:ac:4c:6a:d1:07:f3:88:d6:73:03:dd:
        7c:50:9e:07:4f:dc:84:ab:ad:1f:82:5a:d9:08:8e:02:
        1f:0b:86:56:87:74:c3:d8:f1:26:5b:09:90:ce:1e:b6:
        5a:79:09:ae:a1:de:58:48:b0:95:78:9f:9c:01:9d:f5:
        0d:42:57:f8:20:e3:81:58:27:9d:7c:1d:ab:45:36:f9:
        1c:f7:f8:05:fd:3c:3c:f5:37:2a:97:a9:7c:54:de:e2:
        4e:95:c6:16:97:dd:85:ff:8b:81:af:37:3a:59:d9:97:
        a5:a8:63:3c:d2:43:7f:3f:c2:3d:cc:33:2a:3c:2d:24:
        f1:53:27:5c:12:a1:05:af:fa:e1:1d:b3:95:39:76:d5:
        2d:4e:18:ab:d3:f5:13:50:30:6c:fd:45:1d:7a:64:5f:
        dc:46:43:3a:01:43:0e:7b:67:e3:e0:b3:76:f5:84:eb:
        62:2e:3c:05:3e:77:34:1f:2d:ac:fe:12:76:a0:c7:5c:
        52:c6:bb:10:0d:0d:26:ce:6c:54:32:df:26:9b:f7:55:
        b8:63:25:dd:bb:4e:71:b9:2e:01:55:e6:25:ba:f4:3c:
        88:91:ca:46:32:0b:a1:28:88:0b:6c:2d:1a:e8:31:6d:
        7a:20:c6:49:44:65:64:fa:f5:0f:e6:12:7b:0e:02:74
    Fingerprint (SHA-256):
        E1:98:6C:D4:3F:DA:71:E7:B7:DA:57:62:FF:5C:9B:44:51:77:19:D6:5F:62:3F:D7:9B:6B:37:23:89:9F:F1:49
    Fingerprint (SHA1):
        53:0A:73:F7:BC:8E:F9:22:2C:21:C3:57:30:44:2F:99:95:A1:92:69
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11498: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11499: Extension: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11500: Extension: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11501: Extension: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11502: Extension: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161023 (0x1dee5e7f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:32 2017
            Not After : Mon May 02 16:14:32 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    de:85:5b:10:66:0a:5d:21:a6:e0:87:19:85:6f:dc:05:
                    04:c0:d3:e9:ed:7a:76:57:10:a3:a1:8c:89:14:e4:4f:
                    03:43:0b:56:38:6a:96:0a:e7:ca:f4:4e:5a:c2:3d:91:
                    d7:1f:27:a5:9b:ab:89:f5:ea:a8:0f:34:0b:fc:6d:62:
                    96:87:4f:e1:65:92:2d:3f:d4:21:6f:00:52:9f:0d:1e:
                    41:61:87:e2:e2:c7:81:47:91:e7:69:3e:eb:54:74:0f:
                    4e:62:6d:98:a8:60:cf:59:ba:9d:91:32:e4:3f:f5:dc:
                    e5:4a:e1:90:61:26:a0:78:30:4b:cb:c0:f5:38:f6:1d:
                    48:f1:1f:6d:e5:17:d0:6b:9c:09:6b:81:22:31:4a:9b:
                    ab:4c:61:e7:52:25:a6:e3:f9:bb:6c:20:5c:de:e4:4b:
                    04:1e:ad:e3:1d:00:a3:db:10:30:45:db:58:a5:9c:3c:
                    a2:ba:be:7a:5d:53:aa:87:36:09:1d:d7:ba:26:20:c3:
                    f3:f2:67:f8:72:7e:50:e7:35:ee:ec:8f:34:29:be:d8:
                    51:e8:c9:cf:e1:9b:71:9e:e6:0f:05:fc:4d:7f:46:fa:
                    a6:fe:aa:a0:a6:d0:ad:ce:2d:fd:b2:21:98:c3:86:3d:
                    5a:e4:36:bc:28:c3:77:46:93:f6:35:5b:b1:b3:3f:17
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        38:bf:e0:fc:a2:eb:c1:62:fb:83:1c:91:2a:ea:c0:12:
        ae:ca:45:de:c0:ac:30:c9:0b:24:f6:c1:be:9d:91:ba:
        8e:20:54:ef:b9:fa:ef:ab:f2:03:c1:94:43:e3:3e:60:
        01:82:be:c3:dc:a1:ee:47:f2:2d:f4:b5:a2:c2:30:f1:
        73:d8:05:18:07:98:09:4e:5d:9b:bc:df:4a:89:24:c3:
        8f:e7:be:b4:da:94:d0:25:d4:77:e5:b8:18:14:0f:a4:
        ff:e7:81:16:6d:26:c0:0f:f3:13:e2:71:a7:8a:f2:0f:
        f0:b6:39:fe:ef:23:23:43:b3:61:0f:44:d4:3f:38:26:
        7b:9c:65:5b:83:18:27:cb:a7:c1:70:53:49:f7:f7:c7:
        60:1b:bd:80:95:dc:c2:bc:ec:b6:93:60:bd:7e:91:5b:
        19:d2:eb:9b:a8:d5:75:f5:a5:2d:74:6d:9e:4a:eb:59:
        91:dc:20:c0:3b:3f:4a:15:36:9f:37:bf:cc:79:50:81:
        41:25:3c:f1:73:72:7e:ec:1b:08:9a:a5:80:52:66:0e:
        ed:17:9a:0d:66:ae:ab:77:84:28:6b:8d:b3:3b:dc:74:
        84:56:3e:ba:d4:62:70:41:45:f2:f2:01:2b:8d:49:95:
        02:0e:4b:8c:f8:ae:ed:44:f4:17:db:88:a9:ba:95:43
    Fingerprint (SHA-256):
        8C:0A:0D:FA:1A:54:D4:AA:3B:47:48:6C:D2:BE:5D:BC:6C:F7:B9:BA:25:E9:FE:DD:95:5F:B5:6F:2A:AF:89:C9
    Fingerprint (SHA1):
        15:8B:75:89:E3:D2:93:CE:21:77:E9:95:73:4F:A2:8D:DF:06:AB:59
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11503: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11504: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161024 (0x1dee5e80)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:34 2017
            Not After : Mon May 02 16:14:34 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9c:51:eb:b8:f7:2f:2d:a6:84:9c:f2:02:64:60:ec:b6:
                    3d:01:64:e2:bd:ff:76:23:21:1b:91:01:17:6a:b7:fd:
                    d9:ec:4c:b7:66:1a:f2:b4:80:7b:a1:80:76:e9:74:a2:
                    39:ba:12:0b:cf:e3:bb:e1:38:27:d3:84:83:03:3f:ba:
                    c2:a0:61:8c:7c:29:b2:32:7b:a1:54:34:f2:34:0a:8c:
                    04:d3:5a:e9:a6:72:78:f8:ac:be:9e:80:91:6a:6e:25:
                    03:f2:a9:cf:5e:12:d0:1d:78:3e:2c:59:36:a0:d1:3d:
                    22:6a:41:d8:80:1d:9e:66:d1:f3:31:18:2c:03:1a:a8:
                    bd:ed:ac:7a:e4:07:04:7c:ce:b6:da:7d:22:56:09:42:
                    a2:4e:1f:53:32:96:8c:62:03:5a:54:d4:cc:16:85:bd:
                    5e:ca:25:6a:bf:a0:22:32:72:1a:2a:12:02:70:cc:0c:
                    46:ac:18:4f:2b:c8:a4:ab:71:f3:e9:61:bc:3c:2f:71:
                    6c:ab:15:41:e6:66:ac:4c:ee:d5:90:d9:b6:51:e6:a3:
                    1e:4f:6d:20:dd:df:f0:7d:84:4c:cc:1d:30:8f:31:ef:
                    95:1b:25:1b:01:dd:2a:ba:b2:5e:57:68:3b:7c:5d:3f:
                    70:96:59:bd:98:6a:97:ca:92:b1:a1:49:08:be:f2:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        36:26:1f:11:f2:ee:8f:de:fb:09:bd:34:77:08:32:a6:
        e4:27:f8:a2:6b:82:3b:9f:9b:d2:f3:a7:82:43:13:98:
        ba:ee:4f:08:72:27:b3:88:fc:55:86:da:7f:c6:b1:8d:
        3c:bd:00:b8:d2:63:ac:09:10:81:97:22:f4:3f:31:c7:
        14:a6:d1:23:3d:8b:0c:9f:59:27:df:92:16:c5:d9:3e:
        c9:50:3d:3e:9c:ad:94:f9:1e:28:ba:13:61:3d:14:b0:
        31:72:63:d8:cd:04:a9:f8:ef:39:b3:fd:b0:4e:f8:f8:
        44:ab:a0:96:94:a0:52:3c:47:d9:84:58:ae:28:3f:5e:
        1c:49:a6:23:b1:f2:d1:7d:51:ff:bd:78:67:a7:9f:09:
        c0:c0:ee:b3:f1:b1:23:26:0c:8e:5b:e7:65:3b:df:7c:
        45:70:e7:af:fe:d7:22:06:31:6d:e8:48:b0:ee:88:30:
        30:ca:f0:0f:a2:a8:6d:22:eb:61:c4:40:0a:91:d8:30:
        da:3b:28:96:5d:8d:06:00:d7:28:3b:f4:36:34:50:db:
        82:ee:f1:e5:51:46:79:51:5f:b7:70:35:5d:74:f2:d7:
        e0:45:c1:47:8f:b0:89:95:51:58:f3:04:e4:b2:2d:23:
        91:fc:b5:71:94:41:94:52:cc:e3:f7:b9:49:f2:85:53
    Fingerprint (SHA-256):
        CA:17:E3:FE:98:84:9E:BE:4B:49:F3:C6:6B:07:CB:01:93:6C:C0:B9:2A:4F:E1:16:E3:E3:11:7F:1B:75:0D:81
    Fingerprint (SHA1):
        09:F2:52:68:C1:1F:E1:89:3A:ED:14:D7:9A:99:39:E7:44:A9:CA:9B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11505: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11506: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161025 (0x1dee5e81)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:14:35 2017
            Not After : Mon May 02 16:14:35 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:86:55:0b:79:6e:81:ff:2e:b3:6c:19:64:68:8a:6f:
                    bb:4d:ec:dc:3d:4b:6e:9b:bd:e7:3a:72:b3:6c:79:99:
                    75:d2:27:c8:c2:3f:59:9d:88:c6:9b:bc:07:a6:ba:e1:
                    b6:06:3c:51:bc:06:7f:66:71:88:ec:5e:77:74:ce:5d:
                    0e:a0:4b:fe:71:8f:47:69:6f:88:59:05:4e:1f:c3:a0:
                    a1:0e:42:a4:bb:3b:01:34:f0:9f:41:6b:3f:93:0b:18:
                    4c:9b:c2:39:42:b6:b7:23:45:4c:6e:df:74:14:ed:53:
                    90:2c:5e:b9:0b:be:7e:05:0a:3c:26:c7:c0:ab:6b:e6:
                    ec:71:8a:e2:12:42:80:91:f8:9b:74:30:4c:98:11:67:
                    64:a9:57:63:79:16:b6:8c:e0:5b:5e:4f:0d:5e:d8:58:
                    6a:43:14:d3:24:94:cc:4f:70:ee:9c:3a:85:2c:45:09:
                    17:8a:1e:06:55:e7:ad:13:bd:94:11:da:2a:8a:fe:8c:
                    bd:cf:22:c6:52:a1:b2:2b:14:a1:54:73:17:f5:a4:9a:
                    29:fe:a0:61:cf:a6:39:40:4e:9c:40:d8:71:91:fc:c2:
                    90:12:5e:4c:96:45:eb:50:4b:90:2b:84:3d:f9:4a:d8:
                    4c:91:75:ed:b2:80:69:ae:f2:1b:97:c2:80:dc:d2:63
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5c:af:5d:cd:99:ac:4c:6a:d1:07:f3:88:d6:73:03:dd:
        7c:50:9e:07:4f:dc:84:ab:ad:1f:82:5a:d9:08:8e:02:
        1f:0b:86:56:87:74:c3:d8:f1:26:5b:09:90:ce:1e:b6:
        5a:79:09:ae:a1:de:58:48:b0:95:78:9f:9c:01:9d:f5:
        0d:42:57:f8:20:e3:81:58:27:9d:7c:1d:ab:45:36:f9:
        1c:f7:f8:05:fd:3c:3c:f5:37:2a:97:a9:7c:54:de:e2:
        4e:95:c6:16:97:dd:85:ff:8b:81:af:37:3a:59:d9:97:
        a5:a8:63:3c:d2:43:7f:3f:c2:3d:cc:33:2a:3c:2d:24:
        f1:53:27:5c:12:a1:05:af:fa:e1:1d:b3:95:39:76:d5:
        2d:4e:18:ab:d3:f5:13:50:30:6c:fd:45:1d:7a:64:5f:
        dc:46:43:3a:01:43:0e:7b:67:e3:e0:b3:76:f5:84:eb:
        62:2e:3c:05:3e:77:34:1f:2d:ac:fe:12:76:a0:c7:5c:
        52:c6:bb:10:0d:0d:26:ce:6c:54:32:df:26:9b:f7:55:
        b8:63:25:dd:bb:4e:71:b9:2e:01:55:e6:25:ba:f4:3c:
        88:91:ca:46:32:0b:a1:28:88:0b:6c:2d:1a:e8:31:6d:
        7a:20:c6:49:44:65:64:fa:f5:0f:e6:12:7b:0e:02:74
    Fingerprint (SHA-256):
        E1:98:6C:D4:3F:DA:71:E7:B7:DA:57:62:FF:5C:9B:44:51:77:19:D6:5F:62:3F:D7:9B:6B:37:23:89:9F:F1:49
    Fingerprint (SHA1):
        53:0A:73:F7:BC:8E:F9:22:2C:21:C3:57:30:44:2F:99:95:A1:92:69
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11507: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11508: Extension: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11509: Extension2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161027 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11510: Extension2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11511: Extension2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11512: Extension2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11513: Extension2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502161028   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11514: Extension2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11515: Extension2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11516: Extension2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11517: Extension2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502161029   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11518: Extension2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11519: Extension2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11520: Extension2: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11521: Extension2: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502161030   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11522: Extension2: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11523: Extension2: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11524: Extension2: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11525: Extension2: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502161031   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11526: Extension2: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11527: Extension2: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11528: Extension2: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161027 (0x1dee5e83)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:41 2017
            Not After : Mon May 02 16:14:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:d0:17:73:6f:28:c4:e8:0b:12:34:37:4a:a9:9a:34:
                    b5:bb:25:8c:7b:2d:37:b3:6b:93:55:ae:d6:0d:c7:b1:
                    41:81:e7:14:60:6f:20:25:e5:4b:9f:62:a4:f0:c6:f6:
                    08:10:9f:f4:94:83:f1:c2:ee:ee:4f:64:c6:37:a0:94:
                    d8:0b:3a:d4:48:0e:34:0e:c4:49:5d:98:f1:68:24:e5:
                    fd:c2:84:07:b0:29:15:6f:d4:d0:ce:e5:eb:60:80:c9:
                    7a:21:7f:7a:24:db:21:63:ca:9e:36:5e:9e:e7:23:51:
                    21:6b:af:8e:a4:fa:90:e4:e5:36:1f:c9:24:95:3f:27:
                    52:a4:6c:79:3d:67:9f:b5:7c:64:5a:c1:c2:4c:cf:a3:
                    dc:10:d0:22:47:2c:ce:96:e5:6b:39:87:c5:66:dd:13:
                    b6:21:59:f3:3f:f9:23:f2:15:b6:f6:72:94:bf:e3:5f:
                    2a:0d:45:fd:0e:3d:6f:fe:fb:bd:52:a9:d4:45:a6:03:
                    ec:4b:44:bb:21:9b:79:10:cf:72:a6:12:6f:01:08:a4:
                    57:c5:2d:2c:76:18:c6:3f:8c:f9:6b:8a:df:d2:74:01:
                    7d:d3:4a:d6:32:27:2f:db:4d:16:5e:c6:11:6d:d0:7b:
                    84:ba:fa:fd:59:c2:94:26:08:d2:9b:f4:bd:24:91:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:fc:3c:d2:56:ff:69:6c:eb:e7:01:0c:8b:0c:84:6c:
        2b:ac:de:4f:1b:11:7e:ee:7d:b3:24:4e:43:7d:a9:5d:
        19:a7:a3:fc:15:f3:5d:eb:3c:b9:49:7e:d7:34:9d:e0:
        90:0a:d8:f9:a8:df:ae:f3:12:18:f0:86:5b:c6:d4:62:
        36:37:cd:f8:9d:6c:f8:1b:d3:11:4b:de:94:c4:4d:99:
        dd:bf:5b:11:0a:44:d2:0f:a3:ac:bb:37:16:85:22:0e:
        6e:98:10:1d:63:1c:1a:f5:7f:1b:38:8f:bb:cb:bd:d7:
        ca:56:03:7c:32:6d:c0:45:16:44:50:c1:d6:ea:74:8c:
        04:2a:52:c0:38:5b:6c:5c:4a:ca:b7:28:6b:a3:21:57:
        79:dc:14:f3:38:fc:0b:a8:56:0a:a8:21:c9:97:88:ea:
        5a:81:dd:2a:a5:2a:ea:7c:eb:0a:be:fa:ef:a7:03:1f:
        06:03:a1:76:30:93:6a:e0:57:c1:fe:93:35:13:21:6a:
        05:8f:f0:da:c9:65:a8:89:4c:d5:cf:81:ae:5b:66:0a:
        2b:fd:bb:29:8a:13:39:2b:aa:88:b5:5a:14:72:65:0b:
        97:c4:ef:0f:7a:e6:07:77:64:18:52:3a:83:74:f2:7e:
        07:57:80:29:76:42:d3:25:ec:81:e0:c2:08:13:9e:94
    Fingerprint (SHA-256):
        CB:0F:99:CC:CC:F3:24:F1:08:72:D4:48:F3:4A:F7:04:48:97:5F:9F:86:1E:47:59:4B:01:22:47:96:B5:BD:92
    Fingerprint (SHA1):
        E7:12:63:29:4B:04:FF:49:4D:CF:4D:EE:D6:76:C5:F6:7F:7A:3E:2F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11529: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11530: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der Root.der with flags -d AllDB -pp      -o OID.2.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161028 (0x1dee5e84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:43 2017
            Not After : Mon May 02 16:14:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:e4:75:33:52:11:02:25:00:3a:49:09:eb:16:81:2d:
                    2d:72:19:9a:36:73:ec:23:f1:9a:e3:4c:37:54:d4:e5:
                    9c:05:bc:c3:55:1c:e9:0f:83:7e:fc:d8:ab:b8:52:b8:
                    6e:63:67:15:2d:d6:5c:71:35:17:e2:75:1a:c8:65:3f:
                    29:0b:d2:49:ca:91:72:45:20:6e:5c:58:57:0e:de:df:
                    6f:e1:c4:60:05:4b:77:6c:50:19:13:1a:73:9e:8e:f7:
                    14:42:33:9c:0e:bc:71:f9:c8:f2:e7:82:13:dc:90:7c:
                    07:b8:4f:f6:d6:23:59:29:76:3c:10:b4:fa:bc:58:2d:
                    aa:16:dc:7e:33:ee:cf:51:18:b0:67:f6:eb:e5:64:3f:
                    00:71:98:0e:4e:e5:b4:f6:b8:6c:d2:0a:9b:fa:2c:2d:
                    a2:f8:9d:94:60:49:e1:5c:19:d9:12:fb:ea:83:1c:b7:
                    0f:35:31:4d:fc:0e:23:af:f1:cd:e0:f2:9e:df:f7:f0:
                    90:74:01:68:74:72:fe:cf:cc:0c:96:3b:73:8a:f6:fd:
                    6b:ca:63:ec:e2:19:5c:15:45:0e:f6:2a:f7:8f:5e:f2:
                    88:7f:6a:a6:9f:de:72:28:bd:b4:5b:57:c2:5a:a2:f5:
                    ec:41:94:02:4d:d0:ac:41:db:fd:1a:40:e7:c3:ac:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:5b:da:d3:1f:20:2f:a1:90:b0:f2:b7:e3:b0:b3:e3:
        6c:27:a3:d1:92:32:48:0d:c8:2b:93:8a:73:2a:51:9c:
        5e:8f:a4:ba:5e:d3:c5:76:b1:74:ca:9d:cf:da:42:46:
        f9:51:f2:cb:e3:5e:56:7e:77:57:45:c8:60:41:17:35:
        37:2d:9a:e7:0a:c3:07:1c:06:0e:05:d8:0e:44:87:3c:
        2f:f5:e2:96:7b:ab:f0:ec:59:3f:6b:ac:6f:23:a0:61:
        fc:9d:c2:2a:4c:5f:b1:43:b8:bd:e6:53:4d:86:31:c6:
        61:ce:28:a6:b4:e9:a2:08:f6:f4:d6:67:96:d9:25:fe:
        d0:50:3a:32:12:03:60:8e:25:aa:19:39:a3:ef:c5:c4:
        67:be:b0:b0:15:ec:f2:df:bc:4c:65:95:a4:ac:25:64:
        e0:0d:54:d2:b1:ff:7e:09:45:1f:db:02:3d:58:cd:82:
        71:f4:8a:20:04:92:2a:4e:6c:21:8b:d7:46:ab:ef:d8:
        26:bb:d1:3d:19:10:5e:b6:14:d0:42:d0:1c:ab:b1:10:
        81:0c:d6:e1:3a:20:ac:16:65:2e:df:48:1a:0a:75:d5:
        2a:36:6a:6e:4b:78:ae:68:ef:54:b0:b2:b7:20:b9:41:
        fd:27:71:d8:fa:38:ef:5d:3f:38:3e:cc:b7:78:80:d4
    Fingerprint (SHA-256):
        61:91:64:14:FB:67:8C:BD:2D:64:C5:6A:7B:1D:7C:2F:43:6A:CC:19:A6:15:FC:D9:BC:58:FE:94:AE:5B:1A:48
    Fingerprint (SHA1):
        66:A0:EF:08:BE:A3:20:5E:EF:5F:4E:38:F5:59:07:A7:33:D2:A2:DB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11531: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.1.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der CA1Root.der  -t CA1Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11532: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der CA1Root.der with flags -d AllDB -pp      -o OID.2.0  -t CA1Root.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161029 (0x1dee5e85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:14:44 2017
            Not After : Mon May 02 16:14:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:74:47:0d:a0:b1:ca:fa:a2:62:aa:f8:53:c0:9c:d0:
                    ed:46:da:f5:cd:f9:22:89:65:4b:7e:75:a1:b7:4d:94:
                    ae:d4:0f:53:97:f0:f1:c4:46:56:36:be:cf:b5:0e:24:
                    fb:f8:c3:80:1d:d0:a5:eb:90:34:03:4b:05:d9:4b:2c:
                    77:e5:c1:ed:d3:7e:68:78:da:23:bb:69:a9:be:c9:4f:
                    cd:3a:47:59:be:9f:82:94:63:3a:91:86:fb:9d:fd:a2:
                    41:d5:c9:4b:95:f2:9b:56:5f:88:45:51:02:38:51:11:
                    5f:cd:18:1f:e1:3f:75:43:a3:47:44:90:e8:79:8d:e6:
                    cc:ce:c4:f4:b5:33:e7:bc:db:f8:d7:20:db:74:ed:47:
                    28:4b:ae:40:0e:ca:b1:9c:3f:b8:99:a9:09:7a:0f:7c:
                    9a:78:46:d5:cf:43:90:a7:e1:bd:d3:31:a8:b1:5c:2b:
                    54:0e:1d:c1:21:91:d4:36:f9:3a:14:a8:99:44:19:d8:
                    06:64:d9:e6:74:b4:cc:24:a7:dd:ef:71:38:22:bb:dd:
                    e2:f4:1b:65:d8:55:77:02:2a:d3:56:d6:49:7a:a5:b0:
                    f6:af:99:da:49:c5:85:b7:bd:bf:f5:aa:f2:41:93:b5:
                    0c:01:39:ad:76:7c:11:8d:ad:c9:d5:97:9b:fe:43:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:5b:7a:cf:09:74:8e:09:e7:66:0a:76:26:4c:51:86:
        ce:e6:42:af:72:c3:de:72:01:14:85:83:d5:42:b8:37:
        4c:3d:77:b1:45:39:12:bb:e9:e1:7a:98:39:2c:eb:7a:
        95:3e:48:33:f0:82:1e:98:b0:63:76:cb:46:2d:bd:29:
        38:1b:a6:90:5a:de:d7:74:db:9a:d3:1c:66:bf:ba:af:
        45:69:4c:9a:e8:4a:c9:14:a5:ac:b8:19:57:27:d8:33:
        18:36:0c:53:86:5e:fa:94:a7:cf:09:e5:24:12:c1:e6:
        13:85:e7:f7:3d:38:a0:d7:3e:ac:5b:39:69:fb:13:99:
        da:9c:49:94:10:2f:ad:3d:df:d3:f7:80:a3:e8:88:12:
        55:fc:ac:52:03:61:c0:d3:e5:8a:f7:d4:1d:fc:50:0d:
        bc:36:4e:93:27:28:25:cf:5a:6e:20:75:e3:c6:45:1e:
        61:4b:59:13:b7:5a:aa:bc:51:71:24:c4:54:fe:a4:12:
        b2:4c:67:bc:fe:0f:e4:4c:87:c5:21:c2:f6:47:80:32:
        ba:f5:bd:41:b1:ee:29:70:f0:86:55:bc:7d:d6:90:02:
        40:6f:da:6c:be:36:3c:ca:d9:b1:d9:5e:7f:9d:1d:8c:
        f7:25:3d:ca:3f:31:52:76:d4:26:31:9a:db:52:18:cd
    Fingerprint (SHA-256):
        45:57:6E:01:F1:B0:44:85:0E:BF:3C:9E:24:30:5A:40:55:9C:3C:01:7E:10:2D:EA:37:4D:7E:51:86:77:1F:94
    Fingerprint (SHA1):
        38:A6:C4:45:EF:46:A8:9D:9F:76:02:23:B8:65:1F:BF:B4:9C:75:E2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11533: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.1.0  -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der CA2CA1.der  -t CA2CA1.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11534: Extension2: Verifying certificate(s)  User1CA2.der CA2CA1.der with flags -d AllDB -pp      -o OID.2.0  -t CA2CA1.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11535: Extension2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11536: Extension2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11537: Extension2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161027 (0x1dee5e83)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:41 2017
            Not After : Mon May 02 16:14:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:d0:17:73:6f:28:c4:e8:0b:12:34:37:4a:a9:9a:34:
                    b5:bb:25:8c:7b:2d:37:b3:6b:93:55:ae:d6:0d:c7:b1:
                    41:81:e7:14:60:6f:20:25:e5:4b:9f:62:a4:f0:c6:f6:
                    08:10:9f:f4:94:83:f1:c2:ee:ee:4f:64:c6:37:a0:94:
                    d8:0b:3a:d4:48:0e:34:0e:c4:49:5d:98:f1:68:24:e5:
                    fd:c2:84:07:b0:29:15:6f:d4:d0:ce:e5:eb:60:80:c9:
                    7a:21:7f:7a:24:db:21:63:ca:9e:36:5e:9e:e7:23:51:
                    21:6b:af:8e:a4:fa:90:e4:e5:36:1f:c9:24:95:3f:27:
                    52:a4:6c:79:3d:67:9f:b5:7c:64:5a:c1:c2:4c:cf:a3:
                    dc:10:d0:22:47:2c:ce:96:e5:6b:39:87:c5:66:dd:13:
                    b6:21:59:f3:3f:f9:23:f2:15:b6:f6:72:94:bf:e3:5f:
                    2a:0d:45:fd:0e:3d:6f:fe:fb:bd:52:a9:d4:45:a6:03:
                    ec:4b:44:bb:21:9b:79:10:cf:72:a6:12:6f:01:08:a4:
                    57:c5:2d:2c:76:18:c6:3f:8c:f9:6b:8a:df:d2:74:01:
                    7d:d3:4a:d6:32:27:2f:db:4d:16:5e:c6:11:6d:d0:7b:
                    84:ba:fa:fd:59:c2:94:26:08:d2:9b:f4:bd:24:91:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:fc:3c:d2:56:ff:69:6c:eb:e7:01:0c:8b:0c:84:6c:
        2b:ac:de:4f:1b:11:7e:ee:7d:b3:24:4e:43:7d:a9:5d:
        19:a7:a3:fc:15:f3:5d:eb:3c:b9:49:7e:d7:34:9d:e0:
        90:0a:d8:f9:a8:df:ae:f3:12:18:f0:86:5b:c6:d4:62:
        36:37:cd:f8:9d:6c:f8:1b:d3:11:4b:de:94:c4:4d:99:
        dd:bf:5b:11:0a:44:d2:0f:a3:ac:bb:37:16:85:22:0e:
        6e:98:10:1d:63:1c:1a:f5:7f:1b:38:8f:bb:cb:bd:d7:
        ca:56:03:7c:32:6d:c0:45:16:44:50:c1:d6:ea:74:8c:
        04:2a:52:c0:38:5b:6c:5c:4a:ca:b7:28:6b:a3:21:57:
        79:dc:14:f3:38:fc:0b:a8:56:0a:a8:21:c9:97:88:ea:
        5a:81:dd:2a:a5:2a:ea:7c:eb:0a:be:fa:ef:a7:03:1f:
        06:03:a1:76:30:93:6a:e0:57:c1:fe:93:35:13:21:6a:
        05:8f:f0:da:c9:65:a8:89:4c:d5:cf:81:ae:5b:66:0a:
        2b:fd:bb:29:8a:13:39:2b:aa:88:b5:5a:14:72:65:0b:
        97:c4:ef:0f:7a:e6:07:77:64:18:52:3a:83:74:f2:7e:
        07:57:80:29:76:42:d3:25:ec:81:e0:c2:08:13:9e:94
    Fingerprint (SHA-256):
        CB:0F:99:CC:CC:F3:24:F1:08:72:D4:48:F3:4A:F7:04:48:97:5F:9F:86:1E:47:59:4B:01:22:47:96:B5:BD:92
    Fingerprint (SHA1):
        E7:12:63:29:4B:04:FF:49:4D:CF:4D:EE:D6:76:C5:F6:7F:7A:3E:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11538: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11539: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161028 (0x1dee5e84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:43 2017
            Not After : Mon May 02 16:14:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:e4:75:33:52:11:02:25:00:3a:49:09:eb:16:81:2d:
                    2d:72:19:9a:36:73:ec:23:f1:9a:e3:4c:37:54:d4:e5:
                    9c:05:bc:c3:55:1c:e9:0f:83:7e:fc:d8:ab:b8:52:b8:
                    6e:63:67:15:2d:d6:5c:71:35:17:e2:75:1a:c8:65:3f:
                    29:0b:d2:49:ca:91:72:45:20:6e:5c:58:57:0e:de:df:
                    6f:e1:c4:60:05:4b:77:6c:50:19:13:1a:73:9e:8e:f7:
                    14:42:33:9c:0e:bc:71:f9:c8:f2:e7:82:13:dc:90:7c:
                    07:b8:4f:f6:d6:23:59:29:76:3c:10:b4:fa:bc:58:2d:
                    aa:16:dc:7e:33:ee:cf:51:18:b0:67:f6:eb:e5:64:3f:
                    00:71:98:0e:4e:e5:b4:f6:b8:6c:d2:0a:9b:fa:2c:2d:
                    a2:f8:9d:94:60:49:e1:5c:19:d9:12:fb:ea:83:1c:b7:
                    0f:35:31:4d:fc:0e:23:af:f1:cd:e0:f2:9e:df:f7:f0:
                    90:74:01:68:74:72:fe:cf:cc:0c:96:3b:73:8a:f6:fd:
                    6b:ca:63:ec:e2:19:5c:15:45:0e:f6:2a:f7:8f:5e:f2:
                    88:7f:6a:a6:9f:de:72:28:bd:b4:5b:57:c2:5a:a2:f5:
                    ec:41:94:02:4d:d0:ac:41:db:fd:1a:40:e7:c3:ac:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:5b:da:d3:1f:20:2f:a1:90:b0:f2:b7:e3:b0:b3:e3:
        6c:27:a3:d1:92:32:48:0d:c8:2b:93:8a:73:2a:51:9c:
        5e:8f:a4:ba:5e:d3:c5:76:b1:74:ca:9d:cf:da:42:46:
        f9:51:f2:cb:e3:5e:56:7e:77:57:45:c8:60:41:17:35:
        37:2d:9a:e7:0a:c3:07:1c:06:0e:05:d8:0e:44:87:3c:
        2f:f5:e2:96:7b:ab:f0:ec:59:3f:6b:ac:6f:23:a0:61:
        fc:9d:c2:2a:4c:5f:b1:43:b8:bd:e6:53:4d:86:31:c6:
        61:ce:28:a6:b4:e9:a2:08:f6:f4:d6:67:96:d9:25:fe:
        d0:50:3a:32:12:03:60:8e:25:aa:19:39:a3:ef:c5:c4:
        67:be:b0:b0:15:ec:f2:df:bc:4c:65:95:a4:ac:25:64:
        e0:0d:54:d2:b1:ff:7e:09:45:1f:db:02:3d:58:cd:82:
        71:f4:8a:20:04:92:2a:4e:6c:21:8b:d7:46:ab:ef:d8:
        26:bb:d1:3d:19:10:5e:b6:14:d0:42:d0:1c:ab:b1:10:
        81:0c:d6:e1:3a:20:ac:16:65:2e:df:48:1a:0a:75:d5:
        2a:36:6a:6e:4b:78:ae:68:ef:54:b0:b2:b7:20:b9:41:
        fd:27:71:d8:fa:38:ef:5d:3f:38:3e:cc:b7:78:80:d4
    Fingerprint (SHA-256):
        61:91:64:14:FB:67:8C:BD:2D:64:C5:6A:7B:1D:7C:2F:43:6A:CC:19:A6:15:FC:D9:BC:58:FE:94:AE:5B:1A:48
    Fingerprint (SHA1):
        66:A0:EF:08:BE:A3:20:5E:EF:5F:4E:38:F5:59:07:A7:33:D2:A2:DB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11540: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11541: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161029 (0x1dee5e85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:14:44 2017
            Not After : Mon May 02 16:14:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:74:47:0d:a0:b1:ca:fa:a2:62:aa:f8:53:c0:9c:d0:
                    ed:46:da:f5:cd:f9:22:89:65:4b:7e:75:a1:b7:4d:94:
                    ae:d4:0f:53:97:f0:f1:c4:46:56:36:be:cf:b5:0e:24:
                    fb:f8:c3:80:1d:d0:a5:eb:90:34:03:4b:05:d9:4b:2c:
                    77:e5:c1:ed:d3:7e:68:78:da:23:bb:69:a9:be:c9:4f:
                    cd:3a:47:59:be:9f:82:94:63:3a:91:86:fb:9d:fd:a2:
                    41:d5:c9:4b:95:f2:9b:56:5f:88:45:51:02:38:51:11:
                    5f:cd:18:1f:e1:3f:75:43:a3:47:44:90:e8:79:8d:e6:
                    cc:ce:c4:f4:b5:33:e7:bc:db:f8:d7:20:db:74:ed:47:
                    28:4b:ae:40:0e:ca:b1:9c:3f:b8:99:a9:09:7a:0f:7c:
                    9a:78:46:d5:cf:43:90:a7:e1:bd:d3:31:a8:b1:5c:2b:
                    54:0e:1d:c1:21:91:d4:36:f9:3a:14:a8:99:44:19:d8:
                    06:64:d9:e6:74:b4:cc:24:a7:dd:ef:71:38:22:bb:dd:
                    e2:f4:1b:65:d8:55:77:02:2a:d3:56:d6:49:7a:a5:b0:
                    f6:af:99:da:49:c5:85:b7:bd:bf:f5:aa:f2:41:93:b5:
                    0c:01:39:ad:76:7c:11:8d:ad:c9:d5:97:9b:fe:43:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:5b:7a:cf:09:74:8e:09:e7:66:0a:76:26:4c:51:86:
        ce:e6:42:af:72:c3:de:72:01:14:85:83:d5:42:b8:37:
        4c:3d:77:b1:45:39:12:bb:e9:e1:7a:98:39:2c:eb:7a:
        95:3e:48:33:f0:82:1e:98:b0:63:76:cb:46:2d:bd:29:
        38:1b:a6:90:5a:de:d7:74:db:9a:d3:1c:66:bf:ba:af:
        45:69:4c:9a:e8:4a:c9:14:a5:ac:b8:19:57:27:d8:33:
        18:36:0c:53:86:5e:fa:94:a7:cf:09:e5:24:12:c1:e6:
        13:85:e7:f7:3d:38:a0:d7:3e:ac:5b:39:69:fb:13:99:
        da:9c:49:94:10:2f:ad:3d:df:d3:f7:80:a3:e8:88:12:
        55:fc:ac:52:03:61:c0:d3:e5:8a:f7:d4:1d:fc:50:0d:
        bc:36:4e:93:27:28:25:cf:5a:6e:20:75:e3:c6:45:1e:
        61:4b:59:13:b7:5a:aa:bc:51:71:24:c4:54:fe:a4:12:
        b2:4c:67:bc:fe:0f:e4:4c:87:c5:21:c2:f6:47:80:32:
        ba:f5:bd:41:b1:ee:29:70:f0:86:55:bc:7d:d6:90:02:
        40:6f:da:6c:be:36:3c:ca:d9:b1:d9:5e:7f:9d:1d:8c:
        f7:25:3d:ca:3f:31:52:76:d4:26:31:9a:db:52:18:cd
    Fingerprint (SHA-256):
        45:57:6E:01:F1:B0:44:85:0E:BF:3C:9E:24:30:5A:40:55:9C:3C:01:7E:10:2D:EA:37:4D:7E:51:86:77:1F:94
    Fingerprint (SHA1):
        38:A6:C4:45:EF:46:A8:9D:9F:76:02:23:B8:65:1F:BF:B4:9C:75:E2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11542: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11543: Extension2: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161027 (0x1dee5e83)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:41 2017
            Not After : Mon May 02 16:14:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:d0:17:73:6f:28:c4:e8:0b:12:34:37:4a:a9:9a:34:
                    b5:bb:25:8c:7b:2d:37:b3:6b:93:55:ae:d6:0d:c7:b1:
                    41:81:e7:14:60:6f:20:25:e5:4b:9f:62:a4:f0:c6:f6:
                    08:10:9f:f4:94:83:f1:c2:ee:ee:4f:64:c6:37:a0:94:
                    d8:0b:3a:d4:48:0e:34:0e:c4:49:5d:98:f1:68:24:e5:
                    fd:c2:84:07:b0:29:15:6f:d4:d0:ce:e5:eb:60:80:c9:
                    7a:21:7f:7a:24:db:21:63:ca:9e:36:5e:9e:e7:23:51:
                    21:6b:af:8e:a4:fa:90:e4:e5:36:1f:c9:24:95:3f:27:
                    52:a4:6c:79:3d:67:9f:b5:7c:64:5a:c1:c2:4c:cf:a3:
                    dc:10:d0:22:47:2c:ce:96:e5:6b:39:87:c5:66:dd:13:
                    b6:21:59:f3:3f:f9:23:f2:15:b6:f6:72:94:bf:e3:5f:
                    2a:0d:45:fd:0e:3d:6f:fe:fb:bd:52:a9:d4:45:a6:03:
                    ec:4b:44:bb:21:9b:79:10:cf:72:a6:12:6f:01:08:a4:
                    57:c5:2d:2c:76:18:c6:3f:8c:f9:6b:8a:df:d2:74:01:
                    7d:d3:4a:d6:32:27:2f:db:4d:16:5e:c6:11:6d:d0:7b:
                    84:ba:fa:fd:59:c2:94:26:08:d2:9b:f4:bd:24:91:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:fc:3c:d2:56:ff:69:6c:eb:e7:01:0c:8b:0c:84:6c:
        2b:ac:de:4f:1b:11:7e:ee:7d:b3:24:4e:43:7d:a9:5d:
        19:a7:a3:fc:15:f3:5d:eb:3c:b9:49:7e:d7:34:9d:e0:
        90:0a:d8:f9:a8:df:ae:f3:12:18:f0:86:5b:c6:d4:62:
        36:37:cd:f8:9d:6c:f8:1b:d3:11:4b:de:94:c4:4d:99:
        dd:bf:5b:11:0a:44:d2:0f:a3:ac:bb:37:16:85:22:0e:
        6e:98:10:1d:63:1c:1a:f5:7f:1b:38:8f:bb:cb:bd:d7:
        ca:56:03:7c:32:6d:c0:45:16:44:50:c1:d6:ea:74:8c:
        04:2a:52:c0:38:5b:6c:5c:4a:ca:b7:28:6b:a3:21:57:
        79:dc:14:f3:38:fc:0b:a8:56:0a:a8:21:c9:97:88:ea:
        5a:81:dd:2a:a5:2a:ea:7c:eb:0a:be:fa:ef:a7:03:1f:
        06:03:a1:76:30:93:6a:e0:57:c1:fe:93:35:13:21:6a:
        05:8f:f0:da:c9:65:a8:89:4c:d5:cf:81:ae:5b:66:0a:
        2b:fd:bb:29:8a:13:39:2b:aa:88:b5:5a:14:72:65:0b:
        97:c4:ef:0f:7a:e6:07:77:64:18:52:3a:83:74:f2:7e:
        07:57:80:29:76:42:d3:25:ec:81:e0:c2:08:13:9e:94
    Fingerprint (SHA-256):
        CB:0F:99:CC:CC:F3:24:F1:08:72:D4:48:F3:4A:F7:04:48:97:5F:9F:86:1E:47:59:4B:01:22:47:96:B5:BD:92
    Fingerprint (SHA1):
        E7:12:63:29:4B:04:FF:49:4D:CF:4D:EE:D6:76:C5:F6:7F:7A:3E:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11544: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161027 (0x1dee5e83)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:41 2017
            Not After : Mon May 02 16:14:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bb:d0:17:73:6f:28:c4:e8:0b:12:34:37:4a:a9:9a:34:
                    b5:bb:25:8c:7b:2d:37:b3:6b:93:55:ae:d6:0d:c7:b1:
                    41:81:e7:14:60:6f:20:25:e5:4b:9f:62:a4:f0:c6:f6:
                    08:10:9f:f4:94:83:f1:c2:ee:ee:4f:64:c6:37:a0:94:
                    d8:0b:3a:d4:48:0e:34:0e:c4:49:5d:98:f1:68:24:e5:
                    fd:c2:84:07:b0:29:15:6f:d4:d0:ce:e5:eb:60:80:c9:
                    7a:21:7f:7a:24:db:21:63:ca:9e:36:5e:9e:e7:23:51:
                    21:6b:af:8e:a4:fa:90:e4:e5:36:1f:c9:24:95:3f:27:
                    52:a4:6c:79:3d:67:9f:b5:7c:64:5a:c1:c2:4c:cf:a3:
                    dc:10:d0:22:47:2c:ce:96:e5:6b:39:87:c5:66:dd:13:
                    b6:21:59:f3:3f:f9:23:f2:15:b6:f6:72:94:bf:e3:5f:
                    2a:0d:45:fd:0e:3d:6f:fe:fb:bd:52:a9:d4:45:a6:03:
                    ec:4b:44:bb:21:9b:79:10:cf:72:a6:12:6f:01:08:a4:
                    57:c5:2d:2c:76:18:c6:3f:8c:f9:6b:8a:df:d2:74:01:
                    7d:d3:4a:d6:32:27:2f:db:4d:16:5e:c6:11:6d:d0:7b:
                    84:ba:fa:fd:59:c2:94:26:08:d2:9b:f4:bd:24:91:8b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        8b:fc:3c:d2:56:ff:69:6c:eb:e7:01:0c:8b:0c:84:6c:
        2b:ac:de:4f:1b:11:7e:ee:7d:b3:24:4e:43:7d:a9:5d:
        19:a7:a3:fc:15:f3:5d:eb:3c:b9:49:7e:d7:34:9d:e0:
        90:0a:d8:f9:a8:df:ae:f3:12:18:f0:86:5b:c6:d4:62:
        36:37:cd:f8:9d:6c:f8:1b:d3:11:4b:de:94:c4:4d:99:
        dd:bf:5b:11:0a:44:d2:0f:a3:ac:bb:37:16:85:22:0e:
        6e:98:10:1d:63:1c:1a:f5:7f:1b:38:8f:bb:cb:bd:d7:
        ca:56:03:7c:32:6d:c0:45:16:44:50:c1:d6:ea:74:8c:
        04:2a:52:c0:38:5b:6c:5c:4a:ca:b7:28:6b:a3:21:57:
        79:dc:14:f3:38:fc:0b:a8:56:0a:a8:21:c9:97:88:ea:
        5a:81:dd:2a:a5:2a:ea:7c:eb:0a:be:fa:ef:a7:03:1f:
        06:03:a1:76:30:93:6a:e0:57:c1:fe:93:35:13:21:6a:
        05:8f:f0:da:c9:65:a8:89:4c:d5:cf:81:ae:5b:66:0a:
        2b:fd:bb:29:8a:13:39:2b:aa:88:b5:5a:14:72:65:0b:
        97:c4:ef:0f:7a:e6:07:77:64:18:52:3a:83:74:f2:7e:
        07:57:80:29:76:42:d3:25:ec:81:e0:c2:08:13:9e:94
    Fingerprint (SHA-256):
        CB:0F:99:CC:CC:F3:24:F1:08:72:D4:48:F3:4A:F7:04:48:97:5F:9F:86:1E:47:59:4B:01:22:47:96:B5:BD:92
    Fingerprint (SHA1):
        E7:12:63:29:4B:04:FF:49:4D:CF:4D:EE:D6:76:C5:F6:7F:7A:3E:2F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11545: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161028 (0x1dee5e84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:43 2017
            Not After : Mon May 02 16:14:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:e4:75:33:52:11:02:25:00:3a:49:09:eb:16:81:2d:
                    2d:72:19:9a:36:73:ec:23:f1:9a:e3:4c:37:54:d4:e5:
                    9c:05:bc:c3:55:1c:e9:0f:83:7e:fc:d8:ab:b8:52:b8:
                    6e:63:67:15:2d:d6:5c:71:35:17:e2:75:1a:c8:65:3f:
                    29:0b:d2:49:ca:91:72:45:20:6e:5c:58:57:0e:de:df:
                    6f:e1:c4:60:05:4b:77:6c:50:19:13:1a:73:9e:8e:f7:
                    14:42:33:9c:0e:bc:71:f9:c8:f2:e7:82:13:dc:90:7c:
                    07:b8:4f:f6:d6:23:59:29:76:3c:10:b4:fa:bc:58:2d:
                    aa:16:dc:7e:33:ee:cf:51:18:b0:67:f6:eb:e5:64:3f:
                    00:71:98:0e:4e:e5:b4:f6:b8:6c:d2:0a:9b:fa:2c:2d:
                    a2:f8:9d:94:60:49:e1:5c:19:d9:12:fb:ea:83:1c:b7:
                    0f:35:31:4d:fc:0e:23:af:f1:cd:e0:f2:9e:df:f7:f0:
                    90:74:01:68:74:72:fe:cf:cc:0c:96:3b:73:8a:f6:fd:
                    6b:ca:63:ec:e2:19:5c:15:45:0e:f6:2a:f7:8f:5e:f2:
                    88:7f:6a:a6:9f:de:72:28:bd:b4:5b:57:c2:5a:a2:f5:
                    ec:41:94:02:4d:d0:ac:41:db:fd:1a:40:e7:c3:ac:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:5b:da:d3:1f:20:2f:a1:90:b0:f2:b7:e3:b0:b3:e3:
        6c:27:a3:d1:92:32:48:0d:c8:2b:93:8a:73:2a:51:9c:
        5e:8f:a4:ba:5e:d3:c5:76:b1:74:ca:9d:cf:da:42:46:
        f9:51:f2:cb:e3:5e:56:7e:77:57:45:c8:60:41:17:35:
        37:2d:9a:e7:0a:c3:07:1c:06:0e:05:d8:0e:44:87:3c:
        2f:f5:e2:96:7b:ab:f0:ec:59:3f:6b:ac:6f:23:a0:61:
        fc:9d:c2:2a:4c:5f:b1:43:b8:bd:e6:53:4d:86:31:c6:
        61:ce:28:a6:b4:e9:a2:08:f6:f4:d6:67:96:d9:25:fe:
        d0:50:3a:32:12:03:60:8e:25:aa:19:39:a3:ef:c5:c4:
        67:be:b0:b0:15:ec:f2:df:bc:4c:65:95:a4:ac:25:64:
        e0:0d:54:d2:b1:ff:7e:09:45:1f:db:02:3d:58:cd:82:
        71:f4:8a:20:04:92:2a:4e:6c:21:8b:d7:46:ab:ef:d8:
        26:bb:d1:3d:19:10:5e:b6:14:d0:42:d0:1c:ab:b1:10:
        81:0c:d6:e1:3a:20:ac:16:65:2e:df:48:1a:0a:75:d5:
        2a:36:6a:6e:4b:78:ae:68:ef:54:b0:b2:b7:20:b9:41:
        fd:27:71:d8:fa:38:ef:5d:3f:38:3e:cc:b7:78:80:d4
    Fingerprint (SHA-256):
        61:91:64:14:FB:67:8C:BD:2D:64:C5:6A:7B:1D:7C:2F:43:6A:CC:19:A6:15:FC:D9:BC:58:FE:94:AE:5B:1A:48
    Fingerprint (SHA1):
        66:A0:EF:08:BE:A3:20:5E:EF:5F:4E:38:F5:59:07:A7:33:D2:A2:DB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11546: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161028 (0x1dee5e84)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:14:43 2017
            Not After : Mon May 02 16:14:43 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a4:e4:75:33:52:11:02:25:00:3a:49:09:eb:16:81:2d:
                    2d:72:19:9a:36:73:ec:23:f1:9a:e3:4c:37:54:d4:e5:
                    9c:05:bc:c3:55:1c:e9:0f:83:7e:fc:d8:ab:b8:52:b8:
                    6e:63:67:15:2d:d6:5c:71:35:17:e2:75:1a:c8:65:3f:
                    29:0b:d2:49:ca:91:72:45:20:6e:5c:58:57:0e:de:df:
                    6f:e1:c4:60:05:4b:77:6c:50:19:13:1a:73:9e:8e:f7:
                    14:42:33:9c:0e:bc:71:f9:c8:f2:e7:82:13:dc:90:7c:
                    07:b8:4f:f6:d6:23:59:29:76:3c:10:b4:fa:bc:58:2d:
                    aa:16:dc:7e:33:ee:cf:51:18:b0:67:f6:eb:e5:64:3f:
                    00:71:98:0e:4e:e5:b4:f6:b8:6c:d2:0a:9b:fa:2c:2d:
                    a2:f8:9d:94:60:49:e1:5c:19:d9:12:fb:ea:83:1c:b7:
                    0f:35:31:4d:fc:0e:23:af:f1:cd:e0:f2:9e:df:f7:f0:
                    90:74:01:68:74:72:fe:cf:cc:0c:96:3b:73:8a:f6:fd:
                    6b:ca:63:ec:e2:19:5c:15:45:0e:f6:2a:f7:8f:5e:f2:
                    88:7f:6a:a6:9f:de:72:28:bd:b4:5b:57:c2:5a:a2:f5:
                    ec:41:94:02:4d:d0:ac:41:db:fd:1a:40:e7:c3:ac:8d
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        68:5b:da:d3:1f:20:2f:a1:90:b0:f2:b7:e3:b0:b3:e3:
        6c:27:a3:d1:92:32:48:0d:c8:2b:93:8a:73:2a:51:9c:
        5e:8f:a4:ba:5e:d3:c5:76:b1:74:ca:9d:cf:da:42:46:
        f9:51:f2:cb:e3:5e:56:7e:77:57:45:c8:60:41:17:35:
        37:2d:9a:e7:0a:c3:07:1c:06:0e:05:d8:0e:44:87:3c:
        2f:f5:e2:96:7b:ab:f0:ec:59:3f:6b:ac:6f:23:a0:61:
        fc:9d:c2:2a:4c:5f:b1:43:b8:bd:e6:53:4d:86:31:c6:
        61:ce:28:a6:b4:e9:a2:08:f6:f4:d6:67:96:d9:25:fe:
        d0:50:3a:32:12:03:60:8e:25:aa:19:39:a3:ef:c5:c4:
        67:be:b0:b0:15:ec:f2:df:bc:4c:65:95:a4:ac:25:64:
        e0:0d:54:d2:b1:ff:7e:09:45:1f:db:02:3d:58:cd:82:
        71:f4:8a:20:04:92:2a:4e:6c:21:8b:d7:46:ab:ef:d8:
        26:bb:d1:3d:19:10:5e:b6:14:d0:42:d0:1c:ab:b1:10:
        81:0c:d6:e1:3a:20:ac:16:65:2e:df:48:1a:0a:75:d5:
        2a:36:6a:6e:4b:78:ae:68:ef:54:b0:b2:b7:20:b9:41:
        fd:27:71:d8:fa:38:ef:5d:3f:38:3e:cc:b7:78:80:d4
    Fingerprint (SHA-256):
        61:91:64:14:FB:67:8C:BD:2D:64:C5:6A:7B:1D:7C:2F:43:6A:CC:19:A6:15:FC:D9:BC:58:FE:94:AE:5B:1A:48
    Fingerprint (SHA1):
        66:A0:EF:08:BE:A3:20:5E:EF:5F:4E:38:F5:59:07:A7:33:D2:A2:DB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11547: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161029 (0x1dee5e85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:14:44 2017
            Not After : Mon May 02 16:14:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:74:47:0d:a0:b1:ca:fa:a2:62:aa:f8:53:c0:9c:d0:
                    ed:46:da:f5:cd:f9:22:89:65:4b:7e:75:a1:b7:4d:94:
                    ae:d4:0f:53:97:f0:f1:c4:46:56:36:be:cf:b5:0e:24:
                    fb:f8:c3:80:1d:d0:a5:eb:90:34:03:4b:05:d9:4b:2c:
                    77:e5:c1:ed:d3:7e:68:78:da:23:bb:69:a9:be:c9:4f:
                    cd:3a:47:59:be:9f:82:94:63:3a:91:86:fb:9d:fd:a2:
                    41:d5:c9:4b:95:f2:9b:56:5f:88:45:51:02:38:51:11:
                    5f:cd:18:1f:e1:3f:75:43:a3:47:44:90:e8:79:8d:e6:
                    cc:ce:c4:f4:b5:33:e7:bc:db:f8:d7:20:db:74:ed:47:
                    28:4b:ae:40:0e:ca:b1:9c:3f:b8:99:a9:09:7a:0f:7c:
                    9a:78:46:d5:cf:43:90:a7:e1:bd:d3:31:a8:b1:5c:2b:
                    54:0e:1d:c1:21:91:d4:36:f9:3a:14:a8:99:44:19:d8:
                    06:64:d9:e6:74:b4:cc:24:a7:dd:ef:71:38:22:bb:dd:
                    e2:f4:1b:65:d8:55:77:02:2a:d3:56:d6:49:7a:a5:b0:
                    f6:af:99:da:49:c5:85:b7:bd:bf:f5:aa:f2:41:93:b5:
                    0c:01:39:ad:76:7c:11:8d:ad:c9:d5:97:9b:fe:43:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: OID.2.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:5b:7a:cf:09:74:8e:09:e7:66:0a:76:26:4c:51:86:
        ce:e6:42:af:72:c3:de:72:01:14:85:83:d5:42:b8:37:
        4c:3d:77:b1:45:39:12:bb:e9:e1:7a:98:39:2c:eb:7a:
        95:3e:48:33:f0:82:1e:98:b0:63:76:cb:46:2d:bd:29:
        38:1b:a6:90:5a:de:d7:74:db:9a:d3:1c:66:bf:ba:af:
        45:69:4c:9a:e8:4a:c9:14:a5:ac:b8:19:57:27:d8:33:
        18:36:0c:53:86:5e:fa:94:a7:cf:09:e5:24:12:c1:e6:
        13:85:e7:f7:3d:38:a0:d7:3e:ac:5b:39:69:fb:13:99:
        da:9c:49:94:10:2f:ad:3d:df:d3:f7:80:a3:e8:88:12:
        55:fc:ac:52:03:61:c0:d3:e5:8a:f7:d4:1d:fc:50:0d:
        bc:36:4e:93:27:28:25:cf:5a:6e:20:75:e3:c6:45:1e:
        61:4b:59:13:b7:5a:aa:bc:51:71:24:c4:54:fe:a4:12:
        b2:4c:67:bc:fe:0f:e4:4c:87:c5:21:c2:f6:47:80:32:
        ba:f5:bd:41:b1:ee:29:70:f0:86:55:bc:7d:d6:90:02:
        40:6f:da:6c:be:36:3c:ca:d9:b1:d9:5e:7f:9d:1d:8c:
        f7:25:3d:ca:3f:31:52:76:d4:26:31:9a:db:52:18:cd
    Fingerprint (SHA-256):
        45:57:6E:01:F1:B0:44:85:0E:BF:3C:9E:24:30:5A:40:55:9C:3C:01:7E:10:2D:EA:37:4D:7E:51:86:77:1F:94
    Fingerprint (SHA1):
        38:A6:C4:45:EF:46:A8:9D:9F:76:02:23:B8:65:1F:BF:B4:9C:75:E2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11548: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161029 (0x1dee5e85)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:14:44 2017
            Not After : Mon May 02 16:14:44 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    db:74:47:0d:a0:b1:ca:fa:a2:62:aa:f8:53:c0:9c:d0:
                    ed:46:da:f5:cd:f9:22:89:65:4b:7e:75:a1:b7:4d:94:
                    ae:d4:0f:53:97:f0:f1:c4:46:56:36:be:cf:b5:0e:24:
                    fb:f8:c3:80:1d:d0:a5:eb:90:34:03:4b:05:d9:4b:2c:
                    77:e5:c1:ed:d3:7e:68:78:da:23:bb:69:a9:be:c9:4f:
                    cd:3a:47:59:be:9f:82:94:63:3a:91:86:fb:9d:fd:a2:
                    41:d5:c9:4b:95:f2:9b:56:5f:88:45:51:02:38:51:11:
                    5f:cd:18:1f:e1:3f:75:43:a3:47:44:90:e8:79:8d:e6:
                    cc:ce:c4:f4:b5:33:e7:bc:db:f8:d7:20:db:74:ed:47:
                    28:4b:ae:40:0e:ca:b1:9c:3f:b8:99:a9:09:7a:0f:7c:
                    9a:78:46:d5:cf:43:90:a7:e1:bd:d3:31:a8:b1:5c:2b:
                    54:0e:1d:c1:21:91:d4:36:f9:3a:14:a8:99:44:19:d8:
                    06:64:d9:e6:74:b4:cc:24:a7:dd:ef:71:38:22:bb:dd:
                    e2:f4:1b:65:d8:55:77:02:2a:d3:56:d6:49:7a:a5:b0:
                    f6:af:99:da:49:c5:85:b7:bd:bf:f5:aa:f2:41:93:b5:
                    0c:01:39:ad:76:7c:11:8d:ad:c9:d5:97:9b:fe:43:07
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        14:5b:7a:cf:09:74:8e:09:e7:66:0a:76:26:4c:51:86:
        ce:e6:42:af:72:c3:de:72:01:14:85:83:d5:42:b8:37:
        4c:3d:77:b1:45:39:12:bb:e9:e1:7a:98:39:2c:eb:7a:
        95:3e:48:33:f0:82:1e:98:b0:63:76:cb:46:2d:bd:29:
        38:1b:a6:90:5a:de:d7:74:db:9a:d3:1c:66:bf:ba:af:
        45:69:4c:9a:e8:4a:c9:14:a5:ac:b8:19:57:27:d8:33:
        18:36:0c:53:86:5e:fa:94:a7:cf:09:e5:24:12:c1:e6:
        13:85:e7:f7:3d:38:a0:d7:3e:ac:5b:39:69:fb:13:99:
        da:9c:49:94:10:2f:ad:3d:df:d3:f7:80:a3:e8:88:12:
        55:fc:ac:52:03:61:c0:d3:e5:8a:f7:d4:1d:fc:50:0d:
        bc:36:4e:93:27:28:25:cf:5a:6e:20:75:e3:c6:45:1e:
        61:4b:59:13:b7:5a:aa:bc:51:71:24:c4:54:fe:a4:12:
        b2:4c:67:bc:fe:0f:e4:4c:87:c5:21:c2:f6:47:80:32:
        ba:f5:bd:41:b1:ee:29:70:f0:86:55:bc:7d:d6:90:02:
        40:6f:da:6c:be:36:3c:ca:d9:b1:d9:5e:7f:9d:1d:8c:
        f7:25:3d:ca:3f:31:52:76:d4:26:31:9a:db:52:18:cd
    Fingerprint (SHA-256):
        45:57:6E:01:F1:B0:44:85:0E:BF:3C:9E:24:30:5A:40:55:9C:3C:01:7E:10:2D:EA:37:4D:7E:51:86:77:1F:94
    Fingerprint (SHA1):
        38:A6:C4:45:EF:46:A8:9D:9F:76:02:23:B8:65:1F:BF:B4:9C:75:E2
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User2 EE,O=User2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11549: Extension2: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t CA2 - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11550: AnyPolicy: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161032 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11551: AnyPolicy: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11552: AnyPolicy: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11553: AnyPolicy: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11554: AnyPolicy: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502161033   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11555: AnyPolicy: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11556: AnyPolicy: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11557: AnyPolicy: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11558: AnyPolicy: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502161034   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
0
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11559: AnyPolicy: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11560: AnyPolicy: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11561: AnyPolicy: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11562: AnyPolicy: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA3Req.der -o CA3CA1.der -f CA1DB/dbpasswd -m 502161035   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11563: AnyPolicy: Creating certficate CA3CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA3CA1.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11564: AnyPolicy: Importing certificate CA3CA1.der to CA3DB database  - PASSED
chains.sh: Creating DB User1DB
certutil -N -d User1DB -f User1DB/dbpasswd
chains.sh: #11565: AnyPolicy: Creating DB User1DB  - PASSED
chains.sh: Creating EE certifiate request User1Req.der
certutil -s "CN=User1 EE, O=User1, C=US"  -R  -d User1DB -f User1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11566: AnyPolicy: Creating EE certifiate request User1Req.der  - PASSED
chains.sh: Creating certficate User1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User1Req.der -o User1CA2.der -f CA2DB/dbpasswd -m 502161036   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11567: AnyPolicy: Creating certficate User1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User1CA2.der to User1DB database
certutil -A -n User1 -t u,u,u -d User1DB -f User1DB/dbpasswd -i User1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11568: AnyPolicy: Importing certificate User1CA2.der to User1DB database  - PASSED
chains.sh: Creating DB User2DB
certutil -N -d User2DB -f User2DB/dbpasswd
chains.sh: #11569: AnyPolicy: Creating DB User2DB  - PASSED
chains.sh: Creating EE certifiate request User2Req.der
certutil -s "CN=User2 EE, O=User2, C=US"  -R  -d User2DB -f User2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11570: AnyPolicy: Creating EE certifiate request User2Req.der  - PASSED
chains.sh: Creating certficate User2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i User2Req.der -o User2CA2.der -f CA2DB/dbpasswd -m 502161037   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11571: AnyPolicy: Creating certficate User2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate User2CA2.der to User2DB database
certutil -A -n User2 -t u,u,u -d User2DB -f User2DB/dbpasswd -i User2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11572: AnyPolicy: Importing certificate User2CA2.der to User2DB database  - PASSED
chains.sh: Creating DB User3DB
certutil -N -d User3DB -f User3DB/dbpasswd
chains.sh: #11573: AnyPolicy: Creating DB User3DB  - PASSED
chains.sh: Creating EE certifiate request User3Req.der
certutil -s "CN=User3 EE, O=User3, C=US"  -R  -d User3DB -f User3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o User3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11574: AnyPolicy: Creating EE certifiate request User3Req.der  - PASSED
chains.sh: Creating certficate User3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i User3Req.der -o User3CA3.der -f CA3DB/dbpasswd -m 502161038   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11575: AnyPolicy: Creating certficate User3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate User3CA3.der to User3DB database
certutil -A -n User3 -t u,u,u -d User3DB -f User3DB/dbpasswd -i User3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11576: AnyPolicy: Importing certificate User3CA3.der to User3DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11577: AnyPolicy: Creating DB AllDB  - PASSED
chains.sh: Importing certificate RootCA.der to AllDB database
certutil -A -n RootCA  -t "" -d AllDB -f AllDB/dbpasswd -i RootCA.der
chains.sh: #11578: AnyPolicy: Importing certificate RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1RootCA.der
chains.sh: #11579: AnyPolicy: Importing certificate CA1RootCA.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11580: AnyPolicy: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA1.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA1.der
chains.sh: #11581: AnyPolicy: Importing certificate CA3CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User1CA2.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161032 (0x1dee5e88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:14:53 2017
            Not After : Mon May 02 16:14:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:99:0f:f5:be:39:b9:89:6e:4a:e0:3c:e1:41:d1:80:
                    97:01:90:55:9a:b5:78:02:9f:3e:8a:9c:e7:95:d2:3f:
                    d3:a4:7d:db:72:50:f0:f3:4f:69:22:c1:ec:b3:6d:a8:
                    5a:7a:e2:d3:6f:4c:59:59:1f:e9:b2:e9:7a:5f:52:17:
                    96:7b:93:92:45:b0:e9:e4:c8:33:63:79:94:d5:f4:68:
                    fb:30:a9:f9:4c:ac:a3:93:d1:a3:0d:36:40:da:75:2b:
                    63:45:92:65:9d:10:18:03:e5:c9:ef:5f:11:d5:13:06:
                    54:e8:b9:f5:f3:d3:b1:29:63:29:0e:ac:fc:96:da:15:
                    81:76:31:44:d8:8f:eb:5c:36:11:e3:88:bb:bf:60:7d:
                    f5:ea:43:2d:79:62:6f:3d:06:f9:c0:04:fe:75:95:a7:
                    f9:32:76:7e:e6:fd:23:83:45:c9:ad:07:c2:98:96:20:
                    2b:63:16:31:c4:78:e9:01:0a:a1:3b:19:55:41:9d:4b:
                    db:6c:35:ec:6e:c9:ca:b0:86:78:d7:63:fe:d2:18:2d:
                    01:17:96:90:e5:47:b5:36:b2:e2:07:e2:ae:c8:95:5a:
                    28:32:c5:48:73:5a:82:dc:f9:62:24:25:25:23:41:19:
                    ec:a9:07:7f:62:4f:00:b3:b5:37:5f:cd:dc:4e:93:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:1d:57:0e:e2:e5:51:f1:0a:87:18:26:8c:9a:7e:2f:
        53:e0:1f:96:b7:d5:00:2d:be:02:cf:17:ca:00:a1:9e:
        86:c6:f3:df:82:7a:4e:35:cb:0d:c4:82:0f:57:3c:6e:
        19:ec:05:7b:5c:94:00:2a:bc:df:f8:35:0b:c6:8a:1d:
        35:39:34:51:56:58:40:4c:f9:ef:15:7d:ba:05:eb:dd:
        7a:ea:a1:0f:21:4e:07:52:69:6c:77:d6:39:85:27:f0:
        ca:5e:48:5b:23:b1:11:19:55:42:ef:be:c9:03:a1:2a:
        52:95:44:11:44:b1:61:74:fe:42:1b:47:47:cf:9c:00:
        c3:5f:7c:ce:17:92:9e:4b:24:89:c9:88:cd:40:bf:05:
        71:d6:13:43:d6:fe:6f:68:39:be:72:3a:17:45:bc:0f:
        04:01:42:55:15:6d:41:6b:95:f9:57:b4:06:0a:a8:6a:
        ae:fc:9d:0c:4d:39:f3:8b:ce:3c:19:46:12:ff:d9:30:
        c6:5a:d8:08:8c:4a:f5:00:8e:29:f5:91:e9:e1:fd:c2:
        e9:3f:c8:7a:b0:a7:6a:6b:a5:54:7f:78:bd:eb:86:79:
        12:d9:26:c9:01:6c:5f:5a:ab:26:9c:7e:76:14:21:3c:
        5b:07:92:b7:ee:0e:db:8c:b1:53:89:e9:2a:2e:a3:54
    Fingerprint (SHA-256):
        C0:4F:F2:53:FC:8A:94:81:57:89:E1:2E:5B:22:0F:8C:E8:F2:E1:6B:D6:1D:17:63:F5:1B:4B:3B:B1:80:06:F6
    Fingerprint (SHA1):
        97:C6:C7:30:6B:02:8F:E2:70:8D:D1:6B:38:D0:9B:42:50:10:5C:F1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User1 EE,O=User1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11582: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User1CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11583: AnyPolicy: Verifying certificate(s)  User1CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11584: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User2CA2.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11585: AnyPolicy: Verifying certificate(s)  User2CA2.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.1.0  User3CA3.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161032 (0x1dee5e88)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:14:53 2017
            Not After : Mon May 02 16:14:53 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:99:0f:f5:be:39:b9:89:6e:4a:e0:3c:e1:41:d1:80:
                    97:01:90:55:9a:b5:78:02:9f:3e:8a:9c:e7:95:d2:3f:
                    d3:a4:7d:db:72:50:f0:f3:4f:69:22:c1:ec:b3:6d:a8:
                    5a:7a:e2:d3:6f:4c:59:59:1f:e9:b2:e9:7a:5f:52:17:
                    96:7b:93:92:45:b0:e9:e4:c8:33:63:79:94:d5:f4:68:
                    fb:30:a9:f9:4c:ac:a3:93:d1:a3:0d:36:40:da:75:2b:
                    63:45:92:65:9d:10:18:03:e5:c9:ef:5f:11:d5:13:06:
                    54:e8:b9:f5:f3:d3:b1:29:63:29:0e:ac:fc:96:da:15:
                    81:76:31:44:d8:8f:eb:5c:36:11:e3:88:bb:bf:60:7d:
                    f5:ea:43:2d:79:62:6f:3d:06:f9:c0:04:fe:75:95:a7:
                    f9:32:76:7e:e6:fd:23:83:45:c9:ad:07:c2:98:96:20:
                    2b:63:16:31:c4:78:e9:01:0a:a1:3b:19:55:41:9d:4b:
                    db:6c:35:ec:6e:c9:ca:b0:86:78:d7:63:fe:d2:18:2d:
                    01:17:96:90:e5:47:b5:36:b2:e2:07:e2:ae:c8:95:5a:
                    28:32:c5:48:73:5a:82:dc:f9:62:24:25:25:23:41:19:
                    ec:a9:07:7f:62:4f:00:b3:b5:37:5f:cd:dc:4e:93:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        49:1d:57:0e:e2:e5:51:f1:0a:87:18:26:8c:9a:7e:2f:
        53:e0:1f:96:b7:d5:00:2d:be:02:cf:17:ca:00:a1:9e:
        86:c6:f3:df:82:7a:4e:35:cb:0d:c4:82:0f:57:3c:6e:
        19:ec:05:7b:5c:94:00:2a:bc:df:f8:35:0b:c6:8a:1d:
        35:39:34:51:56:58:40:4c:f9:ef:15:7d:ba:05:eb:dd:
        7a:ea:a1:0f:21:4e:07:52:69:6c:77:d6:39:85:27:f0:
        ca:5e:48:5b:23:b1:11:19:55:42:ef:be:c9:03:a1:2a:
        52:95:44:11:44:b1:61:74:fe:42:1b:47:47:cf:9c:00:
        c3:5f:7c:ce:17:92:9e:4b:24:89:c9:88:cd:40:bf:05:
        71:d6:13:43:d6:fe:6f:68:39:be:72:3a:17:45:bc:0f:
        04:01:42:55:15:6d:41:6b:95:f9:57:b4:06:0a:a8:6a:
        ae:fc:9d:0c:4d:39:f3:8b:ce:3c:19:46:12:ff:d9:30:
        c6:5a:d8:08:8c:4a:f5:00:8e:29:f5:91:e9:e1:fd:c2:
        e9:3f:c8:7a:b0:a7:6a:6b:a5:54:7f:78:bd:eb:86:79:
        12:d9:26:c9:01:6c:5f:5a:ab:26:9c:7e:76:14:21:3c:
        5b:07:92:b7:ee:0e:db:8c:b1:53:89:e9:2a:2e:a3:54
    Fingerprint (SHA-256):
        C0:4F:F2:53:FC:8A:94:81:57:89:E1:2E:5B:22:0F:8C:E8:F2:E1:6B:D6:1D:17:63:F5:1B:4B:3B:B1:80:06:F6
    Fingerprint (SHA1):
        97:C6:C7:30:6B:02:8F:E2:70:8D:D1:6B:38:D0:9B:42:50:10:5C:F1
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User3 EE,O=User3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11586: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA - PASSED
chains.sh: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA
vfychain -d AllDB -pp -vv      -o OID.2.0  User3CA3.der  -t RootCA
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. RootCA [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11587: AnyPolicy: Verifying certificate(s)  User3CA3.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #11588: AnyPolicyWithLevel: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161039 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11589: AnyPolicyWithLevel: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #11590: AnyPolicyWithLevel: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11591: AnyPolicyWithLevel: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11592: AnyPolicyWithLevel: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502161040   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11593: AnyPolicyWithLevel: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11594: AnyPolicyWithLevel: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA12DB
certutil -N -d CA12DB -f CA12DB/dbpasswd
chains.sh: #11595: AnyPolicyWithLevel: Creating DB CA12DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA12Req.der
certutil -s "CN=CA12 Intermediate, O=CA12, C=US"  -R -2 -d CA12DB -f CA12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11596: AnyPolicyWithLevel: Creating Intermediate certifiate request CA12Req.der  - PASSED
chains.sh: Creating certficate CA12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA12Req.der -o CA12CA1.der -f CA1DB/dbpasswd -m 502161041   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11597: AnyPolicyWithLevel: Creating certficate CA12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA12CA1.der to CA12DB database
certutil -A -n CA12 -t u,u,u -d CA12DB -f CA12DB/dbpasswd -i CA12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11598: AnyPolicyWithLevel: Importing certificate CA12CA1.der to CA12DB database  - PASSED
chains.sh: Creating DB CA13DB
certutil -N -d CA13DB -f CA13DB/dbpasswd
chains.sh: #11599: AnyPolicyWithLevel: Creating DB CA13DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA13Req.der
certutil -s "CN=CA13 Intermediate, O=CA13, C=US"  -R -2 -d CA13DB -f CA13DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA13Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11600: AnyPolicyWithLevel: Creating Intermediate certifiate request CA13Req.der  - PASSED
chains.sh: Creating certficate CA13CA12.der signed by CA12
certutil -C -c CA12 -v 60 -d CA12DB -i CA13Req.der -o CA13CA12.der -f CA12DB/dbpasswd -m 502161042   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11601: AnyPolicyWithLevel: Creating certficate CA13CA12.der signed by CA12  - PASSED
chains.sh: Importing certificate CA13CA12.der to CA13DB database
certutil -A -n CA13 -t u,u,u -d CA13DB -f CA13DB/dbpasswd -i CA13CA12.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11602: AnyPolicyWithLevel: Importing certificate CA13CA12.der to CA13DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11603: AnyPolicyWithLevel: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11604: AnyPolicyWithLevel: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA13.der signed by CA13
certutil -C -c CA13 -v 60 -d CA13DB -i EE1Req.der -o EE1CA13.der -f CA13DB/dbpasswd -m 502161043   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11605: AnyPolicyWithLevel: Creating certficate EE1CA13.der signed by CA13  - PASSED
chains.sh: Importing certificate EE1CA13.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA13.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11606: AnyPolicyWithLevel: Importing certificate EE1CA13.der to EE1DB database  - PASSED
chains.sh: Creating DB CA22DB
certutil -N -d CA22DB -f CA22DB/dbpasswd
chains.sh: #11607: AnyPolicyWithLevel: Creating DB CA22DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA22Req.der
certutil -s "CN=CA22 Intermediate, O=CA22, C=US"  -R -2 -d CA22DB -f CA22DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA22Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11608: AnyPolicyWithLevel: Creating Intermediate certifiate request CA22Req.der  - PASSED
chains.sh: Creating certficate CA22CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA22Req.der -o CA22CA1.der -f CA1DB/dbpasswd -m 502161044   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11609: AnyPolicyWithLevel: Creating certficate CA22CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA22CA1.der to CA22DB database
certutil -A -n CA22 -t u,u,u -d CA22DB -f CA22DB/dbpasswd -i CA22CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11610: AnyPolicyWithLevel: Importing certificate CA22CA1.der to CA22DB database  - PASSED
chains.sh: Creating DB CA23DB
certutil -N -d CA23DB -f CA23DB/dbpasswd
chains.sh: #11611: AnyPolicyWithLevel: Creating DB CA23DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA23Req.der
certutil -s "CN=CA23 Intermediate, O=CA23, C=US"  -R -2 -d CA23DB -f CA23DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA23Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11612: AnyPolicyWithLevel: Creating Intermediate certifiate request CA23Req.der  - PASSED
chains.sh: Creating certficate CA23CA22.der signed by CA22
certutil -C -c CA22 -v 60 -d CA22DB -i CA23Req.der -o CA23CA22.der -f CA22DB/dbpasswd -m 502161045   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11613: AnyPolicyWithLevel: Creating certficate CA23CA22.der signed by CA22  - PASSED
chains.sh: Importing certificate CA23CA22.der to CA23DB database
certutil -A -n CA23 -t u,u,u -d CA23DB -f CA23DB/dbpasswd -i CA23CA22.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11614: AnyPolicyWithLevel: Importing certificate CA23CA22.der to CA23DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11615: AnyPolicyWithLevel: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11616: AnyPolicyWithLevel: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA23.der signed by CA23
certutil -C -c CA23 -v 60 -d CA23DB -i EE2Req.der -o EE2CA23.der -f CA23DB/dbpasswd -m 502161046   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11617: AnyPolicyWithLevel: Creating certficate EE2CA23.der signed by CA23  - PASSED
chains.sh: Importing certificate EE2CA23.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA23.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11618: AnyPolicyWithLevel: Importing certificate EE2CA23.der to EE2DB database  - PASSED
chains.sh: Creating DB CA32DB
certutil -N -d CA32DB -f CA32DB/dbpasswd
chains.sh: #11619: AnyPolicyWithLevel: Creating DB CA32DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA32Req.der
certutil -s "CN=CA32 Intermediate, O=CA32, C=US"  -R -2 -d CA32DB -f CA32DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA32Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11620: AnyPolicyWithLevel: Creating Intermediate certifiate request CA32Req.der  - PASSED
chains.sh: Creating certficate CA32CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA32Req.der -o CA32CA1.der -f CA1DB/dbpasswd -m 502161047   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
1
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11621: AnyPolicyWithLevel: Creating certficate CA32CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA32CA1.der to CA32DB database
certutil -A -n CA32 -t u,u,u -d CA32DB -f CA32DB/dbpasswd -i CA32CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11622: AnyPolicyWithLevel: Importing certificate CA32CA1.der to CA32DB database  - PASSED
chains.sh: Creating DB CA33DB
certutil -N -d CA33DB -f CA33DB/dbpasswd
chains.sh: #11623: AnyPolicyWithLevel: Creating DB CA33DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA33Req.der
certutil -s "CN=CA33 Intermediate, O=CA33, C=US"  -R -2 -d CA33DB -f CA33DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA33Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11624: AnyPolicyWithLevel: Creating Intermediate certifiate request CA33Req.der  - PASSED
chains.sh: Creating certficate CA33CA32.der signed by CA32
certutil -C -c CA32 -v 60 -d CA32DB -i CA33Req.der -o CA33CA32.der -f CA32DB/dbpasswd -m 502161048   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11625: AnyPolicyWithLevel: Creating certficate CA33CA32.der signed by CA32  - PASSED
chains.sh: Importing certificate CA33CA32.der to CA33DB database
certutil -A -n CA33 -t u,u,u -d CA33DB -f CA33DB/dbpasswd -i CA33CA32.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11626: AnyPolicyWithLevel: Importing certificate CA33CA32.der to CA33DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11627: AnyPolicyWithLevel: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US"  -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11628: AnyPolicyWithLevel: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA33.der signed by CA33
certutil -C -c CA33 -v 60 -d CA33DB -i EE3Req.der -o EE3CA33.der -f CA33DB/dbpasswd -m 502161049   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11629: AnyPolicyWithLevel: Creating certficate EE3CA33.der signed by CA33  - PASSED
chains.sh: Importing certificate EE3CA33.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA33.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11630: AnyPolicyWithLevel: Importing certificate EE3CA33.der to EE3DB database  - PASSED
chains.sh: Creating DB CA42DB
certutil -N -d CA42DB -f CA42DB/dbpasswd
chains.sh: #11631: AnyPolicyWithLevel: Creating DB CA42DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA42Req.der
certutil -s "CN=CA42 Intermediate, O=CA42, C=US"  -R -2 -d CA42DB -f CA42DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA42Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11632: AnyPolicyWithLevel: Creating Intermediate certifiate request CA42Req.der  - PASSED
chains.sh: Creating certficate CA42CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA42Req.der -o CA42CA1.der -f CA1DB/dbpasswd -m 502161050   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11633: AnyPolicyWithLevel: Creating certficate CA42CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA42CA1.der to CA42DB database
certutil -A -n CA42 -t u,u,u -d CA42DB -f CA42DB/dbpasswd -i CA42CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11634: AnyPolicyWithLevel: Importing certificate CA42CA1.der to CA42DB database  - PASSED
chains.sh: Creating DB CA43DB
certutil -N -d CA43DB -f CA43DB/dbpasswd
chains.sh: #11635: AnyPolicyWithLevel: Creating DB CA43DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA43Req.der
certutil -s "CN=CA43 Intermediate, O=CA43, C=US"  -R -2 -d CA43DB -f CA43DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA43Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11636: AnyPolicyWithLevel: Creating Intermediate certifiate request CA43Req.der  - PASSED
chains.sh: Creating certficate CA43CA42.der signed by CA42
certutil -C -c CA42 -v 60 -d CA42DB -i CA43Req.der -o CA43CA42.der -f CA42DB/dbpasswd -m 502161051   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11637: AnyPolicyWithLevel: Creating certficate CA43CA42.der signed by CA42  - PASSED
chains.sh: Importing certificate CA43CA42.der to CA43DB database
certutil -A -n CA43 -t u,u,u -d CA43DB -f CA43DB/dbpasswd -i CA43CA42.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11638: AnyPolicyWithLevel: Importing certificate CA43CA42.der to CA43DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11639: AnyPolicyWithLevel: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US"  -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11640: AnyPolicyWithLevel: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA43.der signed by CA43
certutil -C -c CA43 -v 60 -d CA43DB -i EE4Req.der -o EE4CA43.der -f CA43DB/dbpasswd -m 502161052   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11641: AnyPolicyWithLevel: Creating certficate EE4CA43.der signed by CA43  - PASSED
chains.sh: Importing certificate EE4CA43.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA43.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11642: AnyPolicyWithLevel: Importing certificate EE4CA43.der to EE4DB database  - PASSED
chains.sh: Creating DB CA52DB
certutil -N -d CA52DB -f CA52DB/dbpasswd
chains.sh: #11643: AnyPolicyWithLevel: Creating DB CA52DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA52Req.der
certutil -s "CN=CA52 Intermediate, O=CA52, C=US"  -R -2 -d CA52DB -f CA52DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA52Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11644: AnyPolicyWithLevel: Creating Intermediate certifiate request CA52Req.der  - PASSED
chains.sh: Creating certficate CA52CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA52Req.der -o CA52CA1.der -f CA1DB/dbpasswd -m 502161053   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
y
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11645: AnyPolicyWithLevel: Creating certficate CA52CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA52CA1.der to CA52DB database
certutil -A -n CA52 -t u,u,u -d CA52DB -f CA52DB/dbpasswd -i CA52CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11646: AnyPolicyWithLevel: Importing certificate CA52CA1.der to CA52DB database  - PASSED
chains.sh: Creating DB CA53DB
certutil -N -d CA53DB -f CA53DB/dbpasswd
chains.sh: #11647: AnyPolicyWithLevel: Creating DB CA53DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA53Req.der
certutil -s "CN=CA53 Intermediate, O=CA53, C=US"  -R -2 -d CA53DB -f CA53DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA53Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11648: AnyPolicyWithLevel: Creating Intermediate certifiate request CA53Req.der  - PASSED
chains.sh: Creating certficate CA53CA52.der signed by CA52
certutil -C -c CA52 -v 60 -d CA52DB -i CA53Req.der -o CA53CA52.der -f CA52DB/dbpasswd -m 502161054   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11649: AnyPolicyWithLevel: Creating certficate CA53CA52.der signed by CA52  - PASSED
chains.sh: Importing certificate CA53CA52.der to CA53DB database
certutil -A -n CA53 -t u,u,u -d CA53DB -f CA53DB/dbpasswd -i CA53CA52.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11650: AnyPolicyWithLevel: Importing certificate CA53CA52.der to CA53DB database  - PASSED
chains.sh: Creating DB EE5DB
certutil -N -d EE5DB -f EE5DB/dbpasswd
chains.sh: #11651: AnyPolicyWithLevel: Creating DB EE5DB  - PASSED
chains.sh: Creating EE certifiate request EE5Req.der
certutil -s "CN=EE5 EE, O=EE5, C=US"  -R  -d EE5DB -f EE5DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE5Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11652: AnyPolicyWithLevel: Creating EE certifiate request EE5Req.der  - PASSED
chains.sh: Creating certficate EE5CA53.der signed by CA53
certutil -C -c CA53 -v 60 -d CA53DB -i EE5Req.der -o EE5CA53.der -f CA53DB/dbpasswd -m 502161055   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11653: AnyPolicyWithLevel: Creating certficate EE5CA53.der signed by CA53  - PASSED
chains.sh: Importing certificate EE5CA53.der to EE5DB database
certutil -A -n EE5 -t u,u,u -d EE5DB -f EE5DB/dbpasswd -i EE5CA53.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11654: AnyPolicyWithLevel: Importing certificate EE5CA53.der to EE5DB database  - PASSED
chains.sh: Creating DB CA61DB
certutil -N -d CA61DB -f CA61DB/dbpasswd
chains.sh: #11655: AnyPolicyWithLevel: Creating DB CA61DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA61Req.der
certutil -s "CN=CA61 Intermediate, O=CA61, C=US"  -R -2 -d CA61DB -f CA61DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA61Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11656: AnyPolicyWithLevel: Creating Intermediate certifiate request CA61Req.der  - PASSED
chains.sh: Creating certficate CA61RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA61Req.der -o CA61RootCA.der -f RootCADB/dbpasswd -m 502161056   --extCP --extIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
5
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter the number of certs in the path permitted to use anyPolicy.
(press Enter for 0) > Is this a critical extension [y/N]?
chains.sh: #11657: AnyPolicyWithLevel: Creating certficate CA61RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA61RootCA.der to CA61DB database
certutil -A -n CA61 -t u,u,u -d CA61DB -f CA61DB/dbpasswd -i CA61RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11658: AnyPolicyWithLevel: Importing certificate CA61RootCA.der to CA61DB database  - PASSED
chains.sh: Creating DB CA62DB
certutil -N -d CA62DB -f CA62DB/dbpasswd
chains.sh: #11659: AnyPolicyWithLevel: Creating DB CA62DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA62Req.der
certutil -s "CN=CA62 Intermediate, O=CA62, C=US"  -R -2 -d CA62DB -f CA62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11660: AnyPolicyWithLevel: Creating Intermediate certifiate request CA62Req.der  - PASSED
chains.sh: Creating certficate CA62CA61.der signed by CA61
certutil -C -c CA61 -v 60 -d CA61DB -i CA62Req.der -o CA62CA61.der -f CA61DB/dbpasswd -m 502161057   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11661: AnyPolicyWithLevel: Creating certficate CA62CA61.der signed by CA61  - PASSED
chains.sh: Importing certificate CA62CA61.der to CA62DB database
certutil -A -n CA62 -t u,u,u -d CA62DB -f CA62DB/dbpasswd -i CA62CA61.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11662: AnyPolicyWithLevel: Importing certificate CA62CA61.der to CA62DB database  - PASSED
chains.sh: Creating DB EE62DB
certutil -N -d EE62DB -f EE62DB/dbpasswd
chains.sh: #11663: AnyPolicyWithLevel: Creating DB EE62DB  - PASSED
chains.sh: Creating EE certifiate request EE62Req.der
certutil -s "CN=EE62 EE, O=EE62, C=US"  -R  -d EE62DB -f EE62DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE62Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11664: AnyPolicyWithLevel: Creating EE certifiate request EE62Req.der  - PASSED
chains.sh: Creating certficate EE62CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i EE62Req.der -o EE62CA62.der -f CA62DB/dbpasswd -m 502161058   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11665: AnyPolicyWithLevel: Creating certficate EE62CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate EE62CA62.der to EE62DB database
certutil -A -n EE62 -t u,u,u -d EE62DB -f EE62DB/dbpasswd -i EE62CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11666: AnyPolicyWithLevel: Importing certificate EE62CA62.der to EE62DB database  - PASSED
chains.sh: Creating DB CA63DB
certutil -N -d CA63DB -f CA63DB/dbpasswd
chains.sh: #11667: AnyPolicyWithLevel: Creating DB CA63DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA63Req.der
certutil -s "CN=CA63 Intermediate, O=CA63, C=US"  -R -2 -d CA63DB -f CA63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11668: AnyPolicyWithLevel: Creating Intermediate certifiate request CA63Req.der  - PASSED
chains.sh: Creating certficate CA63CA62.der signed by CA62
certutil -C -c CA62 -v 60 -d CA62DB -i CA63Req.der -o CA63CA62.der -f CA62DB/dbpasswd -m 502161059   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11669: AnyPolicyWithLevel: Creating certficate CA63CA62.der signed by CA62  - PASSED
chains.sh: Importing certificate CA63CA62.der to CA63DB database
certutil -A -n CA63 -t u,u,u -d CA63DB -f CA63DB/dbpasswd -i CA63CA62.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11670: AnyPolicyWithLevel: Importing certificate CA63CA62.der to CA63DB database  - PASSED
chains.sh: Creating DB EE63DB
certutil -N -d EE63DB -f EE63DB/dbpasswd
chains.sh: #11671: AnyPolicyWithLevel: Creating DB EE63DB  - PASSED
chains.sh: Creating EE certifiate request EE63Req.der
certutil -s "CN=EE63 EE, O=EE63, C=US"  -R  -d EE63DB -f EE63DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE63Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11672: AnyPolicyWithLevel: Creating EE certifiate request EE63Req.der  - PASSED
chains.sh: Creating certficate EE63CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i EE63Req.der -o EE63CA63.der -f CA63DB/dbpasswd -m 502161060   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11673: AnyPolicyWithLevel: Creating certficate EE63CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate EE63CA63.der to EE63DB database
certutil -A -n EE63 -t u,u,u -d EE63DB -f EE63DB/dbpasswd -i EE63CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11674: AnyPolicyWithLevel: Importing certificate EE63CA63.der to EE63DB database  - PASSED
chains.sh: Creating DB CA64DB
certutil -N -d CA64DB -f CA64DB/dbpasswd
chains.sh: #11675: AnyPolicyWithLevel: Creating DB CA64DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA64Req.der
certutil -s "CN=CA64 Intermediate, O=CA64, C=US"  -R -2 -d CA64DB -f CA64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11676: AnyPolicyWithLevel: Creating Intermediate certifiate request CA64Req.der  - PASSED
chains.sh: Creating certficate CA64CA63.der signed by CA63
certutil -C -c CA63 -v 60 -d CA63DB -i CA64Req.der -o CA64CA63.der -f CA63DB/dbpasswd -m 502161061   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11677: AnyPolicyWithLevel: Creating certficate CA64CA63.der signed by CA63  - PASSED
chains.sh: Importing certificate CA64CA63.der to CA64DB database
certutil -A -n CA64 -t u,u,u -d CA64DB -f CA64DB/dbpasswd -i CA64CA63.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11678: AnyPolicyWithLevel: Importing certificate CA64CA63.der to CA64DB database  - PASSED
chains.sh: Creating DB EE64DB
certutil -N -d EE64DB -f EE64DB/dbpasswd
chains.sh: #11679: AnyPolicyWithLevel: Creating DB EE64DB  - PASSED
chains.sh: Creating EE certifiate request EE64Req.der
certutil -s "CN=EE64 EE, O=EE64, C=US"  -R  -d EE64DB -f EE64DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE64Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11680: AnyPolicyWithLevel: Creating EE certifiate request EE64Req.der  - PASSED
chains.sh: Creating certficate EE64CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i EE64Req.der -o EE64CA64.der -f CA64DB/dbpasswd -m 502161062   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11681: AnyPolicyWithLevel: Creating certficate EE64CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate EE64CA64.der to EE64DB database
certutil -A -n EE64 -t u,u,u -d EE64DB -f EE64DB/dbpasswd -i EE64CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11682: AnyPolicyWithLevel: Importing certificate EE64CA64.der to EE64DB database  - PASSED
chains.sh: Creating DB CA65DB
certutil -N -d CA65DB -f CA65DB/dbpasswd
chains.sh: #11683: AnyPolicyWithLevel: Creating DB CA65DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA65Req.der
certutil -s "CN=CA65 Intermediate, O=CA65, C=US"  -R -2 -d CA65DB -f CA65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11684: AnyPolicyWithLevel: Creating Intermediate certifiate request CA65Req.der  - PASSED
chains.sh: Creating certficate CA65CA64.der signed by CA64
certutil -C -c CA64 -v 60 -d CA64DB -i CA65Req.der -o CA65CA64.der -f CA64DB/dbpasswd -m 502161063   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11685: AnyPolicyWithLevel: Creating certficate CA65CA64.der signed by CA64  - PASSED
chains.sh: Importing certificate CA65CA64.der to CA65DB database
certutil -A -n CA65 -t u,u,u -d CA65DB -f CA65DB/dbpasswd -i CA65CA64.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11686: AnyPolicyWithLevel: Importing certificate CA65CA64.der to CA65DB database  - PASSED
chains.sh: Creating DB EE65DB
certutil -N -d EE65DB -f EE65DB/dbpasswd
chains.sh: #11687: AnyPolicyWithLevel: Creating DB EE65DB  - PASSED
chains.sh: Creating EE certifiate request EE65Req.der
certutil -s "CN=EE65 EE, O=EE65, C=US"  -R  -d EE65DB -f EE65DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE65Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11688: AnyPolicyWithLevel: Creating EE certifiate request EE65Req.der  - PASSED
chains.sh: Creating certficate EE65CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i EE65Req.der -o EE65CA65.der -f CA65DB/dbpasswd -m 502161064   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11689: AnyPolicyWithLevel: Creating certficate EE65CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate EE65CA65.der to EE65DB database
certutil -A -n EE65 -t u,u,u -d EE65DB -f EE65DB/dbpasswd -i EE65CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11690: AnyPolicyWithLevel: Importing certificate EE65CA65.der to EE65DB database  - PASSED
chains.sh: Creating DB CA66DB
certutil -N -d CA66DB -f CA66DB/dbpasswd
chains.sh: #11691: AnyPolicyWithLevel: Creating DB CA66DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA66Req.der
certutil -s "CN=CA66 Intermediate, O=CA66, C=US"  -R -2 -d CA66DB -f CA66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11692: AnyPolicyWithLevel: Creating Intermediate certifiate request CA66Req.der  - PASSED
chains.sh: Creating certficate CA66CA65.der signed by CA65
certutil -C -c CA65 -v 60 -d CA65DB -i CA66Req.der -o CA66CA65.der -f CA65DB/dbpasswd -m 502161065   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11693: AnyPolicyWithLevel: Creating certficate CA66CA65.der signed by CA65  - PASSED
chains.sh: Importing certificate CA66CA65.der to CA66DB database
certutil -A -n CA66 -t u,u,u -d CA66DB -f CA66DB/dbpasswd -i CA66CA65.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11694: AnyPolicyWithLevel: Importing certificate CA66CA65.der to CA66DB database  - PASSED
chains.sh: Creating DB EE66DB
certutil -N -d EE66DB -f EE66DB/dbpasswd
chains.sh: #11695: AnyPolicyWithLevel: Creating DB EE66DB  - PASSED
chains.sh: Creating EE certifiate request EE66Req.der
certutil -s "CN=EE66 EE, O=EE66, C=US"  -R  -d EE66DB -f EE66DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE66Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11696: AnyPolicyWithLevel: Creating EE certifiate request EE66Req.der  - PASSED
chains.sh: Creating certficate EE66CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i EE66Req.der -o EE66CA66.der -f CA66DB/dbpasswd -m 502161066   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11697: AnyPolicyWithLevel: Creating certficate EE66CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate EE66CA66.der to EE66DB database
certutil -A -n EE66 -t u,u,u -d EE66DB -f EE66DB/dbpasswd -i EE66CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11698: AnyPolicyWithLevel: Importing certificate EE66CA66.der to EE66DB database  - PASSED
chains.sh: Creating DB CA67DB
certutil -N -d CA67DB -f CA67DB/dbpasswd
chains.sh: #11699: AnyPolicyWithLevel: Creating DB CA67DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA67Req.der
certutil -s "CN=CA67 Intermediate, O=CA67, C=US"  -R -2 -d CA67DB -f CA67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11700: AnyPolicyWithLevel: Creating Intermediate certifiate request CA67Req.der  - PASSED
chains.sh: Creating certficate CA67CA66.der signed by CA66
certutil -C -c CA66 -v 60 -d CA66DB -i CA67Req.der -o CA67CA66.der -f CA66DB/dbpasswd -m 502161067   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
any
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: Certificate Policies AnyPolicy
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11701: AnyPolicyWithLevel: Creating certficate CA67CA66.der signed by CA66  - PASSED
chains.sh: Importing certificate CA67CA66.der to CA67DB database
certutil -A -n CA67 -t u,u,u -d CA67DB -f CA67DB/dbpasswd -i CA67CA66.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11702: AnyPolicyWithLevel: Importing certificate CA67CA66.der to CA67DB database  - PASSED
chains.sh: Creating DB EE67DB
certutil -N -d EE67DB -f EE67DB/dbpasswd
chains.sh: #11703: AnyPolicyWithLevel: Creating DB EE67DB  - PASSED
chains.sh: Creating EE certifiate request EE67Req.der
certutil -s "CN=EE67 EE, O=EE67, C=US"  -R  -d EE67DB -f EE67DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE67Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11704: AnyPolicyWithLevel: Creating EE certifiate request EE67Req.der  - PASSED
chains.sh: Creating certficate EE67CA67.der signed by CA67
certutil -C -c CA67 -v 60 -d CA67DB -i EE67Req.der -o EE67CA67.der -f CA67DB/dbpasswd -m 502161068   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11705: AnyPolicyWithLevel: Creating certficate EE67CA67.der signed by CA67  - PASSED
chains.sh: Importing certificate EE67CA67.der to EE67DB database
certutil -A -n EE67 -t u,u,u -d EE67DB -f EE67DB/dbpasswd -i EE67CA67.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11706: AnyPolicyWithLevel: Importing certificate EE67CA67.der to EE67DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11707: AnyPolicyWithLevel: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11708: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11709: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA13 Intermediate,O=CA13,C=US"
Certificate 3 Subject: "CN=CA12 Intermediate,O=CA12,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11710: AnyPolicyWithLevel: Verifying certificate(s)  EE1CA13.der RootCA.der CA1RootCA.der CA12CA1.der CA13CA12.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11711: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11712: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11713: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA23 Intermediate,O=CA23,C=US"
Certificate 3 Subject: "CN=CA22 Intermediate,O=CA22,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11714: AnyPolicyWithLevel: Verifying certificate(s)  EE2CA23.der RootCA.der CA1RootCA.der CA22CA1.der CA23CA22.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11715: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11716: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11717: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA33 Intermediate,O=CA33,C=US"
Certificate 3 Subject: "CN=CA32 Intermediate,O=CA32,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11718: AnyPolicyWithLevel: Verifying certificate(s)  EE3CA33.der RootCA.der CA1RootCA.der CA32CA1.der CA33CA32.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11719: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11720: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA43 Intermediate,O=CA43,C=US"
Certificate 3 Subject: "CN=CA42 Intermediate,O=CA42,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11721: AnyPolicyWithLevel: Verifying certificate(s)  EE4CA43.der RootCA.der CA1RootCA.der CA42CA1.der CA43CA42.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11722: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11723: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.2.5.29.32.0  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11724: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp      -o OID.2.5.29.32.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der
vfychain -d AllDB -pp -vv       EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE5 EE,O=EE5,C=US"
Certificate 2 Subject: "CN=CA53 Intermediate,O=CA53,C=US"
Certificate 3 Subject: "CN=CA52 Intermediate,O=CA52,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11725: AnyPolicyWithLevel: Verifying certificate(s)  EE5CA53.der RootCA.der CA1RootCA.der CA52CA1.der CA53CA52.der with flags -d AllDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE62 EE,O=EE62,C=US"
Certificate 2 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 3 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11726: AnyPolicyWithLevel: Verifying certificate(s)  EE62CA62.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE63 EE,O=EE63,C=US"
Certificate 2 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 3 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 4 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11727: AnyPolicyWithLevel: Verifying certificate(s)  EE63CA63.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE64 EE,O=EE64,C=US"
Certificate 2 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 3 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 4 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 5 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11728: AnyPolicyWithLevel: Verifying certificate(s)  EE64CA64.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE65 EE,O=EE65,C=US"
Certificate 2 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 3 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 4 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 5 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 6 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11729: AnyPolicyWithLevel: Verifying certificate(s)  EE65CA65.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161039 (0x1dee5e8f)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:15:04 2017
            Not After : Mon May 02 16:15:04 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d1:19:82:c1:87:5b:9c:f8:c5:90:ba:6d:5f:ca:b6:e0:
                    7b:1c:35:46:d7:46:ab:d0:62:ea:32:5f:7c:99:da:b8:
                    30:18:e1:8a:e3:24:fd:64:34:30:bd:fd:81:d5:3a:b4:
                    0f:0f:7a:1e:5f:8b:0b:cb:bd:d0:19:fc:c7:58:1d:17:
                    56:be:82:92:da:c9:04:eb:98:b0:a7:4c:49:05:01:94:
                    33:00:98:af:f1:12:e7:43:e7:8f:59:52:dd:df:f6:ee:
                    42:4d:e5:94:9c:99:4a:2d:df:50:58:f7:a0:e8:3c:70:
                    8a:d0:a0:dd:04:35:54:38:b9:3b:b6:13:2f:c0:3f:12:
                    32:93:a9:07:dc:5a:a2:97:ed:14:00:0e:75:08:2a:52:
                    6a:09:d2:71:dd:c9:00:78:85:1f:e5:b0:c0:2e:fc:a2:
                    1e:d0:9d:3d:24:5e:6a:cc:6f:77:2d:5f:48:f1:24:93:
                    ef:10:64:d6:8f:52:91:57:7f:48:f5:d7:aa:a9:12:33:
                    24:89:af:8b:b7:11:7e:00:72:41:f1:e1:b2:7b:64:f8:
                    3b:fa:08:fa:02:a4:74:60:0a:89:75:10:d3:c9:c3:e2:
                    35:f5:4b:64:5d:b7:95:e3:d4:e2:b0:fb:a7:c6:f1:5b:
                    eb:86:5d:93:23:a0:f2:25:3f:ee:c4:29:64:79:ce:f9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        92:5e:de:7b:dc:90:ff:cf:cc:e7:e5:88:da:06:14:bf:
        d4:55:76:0a:b8:e2:0e:f6:4c:b0:de:b2:5c:4f:6b:b2:
        50:79:94:a9:81:e1:1b:0d:6d:f5:f8:74:40:ad:84:0f:
        68:e5:b1:7e:0a:ed:ec:0c:cc:f8:75:ce:8c:c5:23:e3:
        b3:cd:88:2d:fa:3f:06:07:6f:27:51:7e:68:7c:18:95:
        90:be:d4:73:0e:81:dd:64:a1:b0:78:8e:91:74:d2:6d:
        c1:cc:74:43:5a:d3:0c:95:51:86:a0:0a:b9:cc:8c:ba:
        22:f3:90:fc:f0:73:d5:c1:30:ee:e4:c4:7f:d3:0a:dd:
        aa:92:06:4a:33:5e:e0:d8:aa:16:91:4a:6d:da:cc:86:
        ad:cc:79:66:98:86:06:2e:72:6b:1b:3e:db:3b:00:f1:
        8a:87:10:98:04:9d:42:e1:22:66:77:76:01:d8:a1:0f:
        96:8c:df:9f:5e:49:e7:1e:8e:1d:fd:c8:3e:06:b2:d9:
        78:2a:f6:b0:2a:bc:f6:a3:6f:2e:f3:61:59:e8:6d:34:
        8e:7a:83:d8:06:0e:53:13:22:aa:94:c7:3d:41:0a:32:
        44:0d:2a:d2:63:fb:5b:c3:88:a6:54:da:db:7b:99:1e:
        d9:6f:b1:73:b5:29:9f:6e:fa:71:f2:60:f6:36:9d:84
    Fingerprint (SHA-256):
        CB:F3:1C:C1:06:89:CE:7D:AF:8F:26:66:57:C3:39:8B:5F:F5:1E:4E:25:30:E2:9C:E4:AD:B5:9E:E3:80:D0:66
    Fingerprint (SHA1):
        0A:C0:6C:50:9C:EF:88:DC:0A:94:A6:2B:3D:E4:A9:53:98:AF:AD:A4
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE66 EE,O=EE66,C=US"
Certificate 2 Subject: "CN=CA66 Intermediate,O=CA66,C=US"
Certificate 3 Subject: "CN=CA65 Intermediate,O=CA65,C=US"
Certificate 4 Subject: "CN=CA64 Intermediate,O=CA64,C=US"
Certificate 5 Subject: "CN=CA63 Intermediate,O=CA63,C=US"
Certificate 6 Subject: "CN=CA62 Intermediate,O=CA62,C=US"
Certificate 7 Subject: "CN=CA61 Intermediate,O=CA61,C=US"
Returned value is 0, expected result is pass
chains.sh: #11730: AnyPolicyWithLevel: Verifying certificate(s)  EE66CA66.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der
vfychain -d AllDB -pp -vv      -o OID.1.0  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der  -t RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 8. CN=RootCA ROOT CA,O=RootCA,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11731: AnyPolicyWithLevel: Verifying certificate(s)  EE67CA67.der RootCA.der CA61RootCA.der CA62CA61.der CA63CA62.der CA64CA63.der CA65CA64.der CA66CA65.der CA67CA66.der with flags -d AllDB -pp      -o OID.1.0  -t RootCA.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11732: explicitPolicy: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161069 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11733: explicitPolicy: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11734: explicitPolicy: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB nonEVCADB
certutil -N -d nonEVCADB -f nonEVCADB/dbpasswd
chains.sh: #11735: explicitPolicy: Creating DB nonEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request nonEVCAReq.der
certutil -s "CN=nonEVCA Intermediate, O=nonEVCA, C=US"  -R -2 -d nonEVCADB -f nonEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o nonEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11736: explicitPolicy: Creating Intermediate certifiate request nonEVCAReq.der  - PASSED
chains.sh: Creating certficate nonEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i nonEVCAReq.der -o nonEVCARoot.der -f RootDB/dbpasswd -m 502161070   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11737: explicitPolicy: Creating certficate nonEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate nonEVCARoot.der to nonEVCADB database
certutil -A -n nonEVCA -t u,u,u -d nonEVCADB -f nonEVCADB/dbpasswd -i nonEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11738: explicitPolicy: Importing certificate nonEVCARoot.der to nonEVCADB database  - PASSED
chains.sh: Creating DB EVCADB
certutil -N -d EVCADB -f EVCADB/dbpasswd
chains.sh: #11739: explicitPolicy: Creating DB EVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request EVCAReq.der
certutil -s "CN=EVCA Intermediate, O=EVCA, C=US"  -R -2 -d EVCADB -f EVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11740: explicitPolicy: Creating Intermediate certifiate request EVCAReq.der  - PASSED
chains.sh: Creating certficate EVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i EVCAReq.der -o EVCARoot.der -f RootDB/dbpasswd -m 502161071   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11741: explicitPolicy: Creating certficate EVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate EVCARoot.der to EVCADB database
certutil -A -n EVCA -t u,u,u -d EVCADB -f EVCADB/dbpasswd -i EVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11742: explicitPolicy: Importing certificate EVCARoot.der to EVCADB database  - PASSED
chains.sh: Creating DB otherEVCADB
certutil -N -d otherEVCADB -f otherEVCADB/dbpasswd
chains.sh: #11743: explicitPolicy: Creating DB otherEVCADB  - PASSED
chains.sh: Creating Intermediate certifiate request otherEVCAReq.der
certutil -s "CN=otherEVCA Intermediate, O=otherEVCA, C=US"  -R -2 -d otherEVCADB -f otherEVCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o otherEVCAReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11744: explicitPolicy: Creating Intermediate certifiate request otherEVCAReq.der  - PASSED
chains.sh: Creating certficate otherEVCARoot.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i otherEVCAReq.der -o otherEVCARoot.der -f RootDB/dbpasswd -m 502161072   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11745: explicitPolicy: Creating certficate otherEVCARoot.der signed by Root  - PASSED
chains.sh: Importing certificate otherEVCARoot.der to otherEVCADB database
certutil -A -n otherEVCA -t u,u,u -d otherEVCADB -f otherEVCADB/dbpasswd -i otherEVCARoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11746: explicitPolicy: Importing certificate otherEVCARoot.der to otherEVCADB database  - PASSED
chains.sh: Creating DB validEVDB
certutil -N -d validEVDB -f validEVDB/dbpasswd
chains.sh: #11747: explicitPolicy: Creating DB validEVDB  - PASSED
chains.sh: Creating EE certifiate request validEVReq.der
certutil -s "CN=validEV EE, O=validEV, C=US"  -R  -d validEVDB -f validEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o validEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11748: explicitPolicy: Creating EE certifiate request validEVReq.der  - PASSED
chains.sh: Creating certficate validEVEVCA.der signed by EVCA
certutil -C -c EVCA -v 60 -d EVCADB -i validEVReq.der -o validEVEVCA.der -f EVCADB/dbpasswd -m 502161073   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11749: explicitPolicy: Creating certficate validEVEVCA.der signed by EVCA  - PASSED
chains.sh: Importing certificate validEVEVCA.der to validEVDB database
certutil -A -n validEV -t u,u,u -d validEVDB -f validEVDB/dbpasswd -i validEVEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11750: explicitPolicy: Importing certificate validEVEVCA.der to validEVDB database  - PASSED
chains.sh: Creating DB invalidEVDB
certutil -N -d invalidEVDB -f invalidEVDB/dbpasswd
chains.sh: #11751: explicitPolicy: Creating DB invalidEVDB  - PASSED
chains.sh: Creating EE certifiate request invalidEVReq.der
certutil -s "CN=invalidEV EE, O=invalidEV, C=US"  -R  -d invalidEVDB -f invalidEVDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o invalidEVReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11752: explicitPolicy: Creating EE certifiate request invalidEVReq.der  - PASSED
chains.sh: Creating certficate invalidEVnonEVCA.der signed by nonEVCA
certutil -C -c nonEVCA -v 60 -d nonEVCADB -i invalidEVReq.der -o invalidEVnonEVCA.der -f nonEVCADB/dbpasswd -m 502161074   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11753: explicitPolicy: Creating certficate invalidEVnonEVCA.der signed by nonEVCA  - PASSED
chains.sh: Importing certificate invalidEVnonEVCA.der to invalidEVDB database
certutil -A -n invalidEV -t u,u,u -d invalidEVDB -f invalidEVDB/dbpasswd -i invalidEVnonEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11754: explicitPolicy: Importing certificate invalidEVnonEVCA.der to invalidEVDB database  - PASSED
chains.sh: Creating DB wrongEVOIDDB
certutil -N -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd
chains.sh: #11755: explicitPolicy: Creating DB wrongEVOIDDB  - PASSED
chains.sh: Creating EE certifiate request wrongEVOIDReq.der
certutil -s "CN=wrongEVOID EE, O=wrongEVOID, C=US"  -R  -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o wrongEVOIDReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11756: explicitPolicy: Creating EE certifiate request wrongEVOIDReq.der  - PASSED
chains.sh: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA
certutil -C -c otherEVCA -v 60 -d otherEVCADB -i wrongEVOIDReq.der -o wrongEVOIDotherEVCA.der -f otherEVCADB/dbpasswd -m 502161075   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11757: explicitPolicy: Creating certficate wrongEVOIDotherEVCA.der signed by otherEVCA  - PASSED
chains.sh: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database
certutil -A -n wrongEVOID -t u,u,u -d wrongEVOIDDB -f wrongEVOIDDB/dbpasswd -i wrongEVOIDotherEVCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11758: explicitPolicy: Importing certificate wrongEVOIDotherEVCA.der to wrongEVOIDDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11759: explicitPolicy: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161069 (0x1dee5ead)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:15:58 2017
            Not After : Mon May 02 16:15:58 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:e1:35:d3:2e:2b:0e:34:9d:59:83:c2:0d:39:61:5e:
                    81:e1:f4:e8:45:62:61:ed:31:0e:a1:c1:f4:cc:0c:9f:
                    62:7d:74:28:bd:df:da:32:64:68:38:bb:2d:bf:6e:e4:
                    b5:4f:6f:98:de:5d:e7:b3:df:9c:08:03:cb:ba:3f:d8:
                    ce:8d:42:4b:91:35:f4:90:af:d0:4a:7e:e4:c4:2b:f0:
                    f5:32:c0:0d:9b:4d:d7:b9:a8:c1:5e:2e:cb:92:68:54:
                    ac:17:a3:d4:d3:24:65:7f:9f:92:a2:7a:4f:de:0a:63:
                    70:15:22:d3:d9:fd:c8:33:12:b8:95:20:64:2a:b7:36:
                    78:48:5c:c3:67:58:49:e1:d4:82:4b:2d:cf:96:0a:29:
                    78:9e:fc:8d:d0:b4:63:c4:70:1a:cf:d5:0c:a6:ff:cf:
                    86:4e:e8:ae:f8:9a:79:ab:82:d0:15:9b:e8:76:3a:09:
                    a5:25:f8:78:7a:b2:28:c6:df:f1:dc:f9:42:81:9e:20:
                    95:c0:78:57:81:85:9e:09:bc:87:e2:b0:f3:73:49:3a:
                    d9:48:9f:89:83:55:ce:f6:e8:4f:ee:2e:09:2b:a6:e5:
                    db:38:20:6d:72:2a:87:c1:02:62:e3:79:56:13:0e:ad:
                    d4:ad:d1:e2:15:1a:04:0c:ad:c2:a5:fa:18:fe:62:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:a8:50:66:9e:6e:80:14:a5:18:20:be:97:b0:9b:61:
        dc:5d:bc:19:89:21:da:33:f6:38:f6:40:83:a9:a9:30:
        8a:9d:f4:e0:cd:f1:fd:d4:9b:12:41:50:e8:a3:d6:75:
        41:4a:3b:8a:09:30:c4:f0:d8:aa:71:3a:48:47:20:ae:
        43:8e:7f:a8:74:fe:06:c3:d5:82:5e:14:67:30:e8:a0:
        17:15:de:f0:05:20:04:4c:3d:d6:57:26:5f:7b:6d:60:
        53:0f:05:de:ee:7d:e0:f8:76:ef:ef:1d:18:ad:ba:05:
        df:5b:74:ae:07:9c:cf:a4:99:24:91:5c:63:7e:14:f5:
        93:46:fe:4e:48:44:0f:38:18:bb:73:8f:50:8e:19:1a:
        3e:8a:30:36:fd:a9:6b:b0:4c:3e:c0:77:44:ed:0f:01:
        b8:99:f5:74:34:8c:94:1a:66:c3:e8:67:d7:41:dc:00:
        46:0a:b6:cc:de:bc:76:95:0f:98:12:69:2e:ec:35:99:
        87:25:80:fd:d3:93:e7:6a:c8:2d:a3:40:8e:19:3d:b6:
        2b:01:24:57:2e:83:b4:ce:ac:68:34:da:08:86:b3:c2:
        ae:bc:dd:ca:04:c3:35:fa:10:ff:43:31:99:80:3f:d7:
        1e:5d:a7:cf:0d:37:a8:9f:bc:59:90:ec:8d:7b:2d:aa
    Fingerprint (SHA-256):
        24:2B:5A:C3:E8:17:E1:02:83:88:C2:3A:DA:F1:69:C3:FC:2B:B2:21:67:21:43:B8:E5:08:BB:4E:49:EC:C1:C3
    Fingerprint (SHA1):
        12:01:DC:14:F4:69:3D:78:AE:8B:3F:91:A7:C4:85:30:D0:7A:7E:68
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11760: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11761: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=Root ROOT CA,O=Root,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11762: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der Root.der with flags -d AllDB -pp      -o OID.1.0  -t Root.der - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "C,C,C" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11763: explicitPolicy: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  validEVEVCA.der EVCARoot.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161069 (0x1dee5ead)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:15:58 2017
            Not After : Mon May 02 16:15:58 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    a8:e1:35:d3:2e:2b:0e:34:9d:59:83:c2:0d:39:61:5e:
                    81:e1:f4:e8:45:62:61:ed:31:0e:a1:c1:f4:cc:0c:9f:
                    62:7d:74:28:bd:df:da:32:64:68:38:bb:2d:bf:6e:e4:
                    b5:4f:6f:98:de:5d:e7:b3:df:9c:08:03:cb:ba:3f:d8:
                    ce:8d:42:4b:91:35:f4:90:af:d0:4a:7e:e4:c4:2b:f0:
                    f5:32:c0:0d:9b:4d:d7:b9:a8:c1:5e:2e:cb:92:68:54:
                    ac:17:a3:d4:d3:24:65:7f:9f:92:a2:7a:4f:de:0a:63:
                    70:15:22:d3:d9:fd:c8:33:12:b8:95:20:64:2a:b7:36:
                    78:48:5c:c3:67:58:49:e1:d4:82:4b:2d:cf:96:0a:29:
                    78:9e:fc:8d:d0:b4:63:c4:70:1a:cf:d5:0c:a6:ff:cf:
                    86:4e:e8:ae:f8:9a:79:ab:82:d0:15:9b:e8:76:3a:09:
                    a5:25:f8:78:7a:b2:28:c6:df:f1:dc:f9:42:81:9e:20:
                    95:c0:78:57:81:85:9e:09:bc:87:e2:b0:f3:73:49:3a:
                    d9:48:9f:89:83:55:ce:f6:e8:4f:ee:2e:09:2b:a6:e5:
                    db:38:20:6d:72:2a:87:c1:02:62:e3:79:56:13:0e:ad:
                    d4:ad:d1:e2:15:1a:04:0c:ad:c2:a5:fa:18:fe:62:4f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        56:a8:50:66:9e:6e:80:14:a5:18:20:be:97:b0:9b:61:
        dc:5d:bc:19:89:21:da:33:f6:38:f6:40:83:a9:a9:30:
        8a:9d:f4:e0:cd:f1:fd:d4:9b:12:41:50:e8:a3:d6:75:
        41:4a:3b:8a:09:30:c4:f0:d8:aa:71:3a:48:47:20:ae:
        43:8e:7f:a8:74:fe:06:c3:d5:82:5e:14:67:30:e8:a0:
        17:15:de:f0:05:20:04:4c:3d:d6:57:26:5f:7b:6d:60:
        53:0f:05:de:ee:7d:e0:f8:76:ef:ef:1d:18:ad:ba:05:
        df:5b:74:ae:07:9c:cf:a4:99:24:91:5c:63:7e:14:f5:
        93:46:fe:4e:48:44:0f:38:18:bb:73:8f:50:8e:19:1a:
        3e:8a:30:36:fd:a9:6b:b0:4c:3e:c0:77:44:ed:0f:01:
        b8:99:f5:74:34:8c:94:1a:66:c3:e8:67:d7:41:dc:00:
        46:0a:b6:cc:de:bc:76:95:0f:98:12:69:2e:ec:35:99:
        87:25:80:fd:d3:93:e7:6a:c8:2d:a3:40:8e:19:3d:b6:
        2b:01:24:57:2e:83:b4:ce:ac:68:34:da:08:86:b3:c2:
        ae:bc:dd:ca:04:c3:35:fa:10:ff:43:31:99:80:3f:d7:
        1e:5d:a7:cf:0d:37:a8:9f:bc:59:90:ec:8d:7b:2d:aa
    Fingerprint (SHA-256):
        24:2B:5A:C3:E8:17:E1:02:83:88:C2:3A:DA:F1:69:C3:FC:2B:B2:21:67:21:43:B8:E5:08:BB:4E:49:EC:C1:C3
    Fingerprint (SHA1):
        12:01:DC:14:F4:69:3D:78:AE:8B:3F:91:A7:C4:85:30:D0:7A:7E:68
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=validEV EE,O=validEV,C=US"
Certificate 2 Subject: "CN=EVCA Intermediate,O=EVCA,C=US"
Returned value is 0, expected result is pass
chains.sh: #11764: explicitPolicy: Verifying certificate(s)  validEVEVCA.der EVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  invalidEVnonEVCA.der nonEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11765: explicitPolicy: Verifying certificate(s)  invalidEVnonEVCA.der nonEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0 
vfychain -d AllDB -pp -vv      -o OID.1.0  wrongEVOIDotherEVCA.der otherEVCARoot.der 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11766: explicitPolicy: Verifying certificate(s)  wrongEVOIDotherEVCA.der otherEVCARoot.der with flags -d AllDB -pp      -o OID.1.0  - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11767: Mapping: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161076 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11768: Mapping: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11769: Mapping: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11770: Mapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11771: Mapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502161077   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11772: Mapping: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11773: Mapping: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11774: Mapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11775: Mapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502161078   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11776: Mapping: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11777: Mapping: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11778: Mapping: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11779: Mapping: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502161079   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11780: Mapping: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11781: Mapping: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11782: Mapping: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11783: Mapping: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11784: Mapping: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11785: Mapping: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161076 (0x1dee5eb4)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:16:09 2017
            Not After : Mon May 02 16:16:09 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ae:93:be:fb:a5:dd:6d:1f:d9:09:48:d9:99:df:25:b3:
                    2e:f7:97:6b:74:78:66:18:ba:1a:ac:0f:f8:a1:78:8d:
                    65:66:62:96:2a:2a:16:bb:db:0e:08:2f:06:ef:d4:aa:
                    5e:8f:f2:cc:c4:b0:8b:54:a6:04:2b:55:e5:71:57:7d:
                    1e:c7:bd:41:ea:0e:58:74:27:02:91:7b:b9:bd:19:b1:
                    ca:01:8a:9c:e8:5d:54:dd:b0:1f:5f:12:8e:43:5c:4c:
                    2f:cf:04:43:4b:28:fd:ef:d9:8e:38:d8:38:ea:55:b0:
                    66:ad:a5:45:a2:9f:c6:82:b8:e8:47:f8:69:72:26:72:
                    5e:47:f6:02:e3:98:7e:f4:96:91:36:ff:d3:7d:b5:a2:
                    fc:df:d0:ad:5c:ca:75:60:07:8f:ba:f0:ea:87:2a:ae:
                    75:25:f1:52:1a:4e:ee:5e:3f:b8:f6:21:dc:66:7f:4b:
                    4b:39:64:14:8c:bb:1d:07:40:b1:82:98:fe:15:b1:68:
                    e9:20:13:d8:14:e8:1a:4a:3c:fe:23:8b:32:0d:dc:f6:
                    ef:29:60:0d:2d:f4:6e:a8:dc:89:81:dd:b2:43:4b:d7:
                    fe:00:c8:6f:af:85:f5:39:bf:e2:19:5e:8d:5d:4a:70:
                    ce:08:bf:43:ca:48:36:c6:aa:c3:a5:4d:94:fb:53:c1
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        a9:20:85:cf:f9:21:8d:fb:d5:43:15:e5:86:2e:db:c1:
        3b:6e:4d:83:3b:32:16:56:08:3f:b4:ac:2b:7f:e2:b2:
        86:71:f9:f0:24:8b:b2:a4:de:06:77:2d:4f:ac:9a:ba:
        86:a4:e6:cd:b6:7c:58:43:64:b1:12:9f:a1:6d:68:03:
        9d:92:d6:58:6f:4f:91:8a:c8:d7:11:06:8a:0b:10:3d:
        92:ab:f7:3a:61:f1:b9:ad:13:13:b4:83:a9:ae:ec:c5:
        07:80:96:d7:fa:19:2c:be:d6:c8:df:c8:43:4e:9f:0b:
        78:8d:31:98:61:84:6d:a6:3b:48:8e:69:89:f3:fa:8e:
        e8:e9:30:ca:b8:56:c5:9c:26:be:b7:27:b4:79:73:1d:
        b2:0e:50:42:f3:bd:1d:b3:39:24:65:93:1f:6e:87:a3:
        04:26:3d:db:e5:37:56:02:9a:00:af:2a:33:45:dd:98:
        12:54:83:d2:fa:a8:ba:91:8f:81:fb:6f:3c:2c:89:86:
        0f:70:5c:1c:2a:2f:2b:04:f3:a6:5f:71:3e:80:fb:60:
        e0:c4:36:9f:25:29:c7:2d:7b:65:f7:b8:9f:7a:4e:80:
        37:da:01:c1:27:2d:87:a4:ea:64:90:34:96:35:c1:05:
        fb:7b:00:0d:8f:12:f7:82:dd:ee:39:e9:e0:f5:82:f3
    Fingerprint (SHA-256):
        30:6D:91:45:48:CF:9F:41:9B:8F:0D:68:B5:7D:38:BE:BF:2C:E0:F1:26:63:B7:41:1D:31:EC:D1:92:71:C4:85
    Fingerprint (SHA1):
        B5:BD:5F:60:0D:E0:1A:A6:39:9E:E7:76:FC:7D:DB:CA:4C:0B:80:FC
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11786: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11787: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11788: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161077 (0x1dee5eb5)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:16:11 2017
            Not After : Mon May 02 16:16:11 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    cf:6a:57:65:05:f9:bc:6b:21:be:bc:f0:e5:b9:d9:9f:
                    bf:8a:91:d3:ba:b8:39:8c:57:22:66:8d:71:ca:77:e5:
                    f6:73:5d:1e:6f:8a:52:14:79:2d:17:46:ed:d0:64:b4:
                    a5:60:e2:62:f4:b9:60:42:3c:76:15:7e:d1:2d:58:2a:
                    ad:cb:d0:ef:b0:2b:e3:1f:09:c4:ad:14:8f:8b:3c:e0:
                    44:4a:5d:55:82:40:66:77:ad:d6:22:fe:4c:3f:c8:2c:
                    58:2d:09:73:80:55:5b:59:5f:b8:97:3e:0a:63:4a:42:
                    98:6b:51:1d:cf:79:25:81:96:8d:7a:d6:e5:63:0f:0f:
                    ad:f1:d8:66:b5:9f:9d:87:ed:5d:67:dc:8b:5b:0f:e4:
                    9c:d9:e0:2c:ba:77:a8:a9:1d:ad:be:e2:d0:b0:f8:ab:
                    99:de:8d:65:c9:53:eb:43:4c:03:9d:26:66:31:5b:d1:
                    5c:4c:a9:70:2e:34:6d:3e:d8:2a:71:e2:0b:60:16:4a:
                    ac:f5:42:a5:6c:e1:33:0a:90:98:09:1c:e3:c1:44:a4:
                    8d:32:47:88:51:7c:08:1b:06:10:1b:e5:67:0b:73:f3:
                    b2:77:91:17:83:85:83:11:e5:14:c5:6b:00:f6:7c:7f:
                    6d:aa:c7:b2:8a:43:f9:b1:a0:23:8a:23:2e:8d:8b:e9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        aa:2c:59:cf:6d:81:12:2c:70:12:ae:53:cf:e4:32:44:
        c7:63:ac:4b:79:ff:6d:0d:77:6a:94:b5:a2:4f:7f:9e:
        bc:0c:40:ae:bf:09:f7:ad:2a:1f:89:66:ae:9b:a0:7b:
        81:8b:57:fa:3e:e3:bb:3c:1a:44:bd:21:d2:92:9f:19:
        b8:dd:3d:9d:69:9c:39:b1:65:7c:e9:18:28:c6:aa:a7:
        5a:7e:9a:ee:ac:1c:5e:56:fa:d0:64:44:61:46:67:ca:
        b8:17:6f:61:21:b8:bb:a8:6e:69:cf:01:c7:d3:b2:93:
        26:9f:9a:13:60:6b:3a:8c:77:89:0b:1e:bc:a3:28:da:
        bc:30:4d:aa:b7:a2:1f:54:06:e7:b0:3b:f0:53:f0:ea:
        a7:20:ae:8f:a9:75:08:ed:79:7a:50:d4:1b:94:f8:2f:
        e4:1b:e2:c5:a4:02:b3:38:c2:61:d1:ba:90:ec:12:a2:
        f0:a1:69:37:cb:f8:17:02:f1:39:0a:35:a3:35:52:88:
        ac:84:3f:b1:a6:ad:f1:a2:a4:0e:5d:06:27:9d:1e:c8:
        81:92:ba:32:97:27:0e:03:93:dd:b4:47:a8:e4:3e:8b:
        7c:0e:d3:cd:ea:10:be:ff:19:db:3b:d1:84:8d:28:2a:
        4d:c3:47:f3:1f:78:a3:67:94:fb:aa:f5:eb:38:9a:61
    Fingerprint (SHA-256):
        53:B6:8E:57:CE:8A:23:0F:2D:FB:F6:D8:A9:E4:9D:3D:CD:0B:99:D7:5B:79:04:C0:F2:BC:2C:FD:11:4A:CC:53
    Fingerprint (SHA1):
        8E:A9:99:12:98:DE:6F:8A:5E:21:77:2C:1D:DF:33:52:28:4A:FA:8B
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11789: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA2.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11790: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA2.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161078 (0x1dee5eb6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:16:12 2017
            Not After : Mon May 02 16:16:12 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c8:6d:db:35:8a:9c:5f:44:35:f3:de:ed:0a:22:c0:08:
                    14:b7:42:0c:99:c9:aa:51:55:80:fd:62:e0:47:6f:c9:
                    4e:1c:bf:e3:66:a9:4c:d4:4e:1f:3b:64:53:cd:71:d6:
                    53:39:17:40:30:e4:cb:37:02:08:e3:68:cc:43:76:ab:
                    c7:96:7a:2b:c0:c7:2e:b9:83:8c:9d:c8:db:8d:5d:d1:
                    8e:9c:61:93:25:0d:6a:fd:a5:83:0c:63:dc:67:62:e7:
                    23:2a:9f:c7:6a:d0:d5:e3:59:13:f2:ef:be:21:0f:48:
                    f1:56:37:c2:2e:c8:81:24:f1:9d:d1:6f:42:39:bf:2d:
                    7c:19:a1:a8:83:b2:e2:90:7d:e6:98:7c:47:62:68:f5:
                    2c:c4:d0:23:dd:f2:2b:15:0b:a6:80:68:69:e3:95:9c:
                    78:ad:7b:70:9e:d2:6f:6f:7b:c9:68:ee:ad:86:af:24:
                    97:ba:7d:84:11:20:d3:94:81:23:49:85:d5:06:80:b2:
                    d9:83:d7:db:97:ba:cb:74:2c:79:ed:c0:39:5c:c0:ce:
                    c0:a0:07:85:e1:8f:c9:57:cd:b5:d5:5a:1d:39:11:25:
                    4d:8a:f3:55:fd:09:28:17:6d:d4:a1:53:23:64:87:40:
                    a2:5f:0e:76:58:75:84:b5:58:38:4b:67:07:57:9c:1f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:07:6d:2e:79:1b:f3:98:68:72:71:64:1f:59:10:5b:
        fa:64:d4:e3:a8:68:bb:ec:82:a0:ef:ea:e7:4e:1b:b4:
        57:c1:0f:b5:f6:e4:08:20:39:cf:8b:ca:b0:b8:11:26:
        cb:dc:ab:f8:9a:0d:1d:28:87:76:ae:9a:ba:09:36:07:
        e4:1b:95:b8:64:09:5c:68:f3:bc:59:d1:2a:f2:b0:33:
        13:cd:3d:6c:8f:df:c0:6f:ec:d0:f9:5d:c7:65:57:f7:
        90:95:b4:d7:98:75:1c:25:1e:21:fd:5e:ca:64:cb:09:
        fe:47:f4:f0:23:8e:d1:e7:66:1b:84:3a:67:ca:15:b2:
        03:27:ee:26:9c:59:c3:bd:1b:a3:5a:3d:12:7a:61:61:
        08:15:bb:62:80:02:76:b5:48:08:92:25:cc:2f:64:51:
        3d:65:ff:dc:d4:61:03:f2:7d:78:d1:52:34:38:f1:db:
        25:33:24:e1:7f:67:b0:de:1c:88:72:d9:0b:5e:a3:ba:
        48:33:1c:ce:83:b1:89:ab:a4:2d:20:9b:d2:6d:15:e0:
        fd:64:2f:b2:04:ed:da:75:e0:06:83:26:57:6b:21:eb:
        98:8f:d2:1f:47:01:86:9d:29:fe:60:8a:b2:2f:6f:d0:
        7d:9d:67:23:4b:6a:ab:58:30:fa:18:05:25:52:53:e8
    Fingerprint (SHA-256):
        33:2A:8E:16:FB:39:7E:9A:3B:36:D0:F4:8E:57:3A:06:7C:E8:AC:C3:7F:05:6E:21:B4:D4:0C:23:7C:C5:2D:AE
    Fingerprint (SHA1):
        DB:D1:46:C2:FE:7B:84:68:C0:77:F1:FF:DF:CB:82:28:75:FE:49:DF
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Returned value is 0, expected result is pass
chains.sh: #11791: Mapping: Verifying certificate(s)  UserCA2.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11792: Mapping2: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161080 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11793: Mapping2: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11794: Mapping2: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11795: Mapping2: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11796: Mapping2: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502161081   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11797: Mapping2: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11798: Mapping2: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11799: Mapping2: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11800: Mapping2: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502161082   --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
n
n
OID.1.0
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11801: Mapping2: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11802: Mapping2: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11803: Mapping2: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US"  -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11804: Mapping2: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i CA3Req.der -o CA3CA2.der -f CA2DB/dbpasswd -m 502161083   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11805: Mapping2: Creating certficate CA3CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate CA3CA2.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11806: Mapping2: Importing certificate CA3CA2.der to CA3DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11807: Mapping2: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11808: Mapping2: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i UserReq.der -o UserCA3.der -f CA3DB/dbpasswd -m 502161084   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11809: Mapping2: Creating certficate UserCA3.der signed by CA3  - PASSED
chains.sh: Importing certificate UserCA3.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11810: Mapping2: Importing certificate UserCA3.der to UserDB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11811: Mapping2: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "" -d AllDB -f AllDB/dbpasswd -i Root.der
chains.sh: #11812: Mapping2: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA1Root.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1Root.der
chains.sh: #11813: Mapping2: Importing certificate CA1Root.der to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA1.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA1.der
chains.sh: #11814: Mapping2: Importing certificate CA2CA1.der to AllDB database  - PASSED
chains.sh: Importing certificate CA3CA2.der to AllDB database
certutil -A -n CA3  -t "" -d AllDB -f AllDB/dbpasswd -i CA3CA2.der
chains.sh: #11815: Mapping2: Importing certificate CA3CA2.der to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t Root
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161080 (0x1dee5eb8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:16:17 2017
            Not After : Mon May 02 16:16:17 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    da:8b:bd:30:48:74:80:ce:c1:7b:b6:fd:64:b4:3f:db:
                    cd:62:d6:56:a5:51:da:36:a5:08:b9:09:95:cb:50:e8:
                    93:f3:99:99:78:2f:d0:3e:7a:67:02:f5:5e:63:cc:6c:
                    60:dc:81:92:e5:00:11:cc:7f:fd:1a:63:74:cc:1a:87:
                    60:3a:34:ab:49:af:7f:52:36:3d:77:8f:7e:cd:14:37:
                    15:9b:b7:a8:66:dd:ce:db:bd:8c:cb:9d:31:10:a5:4e:
                    53:69:86:94:d9:f2:52:df:89:df:17:c9:cf:86:c2:20:
                    b4:b1:12:57:cc:24:30:ef:0e:1c:0b:78:84:c0:14:1c:
                    59:6f:db:96:21:b8:5d:36:c6:86:76:fb:e2:67:b7:2a:
                    ea:fe:bf:d8:51:31:e3:db:ff:6d:00:8b:b3:78:89:ae:
                    53:d4:21:f5:38:8c:00:7c:77:8a:5c:1e:2c:c2:c0:20:
                    03:93:c1:50:d3:e6:d1:ea:c8:89:04:8e:68:2c:fa:31:
                    08:32:f9:2a:e8:c8:ce:70:a5:4d:0c:f1:e6:3d:4d:59:
                    d8:67:15:eb:a1:22:8e:0b:33:03:a3:3b:e7:87:bb:f8:
                    24:d2:f3:94:23:04:d7:ff:f9:42:67:45:11:5a:20:d3:
                    15:3d:ce:5c:a8:33:cc:bb:9d:07:3d:5b:9b:20:13:a9
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        88:04:33:48:86:51:b5:55:d0:8c:6b:35:c9:9f:16:f2:
        2a:66:a4:90:c5:dc:05:02:e8:32:31:c9:a4:5a:ab:b2:
        74:8f:29:3f:01:45:7b:47:d7:83:38:61:7a:82:23:83:
        5f:b4:4b:b5:af:6e:6e:3d:35:c6:20:cc:be:51:a6:4d:
        42:dc:48:da:01:e5:b0:af:75:8a:b7:11:ff:09:b7:a0:
        a9:53:ee:bc:f8:72:59:84:0d:2b:df:07:ec:af:d0:59:
        cf:15:bd:3c:96:cc:1d:cc:69:59:7e:01:b5:71:c4:4a:
        57:f5:44:51:41:45:94:d5:b5:3d:4a:c4:70:fe:e9:c0:
        bc:b2:b2:c6:9f:1c:f6:e7:eb:68:3c:bf:25:22:0a:80:
        d2:f8:24:47:e0:80:0f:43:3b:c6:26:5b:eb:0b:91:d0:
        b4:ff:47:85:b8:4d:ee:72:1b:55:4b:c8:25:e1:4b:b6:
        42:00:40:73:dc:9e:b8:9b:1a:90:ca:7c:64:1d:84:40:
        61:7c:2a:f5:1e:ed:1f:23:bf:79:d6:07:c5:93:ce:29:
        62:49:60:f7:8f:20:90:21:95:5c:26:c0:0b:26:fa:89:
        25:d7:e4:d4:cf:a6:9b:aa:6a:4a:f1:db:11:74:79:f3:
        a4:6b:05:3c:28:b2:a5:88:f6:db:4d:4b:21:52:82:5e
    Fingerprint (SHA-256):
        C1:57:61:90:68:EA:8C:FE:D1:8C:31:EB:73:DB:85:1A:E9:4A:91:79:61:ED:FF:8F:3C:E5:12:FD:ED:FC:92:DE
    Fingerprint (SHA1):
        C3:B1:10:D2:3C:FB:FE:2F:00:95:0A:AF:1E:E4:E0:03:DE:AD:F1:0F
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 4 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11816: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t Root
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. Root [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11817: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t Root - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA1
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161081 (0x1dee5eb9)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:16:19 2017
            Not After : Mon May 02 16:16:19 2022
        Subject: "CN=CA1 Intermediate,O=CA1,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bd:2a:dd:20:63:f1:dc:2f:b6:4f:2f:f0:cc:bc:24:a7:
                    05:42:08:4d:2a:06:3a:3d:00:e8:71:34:d9:5c:ee:c4:
                    b5:27:0d:7c:90:d1:1e:f9:6c:13:db:8d:cc:18:b9:1c:
                    97:2b:4c:e0:f4:9c:f9:28:12:66:fb:3b:d0:3b:a4:74:
                    5c:22:48:14:3d:fe:fd:ac:3e:60:93:e3:60:73:97:3f:
                    c6:fb:77:f2:19:ad:a5:93:44:73:ca:47:b6:d3:17:0d:
                    a4:fa:74:e4:82:89:40:d2:e1:fd:46:a9:bd:77:de:c5:
                    6b:3e:3f:ea:3c:be:81:ea:7c:7c:cc:af:af:7d:5f:e6:
                    de:96:3e:56:f8:2a:84:0f:a5:f3:a5:e9:ea:9b:76:ca:
                    0c:1a:d2:6b:4b:8c:70:8c:f9:e2:ce:30:0e:e0:dc:12:
                    cc:aa:2e:2c:54:9a:14:0b:27:a7:f6:73:94:4c:91:d4:
                    bf:41:77:9a:ab:cd:a4:08:ba:e4:7c:e6:ab:c9:f9:bd:
                    40:1e:4e:e9:e3:32:79:67:4e:60:65:e8:75:15:a2:f9:
                    f5:30:ae:d2:c0:81:6d:79:c2:15:6f:b9:c2:72:18:ba:
                    c9:ea:8e:76:79:1b:5b:28:95:25:57:db:fe:04:a9:83:
                    f6:4c:87:d7:45:4b:5c:98:7e:49:58:74:aa:99:3d:3f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policies
            Data: 
                Policy Name: User Defined Policy OID
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        b6:6c:99:49:32:6d:90:44:d2:24:6d:48:ad:dc:94:79:
        f7:d5:56:87:f8:d5:3f:48:9e:f2:8e:f8:57:9e:33:05:
        5f:03:09:a9:43:25:5d:f7:50:31:14:32:96:b3:9f:72:
        21:04:b4:02:5e:b2:19:71:d8:69:e9:d1:01:07:71:d1:
        8b:b1:7c:6a:54:15:eb:fb:ac:fb:16:44:42:36:ca:97:
        b3:cb:ea:9c:55:7c:bc:45:90:65:d7:15:1f:54:05:ae:
        d1:b5:13:34:6f:01:12:e0:ec:df:81:79:85:52:33:75:
        07:c8:75:17:fa:6d:0a:a8:7f:3b:ec:ca:8b:82:0d:09:
        b6:fb:46:b7:37:23:95:0a:02:97:aa:8f:a4:37:bf:c4:
        19:df:07:7c:cd:29:3d:17:3c:4e:63:67:fc:5e:93:9a:
        0f:53:c2:b0:bb:32:d3:93:af:e0:cc:f9:15:2e:7b:5e:
        d2:2f:36:1f:0b:a8:60:94:6e:31:96:cc:ea:f9:6e:35:
        cf:50:f4:92:c5:f1:61:bc:1b:08:77:4c:a9:f4:47:60:
        c9:a4:ad:ea:9a:a0:b9:0e:70:35:ff:2c:63:9a:c2:a8:
        90:bc:3b:1c:92:8a:36:2b:73:cc:59:08:bd:75:57:4c:
        a4:d0:f3:b6:ea:85:85:1d:79:60:23:5e:d5:9b:68:03
    Fingerprint (SHA-256):
        32:54:F0:ED:5F:5E:14:5D:48:C0:58:B9:34:44:AB:ED:03:F6:1A:AF:CD:03:0A:53:D9:41:52:DF:D8:FF:13:AE
    Fingerprint (SHA1):
        26:FA:35:C5:12:FD:8A:E1:AC:0D:83:E1:B9:45:82:BF:50:88:65:DB
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Certificate 3 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #11818: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA1
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. CA1 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11819: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA1 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.0  UserCA3.der  -t CA2
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA2 [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11820: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.0  -t CA2 - PASSED
chains.sh: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2
vfychain -d AllDB -pp -vv      -o OID.1.1  UserCA3.der  -t CA2
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161082 (0x1dee5eba)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:16:20 2017
            Not After : Mon May 02 16:16:20 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    af:09:be:f7:3d:c9:46:ca:47:f0:69:98:91:68:05:a4:
                    a9:d3:39:db:95:45:53:52:71:53:b4:b9:cf:5c:36:7d:
                    ee:d5:7d:3d:54:19:21:a7:3f:ef:20:40:d9:be:89:a7:
                    b6:6b:58:50:53:0b:86:8d:a7:78:52:48:b0:6c:74:ff:
                    c3:ec:71:e3:f5:e9:9b:e0:de:50:a8:a8:29:3e:06:3e:
                    d3:64:5d:67:81:af:19:21:60:17:99:1c:3d:c7:c5:a4:
                    64:0f:ec:4e:92:e6:64:7d:22:ca:a2:85:69:57:3c:b5:
                    95:37:2f:0b:1e:90:41:bc:f9:9e:6e:c0:ca:78:1b:3c:
                    a9:f0:d2:ba:62:25:e4:f4:b4:c1:12:dc:5b:f8:b2:23:
                    7e:37:b1:2b:76:98:38:21:ab:d1:04:10:2b:7f:26:a4:
                    d8:6a:79:41:5a:fb:f5:27:de:6b:e9:de:d6:b5:b7:78:
                    da:bd:08:eb:c0:64:8a:90:95:e9:05:86:3f:05:ad:be:
                    b7:f7:28:aa:e2:6d:85:60:5e:24:18:26:d5:38:d4:4d:
                    6b:c8:28:10:30:60:b6:5b:34:bc:4e:fa:f4:c0:16:06:
                    90:05:af:03:29:7b:47:6d:79:38:c7:3e:da:7d:9d:0a:
                    6a:3b:d4:80:de:4d:79:a3:a6:1f:42:38:60:e3:bb:11
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Policy Mappings
            Data: Sequence {
                Sequence {
                    OID.1.0
                    User Defined Policy OID
                }
            }
            Name: Certificate Policies
            Data: 
                Policy Name: OID.1.0
                    Policy Qualifier Name: PKIX CPS Pointer Qualifier
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        76:70:74:0f:50:6e:5f:97:62:f7:56:b8:3e:5c:51:0b:
        a1:30:63:18:6f:94:ae:42:50:16:49:cc:b0:15:34:f9:
        09:a4:e0:a3:e0:28:c0:c9:7e:7d:97:de:ca:d4:0d:48:
        dd:3d:5f:9c:0c:dd:d9:e3:f9:f9:3d:4b:2d:74:0e:6d:
        36:13:b8:1d:cb:3d:fc:83:ab:a0:2d:b0:c0:37:b7:e8:
        7d:a0:57:9d:2d:23:64:93:40:51:47:df:e1:74:a6:7c:
        cc:62:d6:82:17:08:cb:a6:b4:92:ac:ff:5b:b3:b4:e8:
        1b:bb:e0:3a:87:6c:c1:23:c6:5a:03:97:e5:f4:d3:ef:
        a3:ec:04:c9:03:e7:97:32:2e:6b:79:c5:45:7e:62:3b:
        2f:ed:b2:6f:6e:72:5b:15:47:73:d6:66:48:3a:91:42:
        2c:4a:a6:d2:1d:e6:29:40:11:3f:e4:15:06:17:e9:6c:
        79:42:fc:e0:5c:85:1c:3b:ef:82:c3:45:91:b1:e8:02:
        64:87:5c:61:95:ae:ea:e7:60:79:58:12:d7:16:da:76:
        35:61:78:e2:ce:92:36:4b:8a:b8:14:a2:ce:5e:4f:49:
        51:35:61:20:ea:41:2f:20:c1:5c:9a:6c:ec:d9:21:ef:
        a2:16:87:42:c5:fa:ba:a8:a2:87:f4:ae:57:ea:12:7d
    Fingerprint (SHA-256):
        86:F6:4E:BC:B2:37:BD:E7:41:B4:41:0B:17:19:03:C6:D9:FC:9B:75:81:4E:94:A1:8C:42:56:43:CD:72:E6:40
    Fingerprint (SHA1):
        EE:DD:F5:6C:90:42:57:EA:43:05:FE:D1:A3:A1:39:81:DE:8D:62:B6
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
        Email Flags:
        Object Signing Flags:
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #11821: Mapping2: Verifying certificate(s)  UserCA3.der with flags -d AllDB -pp      -o OID.1.1  -t CA2 - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11822: AIA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161085 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11823: AIA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11824: AIA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11825: AIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11826: AIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502161086   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11827: AIA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11828: AIA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11829: AIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11830: AIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502161087   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA1Root-502160864.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11831: AIA: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11832: AIA: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB UserDB
certutil -N -d UserDB -f UserDB/dbpasswd
chains.sh: #11833: AIA: Creating DB UserDB  - PASSED
chains.sh: Creating EE certifiate request UserReq.der
certutil -s "CN=User EE, O=User, C=US"  -R  -d UserDB -f UserDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o UserReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11834: AIA: Creating EE certifiate request UserReq.der  - PASSED
chains.sh: Creating certficate UserCA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i UserReq.der -o UserCA2.der -f CA2DB/dbpasswd -m 502161088   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11835: AIA: Creating certficate UserCA2.der signed by CA2  - PASSED
chains.sh: Importing certificate UserCA2.der to UserDB database
certutil -A -n User -t u,u,u -d UserDB -f UserDB/dbpasswd -i UserCA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11836: AIA: Importing certificate UserCA2.der to UserDB database  - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der
vfychain -d UserDB -pp -vv       UserCA2.der CA2CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA2 Intermediate,O=CA2,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA1 Intermediate,O=CA1,C=US
Returned value is 1, expected result is fail
chains.sh: #11837: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der
vfychain -d UserDB -pp -vv   -f    UserCA2.der CA2CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161085 (0x1dee5ebd)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:16:26 2017
            Not After : Mon May 02 16:16:26 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d4:95:b6:e2:59:6c:5a:37:11:53:19:42:d0:a1:0e:dd:
                    92:ae:9b:7d:74:d2:23:98:ff:d2:05:c4:fe:81:21:85:
                    1b:b8:5a:71:20:83:74:ef:a2:db:50:95:24:ff:c4:f7:
                    12:48:6d:44:7d:79:3f:52:e0:eb:4a:72:7a:12:b9:5d:
                    ac:7d:64:0b:fa:c1:77:db:28:be:65:64:98:f2:db:9a:
                    b9:03:62:63:5e:54:07:41:37:92:90:f7:cc:89:c9:02:
                    4d:91:7b:41:89:8a:e1:47:67:61:d6:cc:e2:aa:c4:f3:
                    35:51:c5:36:61:87:d2:14:fc:ad:98:02:02:5f:a3:89:
                    4e:3e:cf:fa:b9:68:5f:a2:29:c4:be:ce:c8:5c:11:b4:
                    32:86:09:d2:c3:d9:71:69:04:aa:0a:c2:48:75:78:20:
                    9b:eb:19:44:71:39:74:05:21:63:27:1d:9a:e6:c7:8c:
                    3b:a7:81:36:59:03:c9:e3:4a:c7:0b:23:ee:22:4b:65:
                    65:c6:1e:42:80:58:bb:50:6d:1c:49:6a:18:87:6b:66:
                    a7:d0:25:87:a9:61:d1:58:b3:c9:b0:ea:cb:9d:b0:e4:
                    c5:40:1f:63:c9:8e:13:f4:dc:72:98:68:a4:9a:9c:6c:
                    e2:32:fe:f6:9b:8c:a9:6f:8d:0f:38:27:7e:4f:77:8f
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        55:fd:1f:35:b2:91:a2:8b:ff:a5:6b:1f:14:41:fe:a5:
        9f:6c:3e:cf:c3:89:20:b1:73:86:bf:af:b7:32:46:03:
        4f:25:e4:bf:70:27:91:f4:84:70:70:55:b4:cf:56:99:
        a6:57:e6:00:24:7e:fd:ac:21:15:19:8f:bd:cd:5d:39:
        21:c8:ce:24:15:5a:6f:44:6f:51:21:f1:34:b8:2f:53:
        81:6c:d1:25:03:14:2c:79:ca:8a:54:80:b7:96:72:ed:
        c8:e7:48:36:4e:98:5b:73:0d:54:6d:25:eb:17:7a:49:
        d6:f8:87:37:d9:68:87:a2:35:02:5a:52:07:0b:da:98:
        65:04:dd:3e:68:2c:0b:e2:d9:dc:45:26:24:e5:3f:a5:
        44:52:b1:30:33:1d:08:58:e0:ab:c1:4d:cc:8f:77:50:
        fd:67:53:a5:00:82:e2:f0:b6:54:bc:92:01:e5:ae:ff:
        0e:b1:19:c3:fb:28:8a:c7:4c:48:e6:1f:bc:6d:fc:29:
        a6:2d:3f:e6:6b:f6:40:9a:84:f3:76:09:e6:b9:1d:b6:
        98:6f:d2:f2:00:10:1f:18:9b:c3:b2:69:fc:22:dc:bd:
        94:ba:cd:da:63:f9:79:da:14:94:01:3e:f6:29:bc:45:
        a8:38:3f:0b:96:fc:ac:a6:80:57:5c:f5:e2:36:cc:d9
    Fingerprint (SHA-256):
        56:3A:42:00:ED:61:4F:18:ED:38:5D:2F:3C:8F:A3:15:EC:9F:2E:33:F0:7D:AF:A3:27:6C:4E:F8:AC:26:BA:56
    Fingerprint (SHA1):
        E6:DE:1F:7E:B4:6A:6C:7A:B6:03:EE:10:52:71:F2:FC:77:0D:B5:AB
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=User EE,O=User,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #11838: AIA: Verifying certificate(s)  UserCA2.der CA2CA1.der with flags -d UserDB -pp   -f    -t Root.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11839: BridgeWithAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161089 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11840: BridgeWithAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11841: BridgeWithAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11842: BridgeWithAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161090 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11843: BridgeWithAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11844: BridgeWithAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11845: BridgeWithAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11846: BridgeWithAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502161091 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11847: BridgeWithAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11848: BridgeWithAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502161092 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11849: BridgeWithAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11850: BridgeWithAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11851: BridgeWithAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11852: BridgeWithAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11853: BridgeWithAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502161093   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502160865.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11854: BridgeWithAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11855: BridgeWithAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11856: BridgeWithAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11857: BridgeWithAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502161094   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11858: BridgeWithAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11859: BridgeWithAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11860: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161089 (0x1dee5ec1)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:16:33 2017
            Not After : Mon May 02 16:16:33 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    9a:1e:95:dc:d5:e2:cd:56:1c:80:e4:c7:e2:c0:62:b0:
                    69:e5:0b:49:06:49:a0:4d:a7:0f:3e:0f:fa:a7:ac:88:
                    fe:36:d2:ba:f3:a3:1c:ed:1c:05:d8:f3:d3:22:05:87:
                    4b:5d:0e:08:a5:b5:9f:b6:7e:4e:16:ba:3a:3b:e8:2a:
                    02:7d:52:a6:b1:d3:70:dd:75:49:50:3d:b5:da:59:0a:
                    4f:68:db:a4:fa:cc:b8:92:46:b4:95:e0:ec:10:49:7d:
                    3c:38:10:3e:d3:b1:70:73:66:87:01:7d:41:bf:db:c9:
                    0d:24:22:19:ba:01:46:14:41:0f:1d:85:45:0d:89:9e:
                    9f:db:2f:02:9f:70:f5:ed:10:b2:93:48:b5:26:17:f6:
                    c1:21:08:82:3d:6e:8f:c5:7d:59:6e:7a:ed:c4:26:53:
                    22:d1:bf:12:a6:f6:34:42:72:c9:35:58:90:af:c6:c0:
                    03:9d:2a:78:a7:65:49:7a:fe:9b:bd:c8:08:f0:db:24:
                    16:3f:91:e4:bd:1c:49:0a:3f:64:a5:6b:2f:ee:ad:24:
                    91:00:5f:d4:04:c3:2a:72:aa:cf:2d:6a:25:05:be:5d:
                    19:e2:8e:da:ec:35:ab:f5:e2:eb:42:5d:5e:1b:65:81:
                    af:86:74:bf:9f:be:21:91:a1:87:3e:e7:0f:5d:0e:db
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3a:ab:41:2d:32:bb:40:ae:71:40:0c:26:a8:75:70:6a:
        41:8a:6f:4b:49:57:81:62:ea:d3:12:44:d3:3b:3f:5e:
        53:9f:70:0c:b8:e7:2b:ea:c6:96:45:0a:69:43:64:8b:
        a1:e5:3a:35:a2:f1:b7:df:94:54:3f:01:5a:79:18:cb:
        54:58:b5:c9:e4:e9:bd:1c:5f:2e:9f:13:33:07:90:0d:
        39:66:81:18:a1:61:ba:45:5f:82:f1:f0:d5:96:26:9c:
        85:da:9e:95:36:c6:a4:a1:0e:a0:8c:50:78:90:69:39:
        7b:e2:e6:5e:50:f7:da:0c:b4:10:d8:0a:cc:26:79:8a:
        28:67:a8:7b:e1:6a:6e:f0:ee:ab:35:e2:66:aa:a0:c5:
        7d:30:b1:ed:bd:c8:a5:8b:15:97:7c:7b:4f:33:51:19:
        9d:22:d4:c1:d3:3f:e9:1a:59:c6:e2:f3:28:6e:97:d0:
        b1:6b:ec:66:ea:0c:bc:35:eb:fc:0c:ca:82:92:aa:ae:
        fb:97:1b:59:7b:c0:cb:ff:7a:e7:f4:82:90:e6:74:d4:
        c7:3d:39:f7:64:8c:42:c6:a5:16:83:c6:16:8e:62:00:
        79:a7:59:1a:da:6a:5b:f6:61:33:f1:b1:9f:d3:e1:17:
        1a:21:97:e2:55:65:b6:76:5a:00:b2:da:dd:e5:e4:04
    Fingerprint (SHA-256):
        6A:E1:49:3B:87:F8:1D:D1:7F:5B:1E:D8:1A:12:32:E6:48:73:49:F2:E1:3D:EA:C8:3B:B9:69:24:39:C7:D0:A8
    Fingerprint (SHA1):
        92:FA:E5:98:6A:59:96:C9:32:DC:2E:72:6A:23:5B:BE:F9:9E:E7:86
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11861: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161090 (0x1dee5ec2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:16:34 2017
            Not After : Mon May 02 16:16:34 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:bc:84:25:97:a5:5f:78:10:04:19:d1:37:80:a9:3e:
                    d0:c6:5b:f9:57:45:b2:db:26:cf:54:c1:d0:e7:6c:1f:
                    da:8e:18:50:72:30:88:8d:aa:38:f8:8e:0e:78:41:f7:
                    55:ab:4b:3d:d6:e0:0c:b2:d0:32:b6:75:3d:f3:f3:3b:
                    5f:f7:43:44:e3:08:ee:48:d0:cc:99:97:59:95:e9:e0:
                    40:6f:ff:04:82:3f:03:3b:37:2d:17:db:52:73:14:90:
                    4b:b9:0f:0f:73:9f:5d:e7:df:64:e2:7e:62:b6:39:f4:
                    e4:da:41:1b:0c:66:45:a1:07:d6:b3:de:1b:16:dd:87:
                    bd:bc:ed:ba:d4:a0:6f:10:ff:4c:69:77:87:fd:54:be:
                    d5:c8:a4:77:b5:0c:06:09:64:c0:0a:f0:2f:44:f1:fe:
                    e4:7b:9b:12:63:01:6a:b0:3f:92:6f:b1:a2:91:ac:2e:
                    06:2b:75:3c:8f:01:02:eb:bf:ac:e6:07:6b:a3:4f:cc:
                    64:a1:5c:0b:ff:0d:8a:fe:56:4c:91:af:84:51:37:e2:
                    61:6d:ec:56:fe:0f:3e:43:45:86:f7:e3:f1:d9:44:f1:
                    99:37:94:79:e0:d3:af:2f:ad:48:d9:ca:9d:e6:53:98:
                    b2:32:75:1a:1c:ab:da:ae:1a:10:7a:51:73:a7:b7:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:3b:f6:62:bf:3a:b7:f5:f3:8d:93:96:42:c6:6b:16:
        e2:36:1b:26:06:05:ee:39:46:65:c6:64:87:c6:28:06:
        ee:4a:02:20:b2:b1:72:0d:04:5e:f0:3b:81:b1:98:06:
        d3:f2:1a:4d:1f:05:19:59:84:12:d2:5e:c0:cb:af:4b:
        00:e4:8d:d4:85:4b:68:f6:16:54:52:86:3c:1b:5d:85:
        3a:b3:2a:92:7c:b6:d6:3a:90:43:5a:a9:cb:5f:0c:5b:
        1d:8b:6f:12:a8:f5:8e:a2:70:b2:0f:42:47:bd:55:bb:
        fc:e4:b4:81:16:54:c4:c0:92:6f:46:8f:0f:21:53:c4:
        8f:ea:6f:31:60:16:e3:78:57:9c:f3:90:07:82:fd:27:
        75:f3:31:5f:8f:0c:52:bc:ed:ca:0e:ef:05:57:69:86:
        7f:4a:07:4f:7f:01:02:1c:0a:b6:c1:6c:c1:10:f3:4b:
        28:b5:aa:5b:b6:ce:1b:7e:bc:83:83:74:9a:2c:6f:d4:
        4b:45:e8:31:4d:12:72:ac:ce:17:48:ce:2a:67:61:18:
        4e:9a:44:6d:24:5f:51:03:dc:84:99:89:44:63:ba:bf:
        e2:1c:7e:8e:7f:31:53:5b:43:d5:93:e3:4a:bd:cf:ac:
        43:0b:57:7d:b4:04:c5:86:3a:a4:b6:38:c7:bc:a8:81
    Fingerprint (SHA-256):
        DA:EE:24:9B:40:E2:C3:3B:D7:20:45:7C:79:F1:D6:45:03:20:D5:FF:09:93:C4:5D:EB:04:E0:FE:E9:47:B9:C9
    Fingerprint (SHA1):
        70:9D:5F:A6:BA:5C:2A:D5:C5:99:EF:A2:8D:C8:DB:0F:8E:88:A2:02
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11862: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161090 (0x1dee5ec2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:16:34 2017
            Not After : Mon May 02 16:16:34 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:bc:84:25:97:a5:5f:78:10:04:19:d1:37:80:a9:3e:
                    d0:c6:5b:f9:57:45:b2:db:26:cf:54:c1:d0:e7:6c:1f:
                    da:8e:18:50:72:30:88:8d:aa:38:f8:8e:0e:78:41:f7:
                    55:ab:4b:3d:d6:e0:0c:b2:d0:32:b6:75:3d:f3:f3:3b:
                    5f:f7:43:44:e3:08:ee:48:d0:cc:99:97:59:95:e9:e0:
                    40:6f:ff:04:82:3f:03:3b:37:2d:17:db:52:73:14:90:
                    4b:b9:0f:0f:73:9f:5d:e7:df:64:e2:7e:62:b6:39:f4:
                    e4:da:41:1b:0c:66:45:a1:07:d6:b3:de:1b:16:dd:87:
                    bd:bc:ed:ba:d4:a0:6f:10:ff:4c:69:77:87:fd:54:be:
                    d5:c8:a4:77:b5:0c:06:09:64:c0:0a:f0:2f:44:f1:fe:
                    e4:7b:9b:12:63:01:6a:b0:3f:92:6f:b1:a2:91:ac:2e:
                    06:2b:75:3c:8f:01:02:eb:bf:ac:e6:07:6b:a3:4f:cc:
                    64:a1:5c:0b:ff:0d:8a:fe:56:4c:91:af:84:51:37:e2:
                    61:6d:ec:56:fe:0f:3e:43:45:86:f7:e3:f1:d9:44:f1:
                    99:37:94:79:e0:d3:af:2f:ad:48:d9:ca:9d:e6:53:98:
                    b2:32:75:1a:1c:ab:da:ae:1a:10:7a:51:73:a7:b7:85
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        57:3b:f6:62:bf:3a:b7:f5:f3:8d:93:96:42:c6:6b:16:
        e2:36:1b:26:06:05:ee:39:46:65:c6:64:87:c6:28:06:
        ee:4a:02:20:b2:b1:72:0d:04:5e:f0:3b:81:b1:98:06:
        d3:f2:1a:4d:1f:05:19:59:84:12:d2:5e:c0:cb:af:4b:
        00:e4:8d:d4:85:4b:68:f6:16:54:52:86:3c:1b:5d:85:
        3a:b3:2a:92:7c:b6:d6:3a:90:43:5a:a9:cb:5f:0c:5b:
        1d:8b:6f:12:a8:f5:8e:a2:70:b2:0f:42:47:bd:55:bb:
        fc:e4:b4:81:16:54:c4:c0:92:6f:46:8f:0f:21:53:c4:
        8f:ea:6f:31:60:16:e3:78:57:9c:f3:90:07:82:fd:27:
        75:f3:31:5f:8f:0c:52:bc:ed:ca:0e:ef:05:57:69:86:
        7f:4a:07:4f:7f:01:02:1c:0a:b6:c1:6c:c1:10:f3:4b:
        28:b5:aa:5b:b6:ce:1b:7e:bc:83:83:74:9a:2c:6f:d4:
        4b:45:e8:31:4d:12:72:ac:ce:17:48:ce:2a:67:61:18:
        4e:9a:44:6d:24:5f:51:03:dc:84:99:89:44:63:ba:bf:
        e2:1c:7e:8e:7f:31:53:5b:43:d5:93:e3:4a:bd:cf:ac:
        43:0b:57:7d:b4:04:c5:86:3a:a4:b6:38:c7:bc:a8:81
    Fingerprint (SHA-256):
        DA:EE:24:9B:40:E2:C3:3B:D7:20:45:7C:79:F1:D6:45:03:20:D5:FF:09:93:C4:5D:EB:04:E0:FE:E9:47:B9:C9
    Fingerprint (SHA1):
        70:9D:5F:A6:BA:5C:2A:D5:C5:99:EF:A2:8D:C8:DB:0F:8E:88:A2:02
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11863: BridgeWithAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11864: BridgeWithHalfAIA: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161095 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11865: BridgeWithHalfAIA: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11866: BridgeWithHalfAIA: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11867: BridgeWithHalfAIA: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161096 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11868: BridgeWithHalfAIA: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11869: BridgeWithHalfAIA: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11870: BridgeWithHalfAIA: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11871: BridgeWithHalfAIA: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i BridgeReq.der -o BridgeArmy.der -f ArmyDB/dbpasswd -m 502161097 -7 Bridge@Army  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11872: BridgeWithHalfAIA: Creating certficate BridgeArmy.der signed by Army  - PASSED
chains.sh: Importing certificate BridgeArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11873: BridgeWithHalfAIA: Importing certificate BridgeArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i BridgeReq.der -o BridgeNavy.der -f NavyDB/dbpasswd -m 502161098 -7 Bridge@Navy  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11874: BridgeWithHalfAIA: Creating certficate BridgeNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate BridgeNavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11875: BridgeWithHalfAIA: Importing certificate BridgeNavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@Army,Bridge@Navy" -d BridgeDB > Bridge.p7
chains.sh: #11876: BridgeWithHalfAIA: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11877: BridgeWithHalfAIA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11878: BridgeWithHalfAIA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502161099   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-Bridge-502160866.p7
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11879: BridgeWithHalfAIA: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11880: BridgeWithHalfAIA: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11881: BridgeWithHalfAIA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11882: BridgeWithHalfAIA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502161100   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11883: BridgeWithHalfAIA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11884: BridgeWithHalfAIA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11885: BridgeWithHalfAIA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11886: BridgeWithHalfAIA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502161101   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-BridgeNavy-502160867.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #11887: BridgeWithHalfAIA: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11888: BridgeWithHalfAIA: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11889: BridgeWithHalfAIA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11890: BridgeWithHalfAIA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502161102   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11891: BridgeWithHalfAIA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11892: BridgeWithHalfAIA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der
vfychain -d EE1DB -pp -vv       EE1CA1.der CA1Bridge.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=CA1 Intermediate,O=CA1,C=US [Certificate Authority]:
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=Bridge Bridge,O=Bridge,C=US
Returned value is 1, expected result is fail
chains.sh: #11893: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp       -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161095 (0x1dee5ec7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:16:41 2017
            Not After : Mon May 02 16:16:41 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:86:04:12:30:df:fb:89:5b:d1:41:45:3b:3e:bc:85:
                    51:76:37:0d:dc:30:37:a9:95:de:5c:3a:49:0b:f1:be:
                    6b:30:8b:86:4d:a9:6a:ff:91:66:b7:b4:17:f1:88:7e:
                    61:c1:33:75:c1:f4:7e:78:53:d4:65:d5:46:c5:21:22:
                    73:96:a4:1a:58:b7:7e:b7:2a:bf:d3:a3:a5:18:95:96:
                    6d:a4:d0:57:fa:49:87:b1:56:2f:54:6f:64:83:8a:83:
                    f9:01:d2:31:2a:29:71:83:a8:25:e7:7f:65:29:1f:ee:
                    ba:2c:1b:ae:e8:fb:83:71:0a:f9:2e:99:99:46:af:81:
                    bf:0a:87:6b:29:52:7e:37:53:95:27:5c:6f:8f:0b:53:
                    51:8b:47:77:ba:46:32:80:59:e0:0a:44:f0:95:57:37:
                    ee:87:2e:b8:9e:6b:f4:53:04:1d:59:98:00:be:c1:26:
                    af:87:55:99:74:9b:62:a8:8a:42:04:70:be:80:27:d8:
                    17:72:b4:f0:6a:42:e3:8d:35:76:5c:50:c1:eb:34:de:
                    bf:7e:60:18:09:96:ac:17:63:0d:7e:a0:5e:4e:b1:c7:
                    1b:7d:5a:e8:bb:a1:ee:dd:86:a0:d7:d1:41:4f:79:9b:
                    be:ce:1a:2f:8b:34:50:ed:f1:01:de:49:e4:65:0d:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:27:16:8c:3b:77:82:39:2d:ef:dc:13:84:fb:0a:16:
        f0:55:47:f6:19:85:02:af:c2:0f:28:13:29:9c:74:ae:
        65:2f:f9:23:35:ca:e7:e5:16:7f:f0:43:ff:9c:29:32:
        a1:2b:87:2a:db:88:ef:d4:6e:00:72:67:ae:85:d2:bd:
        0f:51:cf:7f:a9:61:03:4f:51:f1:a0:0e:19:ba:d4:6c:
        38:f3:29:c2:37:f4:7d:4d:c8:60:4c:be:c1:fe:11:b6:
        34:ca:36:0c:d4:ae:1a:ad:23:47:8f:1c:b4:25:47:be:
        fe:c3:c5:f4:cf:c8:40:f0:27:8f:c1:9a:6a:ad:ba:17:
        ac:85:df:bf:dc:76:86:dc:b7:fb:c1:8f:af:19:04:fe:
        23:8f:6b:d6:05:41:d5:af:00:e9:2a:a7:2a:c7:8c:dd:
        90:22:52:ea:b2:b4:63:b2:90:fa:71:d7:c6:18:ed:86:
        38:b8:1b:cd:8f:9d:52:88:0f:c5:4d:26:fa:57:70:fa:
        ed:41:ed:d4:5b:58:0e:3a:38:d9:a2:a7:7a:83:c1:f4:
        3e:41:73:34:1e:65:88:aa:79:63:bf:df:bc:06:6f:c9:
        e3:40:3b:f8:7a:4a:76:77:08:d5:d7:e2:32:7f:10:1a:
        a1:fd:3b:80:d1:01:09:e6:b7:c5:d3:3d:5a:2d:2b:f3
    Fingerprint (SHA-256):
        5F:C2:32:27:71:E4:41:37:DE:75:F1:B9:AC:93:19:CF:C3:D4:EA:30:2D:19:2A:A5:76:B6:69:8D:77:9E:B9:ED
    Fingerprint (SHA1):
        D7:66:90:EC:E7:BC:2B:5C:8E:F4:81:63:B8:B1:DB:09:26:7D:BA:F6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11894: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161096 (0x1dee5ec8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:16:43 2017
            Not After : Mon May 02 16:16:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:b1:94:93:60:2b:90:b6:51:1a:8e:22:44:27:b1:f0:
                    79:21:38:52:1d:bf:0a:e6:10:08:b8:ed:4d:f8:c9:91:
                    18:e7:9b:dc:9d:48:cd:50:5e:7e:a1:29:f1:f0:c0:cc:
                    61:5c:0e:2b:97:e7:0a:e3:bc:a7:cd:f2:8b:82:79:02:
                    d4:97:c4:2d:07:08:f6:86:22:d5:2f:c6:11:19:43:ff:
                    52:67:d5:4c:04:ea:af:27:0f:70:83:29:c1:d4:8b:92:
                    f3:8f:0a:aa:14:fa:40:38:c8:15:c6:33:27:3e:16:cd:
                    66:f3:1a:7b:e3:a7:4c:d0:92:dc:44:45:37:0c:48:9f:
                    1c:03:35:8a:a6:9f:c8:5f:5a:f0:fc:b5:74:76:33:9a:
                    ee:58:d8:7f:68:0e:b2:b5:db:38:18:d8:61:8c:6f:5e:
                    0d:81:44:b5:fd:3f:04:cc:15:26:88:8e:04:26:28:58:
                    33:8b:cf:1b:24:a3:2a:e2:cc:43:74:26:09:6a:54:bc:
                    97:a9:f2:44:5d:ff:b7:77:e8:c3:90:fb:87:8b:2d:29:
                    b3:d6:1c:dc:5a:6d:03:10:91:ec:30:c3:d8:5f:4e:4e:
                    23:62:3d:57:1d:53:24:7f:75:8b:48:98:94:79:fb:1e:
                    6d:3c:32:05:69:13:96:74:8d:4f:f6:3f:27:83:1e:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:8b:22:a7:fa:71:87:8f:84:b8:e9:8b:0c:c8:ef:79:
        14:8c:6e:2e:0b:74:b3:bb:da:de:3d:cf:13:12:62:04:
        e1:c5:99:04:7b:16:40:a4:7c:97:58:5c:88:0b:54:19:
        d9:83:fc:73:d3:37:24:a1:d7:0d:f8:bf:54:9a:89:1e:
        bc:3c:b9:18:89:2f:e0:aa:26:86:e2:5c:52:37:48:0f:
        1d:7c:16:0c:cb:ae:26:d9:67:d1:7b:55:24:c0:94:34:
        21:7c:16:7f:69:b3:80:dd:da:16:35:5a:d3:ea:8b:68:
        95:37:8d:3d:d9:79:3e:b7:1d:08:7a:20:aa:a4:44:77:
        8c:2e:ce:50:c5:33:c6:b7:bc:40:96:46:ae:f4:0f:5e:
        49:72:a6:20:cd:f7:7f:5f:6d:1b:86:36:41:e9:25:ba:
        6f:0a:54:3a:77:f5:e7:c7:42:11:4d:6e:23:86:e1:54:
        37:76:58:f4:7b:d8:f6:0a:a1:40:2b:c4:1f:d3:ec:2c:
        33:09:79:2c:6d:65:c0:4f:84:7c:f1:44:9d:c5:6f:e1:
        60:1f:7a:67:13:af:0c:12:f4:bf:ac:f7:a7:9c:8e:d5:
        42:20:e2:58:d3:bc:4a:9e:cf:23:90:1c:97:b4:14:15:
        77:4b:cf:a6:d4:9d:25:be:ea:f5:56:07:91:f7:f3:d6
    Fingerprint (SHA-256):
        9E:BC:5B:3D:C4:D9:CC:FD:4F:53:E7:CD:60:E5:A5:DE:1D:7E:2D:4E:21:E8:B3:54:9C:B1:B0:09:D0:6C:80:FB
    Fingerprint (SHA1):
        25:60:B9:4F:04:D5:C6:27:89:00:30:F1:71:F9:BF:2D:B1:BE:E8:1F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11895: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE1CA1.der CA1Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161096 (0x1dee5ec8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:16:43 2017
            Not After : Mon May 02 16:16:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:b1:94:93:60:2b:90:b6:51:1a:8e:22:44:27:b1:f0:
                    79:21:38:52:1d:bf:0a:e6:10:08:b8:ed:4d:f8:c9:91:
                    18:e7:9b:dc:9d:48:cd:50:5e:7e:a1:29:f1:f0:c0:cc:
                    61:5c:0e:2b:97:e7:0a:e3:bc:a7:cd:f2:8b:82:79:02:
                    d4:97:c4:2d:07:08:f6:86:22:d5:2f:c6:11:19:43:ff:
                    52:67:d5:4c:04:ea:af:27:0f:70:83:29:c1:d4:8b:92:
                    f3:8f:0a:aa:14:fa:40:38:c8:15:c6:33:27:3e:16:cd:
                    66:f3:1a:7b:e3:a7:4c:d0:92:dc:44:45:37:0c:48:9f:
                    1c:03:35:8a:a6:9f:c8:5f:5a:f0:fc:b5:74:76:33:9a:
                    ee:58:d8:7f:68:0e:b2:b5:db:38:18:d8:61:8c:6f:5e:
                    0d:81:44:b5:fd:3f:04:cc:15:26:88:8e:04:26:28:58:
                    33:8b:cf:1b:24:a3:2a:e2:cc:43:74:26:09:6a:54:bc:
                    97:a9:f2:44:5d:ff:b7:77:e8:c3:90:fb:87:8b:2d:29:
                    b3:d6:1c:dc:5a:6d:03:10:91:ec:30:c3:d8:5f:4e:4e:
                    23:62:3d:57:1d:53:24:7f:75:8b:48:98:94:79:fb:1e:
                    6d:3c:32:05:69:13:96:74:8d:4f:f6:3f:27:83:1e:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:8b:22:a7:fa:71:87:8f:84:b8:e9:8b:0c:c8:ef:79:
        14:8c:6e:2e:0b:74:b3:bb:da:de:3d:cf:13:12:62:04:
        e1:c5:99:04:7b:16:40:a4:7c:97:58:5c:88:0b:54:19:
        d9:83:fc:73:d3:37:24:a1:d7:0d:f8:bf:54:9a:89:1e:
        bc:3c:b9:18:89:2f:e0:aa:26:86:e2:5c:52:37:48:0f:
        1d:7c:16:0c:cb:ae:26:d9:67:d1:7b:55:24:c0:94:34:
        21:7c:16:7f:69:b3:80:dd:da:16:35:5a:d3:ea:8b:68:
        95:37:8d:3d:d9:79:3e:b7:1d:08:7a:20:aa:a4:44:77:
        8c:2e:ce:50:c5:33:c6:b7:bc:40:96:46:ae:f4:0f:5e:
        49:72:a6:20:cd:f7:7f:5f:6d:1b:86:36:41:e9:25:ba:
        6f:0a:54:3a:77:f5:e7:c7:42:11:4d:6e:23:86:e1:54:
        37:76:58:f4:7b:d8:f6:0a:a1:40:2b:c4:1f:d3:ec:2c:
        33:09:79:2c:6d:65:c0:4f:84:7c:f1:44:9d:c5:6f:e1:
        60:1f:7a:67:13:af:0c:12:f4:bf:ac:f7:a7:9c:8e:d5:
        42:20:e2:58:d3:bc:4a:9e:cf:23:90:1c:97:b4:14:15:
        77:4b:cf:a6:d4:9d:25:be:ea:f5:56:07:91:f7:f3:d6
    Fingerprint (SHA-256):
        9E:BC:5B:3D:C4:D9:CC:FD:4F:53:E7:CD:60:E5:A5:DE:1D:7E:2D:4E:21:E8:B3:54:9C:B1:B0:09:D0:6C:80:FB
    Fingerprint (SHA1):
        25:60:B9:4F:04:D5:C6:27:89:00:30:F1:71:F9:BF:2D:B1:BE:E8:1F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11896: BridgeWithHalfAIA: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der BridgeArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. CN=EE2 EE,O=EE2,C=US :
  ERROR -8179: Peer's Certificate issuer is not recognized.
    CN=CA2 Intermediate,O=CA2,C=US
Returned value is 1, expected result is fail
chains.sh: #11897: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161095 (0x1dee5ec7)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:16:41 2017
            Not After : Mon May 02 16:16:41 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d9:86:04:12:30:df:fb:89:5b:d1:41:45:3b:3e:bc:85:
                    51:76:37:0d:dc:30:37:a9:95:de:5c:3a:49:0b:f1:be:
                    6b:30:8b:86:4d:a9:6a:ff:91:66:b7:b4:17:f1:88:7e:
                    61:c1:33:75:c1:f4:7e:78:53:d4:65:d5:46:c5:21:22:
                    73:96:a4:1a:58:b7:7e:b7:2a:bf:d3:a3:a5:18:95:96:
                    6d:a4:d0:57:fa:49:87:b1:56:2f:54:6f:64:83:8a:83:
                    f9:01:d2:31:2a:29:71:83:a8:25:e7:7f:65:29:1f:ee:
                    ba:2c:1b:ae:e8:fb:83:71:0a:f9:2e:99:99:46:af:81:
                    bf:0a:87:6b:29:52:7e:37:53:95:27:5c:6f:8f:0b:53:
                    51:8b:47:77:ba:46:32:80:59:e0:0a:44:f0:95:57:37:
                    ee:87:2e:b8:9e:6b:f4:53:04:1d:59:98:00:be:c1:26:
                    af:87:55:99:74:9b:62:a8:8a:42:04:70:be:80:27:d8:
                    17:72:b4:f0:6a:42:e3:8d:35:76:5c:50:c1:eb:34:de:
                    bf:7e:60:18:09:96:ac:17:63:0d:7e:a0:5e:4e:b1:c7:
                    1b:7d:5a:e8:bb:a1:ee:dd:86:a0:d7:d1:41:4f:79:9b:
                    be:ce:1a:2f:8b:34:50:ed:f1:01:de:49:e4:65:0d:19
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        ac:27:16:8c:3b:77:82:39:2d:ef:dc:13:84:fb:0a:16:
        f0:55:47:f6:19:85:02:af:c2:0f:28:13:29:9c:74:ae:
        65:2f:f9:23:35:ca:e7:e5:16:7f:f0:43:ff:9c:29:32:
        a1:2b:87:2a:db:88:ef:d4:6e:00:72:67:ae:85:d2:bd:
        0f:51:cf:7f:a9:61:03:4f:51:f1:a0:0e:19:ba:d4:6c:
        38:f3:29:c2:37:f4:7d:4d:c8:60:4c:be:c1:fe:11:b6:
        34:ca:36:0c:d4:ae:1a:ad:23:47:8f:1c:b4:25:47:be:
        fe:c3:c5:f4:cf:c8:40:f0:27:8f:c1:9a:6a:ad:ba:17:
        ac:85:df:bf:dc:76:86:dc:b7:fb:c1:8f:af:19:04:fe:
        23:8f:6b:d6:05:41:d5:af:00:e9:2a:a7:2a:c7:8c:dd:
        90:22:52:ea:b2:b4:63:b2:90:fa:71:d7:c6:18:ed:86:
        38:b8:1b:cd:8f:9d:52:88:0f:c5:4d:26:fa:57:70:fa:
        ed:41:ed:d4:5b:58:0e:3a:38:d9:a2:a7:7a:83:c1:f4:
        3e:41:73:34:1e:65:88:aa:79:63:bf:df:bc:06:6f:c9:
        e3:40:3b:f8:7a:4a:76:77:08:d5:d7:e2:32:7f:10:1a:
        a1:fd:3b:80:d1:01:09:e6:b7:c5:d3:3d:5a:2d:2b:f3
    Fingerprint (SHA-256):
        5F:C2:32:27:71:E4:41:37:DE:75:F1:B9:AC:93:19:CF:C3:D4:EA:30:2D:19:2A:A5:76:B6:69:8D:77:9E:B9:ED
    Fingerprint (SHA1):
        D7:66:90:EC:E7:BC:2B:5C:8E:F4:81:63:B8:B1:DB:09:26:7D:BA:F6
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11898: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161096 (0x1dee5ec8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:16:43 2017
            Not After : Mon May 02 16:16:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:b1:94:93:60:2b:90:b6:51:1a:8e:22:44:27:b1:f0:
                    79:21:38:52:1d:bf:0a:e6:10:08:b8:ed:4d:f8:c9:91:
                    18:e7:9b:dc:9d:48:cd:50:5e:7e:a1:29:f1:f0:c0:cc:
                    61:5c:0e:2b:97:e7:0a:e3:bc:a7:cd:f2:8b:82:79:02:
                    d4:97:c4:2d:07:08:f6:86:22:d5:2f:c6:11:19:43:ff:
                    52:67:d5:4c:04:ea:af:27:0f:70:83:29:c1:d4:8b:92:
                    f3:8f:0a:aa:14:fa:40:38:c8:15:c6:33:27:3e:16:cd:
                    66:f3:1a:7b:e3:a7:4c:d0:92:dc:44:45:37:0c:48:9f:
                    1c:03:35:8a:a6:9f:c8:5f:5a:f0:fc:b5:74:76:33:9a:
                    ee:58:d8:7f:68:0e:b2:b5:db:38:18:d8:61:8c:6f:5e:
                    0d:81:44:b5:fd:3f:04:cc:15:26:88:8e:04:26:28:58:
                    33:8b:cf:1b:24:a3:2a:e2:cc:43:74:26:09:6a:54:bc:
                    97:a9:f2:44:5d:ff:b7:77:e8:c3:90:fb:87:8b:2d:29:
                    b3:d6:1c:dc:5a:6d:03:10:91:ec:30:c3:d8:5f:4e:4e:
                    23:62:3d:57:1d:53:24:7f:75:8b:48:98:94:79:fb:1e:
                    6d:3c:32:05:69:13:96:74:8d:4f:f6:3f:27:83:1e:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:8b:22:a7:fa:71:87:8f:84:b8:e9:8b:0c:c8:ef:79:
        14:8c:6e:2e:0b:74:b3:bb:da:de:3d:cf:13:12:62:04:
        e1:c5:99:04:7b:16:40:a4:7c:97:58:5c:88:0b:54:19:
        d9:83:fc:73:d3:37:24:a1:d7:0d:f8:bf:54:9a:89:1e:
        bc:3c:b9:18:89:2f:e0:aa:26:86:e2:5c:52:37:48:0f:
        1d:7c:16:0c:cb:ae:26:d9:67:d1:7b:55:24:c0:94:34:
        21:7c:16:7f:69:b3:80:dd:da:16:35:5a:d3:ea:8b:68:
        95:37:8d:3d:d9:79:3e:b7:1d:08:7a:20:aa:a4:44:77:
        8c:2e:ce:50:c5:33:c6:b7:bc:40:96:46:ae:f4:0f:5e:
        49:72:a6:20:cd:f7:7f:5f:6d:1b:86:36:41:e9:25:ba:
        6f:0a:54:3a:77:f5:e7:c7:42:11:4d:6e:23:86:e1:54:
        37:76:58:f4:7b:d8:f6:0a:a1:40:2b:c4:1f:d3:ec:2c:
        33:09:79:2c:6d:65:c0:4f:84:7c:f1:44:9d:c5:6f:e1:
        60:1f:7a:67:13:af:0c:12:f4:bf:ac:f7:a7:9c:8e:d5:
        42:20:e2:58:d3:bc:4a:9e:cf:23:90:1c:97:b4:14:15:
        77:4b:cf:a6:d4:9d:25:be:ea:f5:56:07:91:f7:f3:d6
    Fingerprint (SHA-256):
        9E:BC:5B:3D:C4:D9:CC:FD:4F:53:E7:CD:60:E5:A5:DE:1D:7E:2D:4E:21:E8:B3:54:9C:B1:B0:09:D0:6C:80:FB
    Fingerprint (SHA1):
        25:60:B9:4F:04:D5:C6:27:89:00:30:F1:71:F9:BF:2D:B1:BE:E8:1F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11899: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der
vfychain -d EE1DB -pp -vv   -f    EE2CA2.der CA2Bridge.der BridgeArmy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161096 (0x1dee5ec8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:16:43 2017
            Not After : Mon May 02 16:16:43 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ca:b1:94:93:60:2b:90:b6:51:1a:8e:22:44:27:b1:f0:
                    79:21:38:52:1d:bf:0a:e6:10:08:b8:ed:4d:f8:c9:91:
                    18:e7:9b:dc:9d:48:cd:50:5e:7e:a1:29:f1:f0:c0:cc:
                    61:5c:0e:2b:97:e7:0a:e3:bc:a7:cd:f2:8b:82:79:02:
                    d4:97:c4:2d:07:08:f6:86:22:d5:2f:c6:11:19:43:ff:
                    52:67:d5:4c:04:ea:af:27:0f:70:83:29:c1:d4:8b:92:
                    f3:8f:0a:aa:14:fa:40:38:c8:15:c6:33:27:3e:16:cd:
                    66:f3:1a:7b:e3:a7:4c:d0:92:dc:44:45:37:0c:48:9f:
                    1c:03:35:8a:a6:9f:c8:5f:5a:f0:fc:b5:74:76:33:9a:
                    ee:58:d8:7f:68:0e:b2:b5:db:38:18:d8:61:8c:6f:5e:
                    0d:81:44:b5:fd:3f:04:cc:15:26:88:8e:04:26:28:58:
                    33:8b:cf:1b:24:a3:2a:e2:cc:43:74:26:09:6a:54:bc:
                    97:a9:f2:44:5d:ff:b7:77:e8:c3:90:fb:87:8b:2d:29:
                    b3:d6:1c:dc:5a:6d:03:10:91:ec:30:c3:d8:5f:4e:4e:
                    23:62:3d:57:1d:53:24:7f:75:8b:48:98:94:79:fb:1e:
                    6d:3c:32:05:69:13:96:74:8d:4f:f6:3f:27:83:1e:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:8b:22:a7:fa:71:87:8f:84:b8:e9:8b:0c:c8:ef:79:
        14:8c:6e:2e:0b:74:b3:bb:da:de:3d:cf:13:12:62:04:
        e1:c5:99:04:7b:16:40:a4:7c:97:58:5c:88:0b:54:19:
        d9:83:fc:73:d3:37:24:a1:d7:0d:f8:bf:54:9a:89:1e:
        bc:3c:b9:18:89:2f:e0:aa:26:86:e2:5c:52:37:48:0f:
        1d:7c:16:0c:cb:ae:26:d9:67:d1:7b:55:24:c0:94:34:
        21:7c:16:7f:69:b3:80:dd:da:16:35:5a:d3:ea:8b:68:
        95:37:8d:3d:d9:79:3e:b7:1d:08:7a:20:aa:a4:44:77:
        8c:2e:ce:50:c5:33:c6:b7:bc:40:96:46:ae:f4:0f:5e:
        49:72:a6:20:cd:f7:7f:5f:6d:1b:86:36:41:e9:25:ba:
        6f:0a:54:3a:77:f5:e7:c7:42:11:4d:6e:23:86:e1:54:
        37:76:58:f4:7b:d8:f6:0a:a1:40:2b:c4:1f:d3:ec:2c:
        33:09:79:2c:6d:65:c0:4f:84:7c:f1:44:9d:c5:6f:e1:
        60:1f:7a:67:13:af:0c:12:f4:bf:ac:f7:a7:9c:8e:d5:
        42:20:e2:58:d3:bc:4a:9e:cf:23:90:1c:97:b4:14:15:
        77:4b:cf:a6:d4:9d:25:be:ea:f5:56:07:91:f7:f3:d6
    Fingerprint (SHA-256):
        9E:BC:5B:3D:C4:D9:CC:FD:4F:53:E7:CD:60:E5:A5:DE:1D:7E:2D:4E:21:E8:B3:54:9C:B1:B0:09:D0:6C:80:FB
    Fingerprint (SHA1):
        25:60:B9:4F:04:D5:C6:27:89:00:30:F1:71:F9:BF:2D:B1:BE:E8:1F
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Returned value is 0, expected result is pass
chains.sh: #11900: BridgeWithHalfAIA: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeArmy.der with flags -d EE1DB -pp   -f    -t Navy.der - PASSED
chains.sh: Creating DB ArmyDB
certutil -N -d ArmyDB -f ArmyDB/dbpasswd
chains.sh: #11901: BridgeWithPolicyExtensionAndMapping: Creating DB ArmyDB  - PASSED
chains.sh: Creating Root CA Army
certutil -s "CN=Army ROOT CA, O=Army, C=US" -S -n Army  -t CTu,CTu,CTu -v 600 -x -d ArmyDB -1 -2 -5 -f ArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161103 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11902: BridgeWithPolicyExtensionAndMapping: Creating Root CA Army  - PASSED
chains.sh: Exporting Root CA Army.der
certutil -L -d ArmyDB -r -n Army -o Army.der
chains.sh: #11903: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Army.der  - PASSED
chains.sh: Creating DB NavyDB
certutil -N -d NavyDB -f NavyDB/dbpasswd
chains.sh: #11904: BridgeWithPolicyExtensionAndMapping: Creating DB NavyDB  - PASSED
chains.sh: Creating Root CA Navy
certutil -s "CN=Navy ROOT CA, O=Navy, C=US" -S -n Navy  -t CTu,CTu,CTu -v 600 -x -d NavyDB -1 -2 -5 -f NavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161104 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11905: BridgeWithPolicyExtensionAndMapping: Creating Root CA Navy  - PASSED
chains.sh: Exporting Root CA Navy.der
certutil -L -d NavyDB -r -n Navy -o Navy.der
chains.sh: #11906: BridgeWithPolicyExtensionAndMapping: Exporting Root CA Navy.der  - PASSED
chains.sh: Creating DB CAArmyDB
certutil -N -d CAArmyDB -f CAArmyDB/dbpasswd
chains.sh: #11907: BridgeWithPolicyExtensionAndMapping: Creating DB CAArmyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CAArmyReq.der
certutil -s "CN=CAArmy Intermediate, O=CAArmy, C=US"  -R -2 -d CAArmyDB -f CAArmyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CAArmyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11908: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CAArmyReq.der  - PASSED
chains.sh: Creating certficate CAArmyArmy.der signed by Army
certutil -C -c Army -v 60 -d ArmyDB -i CAArmyReq.der -o CAArmyArmy.der -f ArmyDB/dbpasswd -m 502161105   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11909: BridgeWithPolicyExtensionAndMapping: Creating certficate CAArmyArmy.der signed by Army  - PASSED
chains.sh: Importing certificate CAArmyArmy.der to CAArmyDB database
certutil -A -n CAArmy -t u,u,u -d CAArmyDB -f CAArmyDB/dbpasswd -i CAArmyArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11910: BridgeWithPolicyExtensionAndMapping: Importing certificate CAArmyArmy.der to CAArmyDB database  - PASSED
chains.sh: Creating DB CANavyDB
certutil -N -d CANavyDB -f CANavyDB/dbpasswd
chains.sh: #11911: BridgeWithPolicyExtensionAndMapping: Creating DB CANavyDB  - PASSED
chains.sh: Creating Intermediate certifiate request CANavyReq.der
certutil -s "CN=CANavy Intermediate, O=CANavy, C=US"  -R -2 -d CANavyDB -f CANavyDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CANavyReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11912: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CANavyReq.der  - PASSED
chains.sh: Creating certficate CANavyNavy.der signed by Navy
certutil -C -c Navy -v 60 -d NavyDB -i CANavyReq.der -o CANavyNavy.der -f NavyDB/dbpasswd -m 502161106   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11913: BridgeWithPolicyExtensionAndMapping: Creating certficate CANavyNavy.der signed by Navy  - PASSED
chains.sh: Importing certificate CANavyNavy.der to CANavyDB database
certutil -A -n CANavy -t u,u,u -d CANavyDB -f CANavyDB/dbpasswd -i CANavyNavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11914: BridgeWithPolicyExtensionAndMapping: Importing certificate CANavyNavy.der to CANavyDB database  - PASSED
chains.sh: Creating DB BridgeDB
certutil -N -d BridgeDB -f BridgeDB/dbpasswd
chains.sh: #11915: BridgeWithPolicyExtensionAndMapping: Creating DB BridgeDB  - PASSED
chains.sh: Creating Bridge certifiate request BridgeReq.der
certutil -s "CN=Bridge Bridge, O=Bridge, C=US"  -R -2 -d BridgeDB -f BridgeDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o BridgeReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11916: BridgeWithPolicyExtensionAndMapping: Creating Bridge certifiate request BridgeReq.der  - PASSED
chains.sh: Creating certficate BridgeCAArmy.der signed by CAArmy
certutil -C -c CAArmy -v 60 -d CAArmyDB -i BridgeReq.der -o BridgeCAArmy.der -f CAArmyDB/dbpasswd -m 502161107 -7 Bridge@CAArmy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.1.1
1
n
n
n
OID.1.1
OID.2.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11917: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCAArmy.der signed by CAArmy  - PASSED
chains.sh: Importing certificate BridgeCAArmy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCAArmy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11918: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCAArmy.der to BridgeDB database  - PASSED
chains.sh: Creating certficate BridgeCANavy.der signed by CANavy
certutil -C -c CANavy -v 60 -d CANavyDB -i BridgeReq.der -o BridgeCANavy.der -f CANavyDB/dbpasswd -m 502161108 -7 Bridge@CANavy  --extCP --extPM < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
y
OID.2.1
1
n
n
n
OID.2.1
OID.1.1
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
Enter an Object Identifier (dotted decimal format) for Issuer Domain Policy > Enter an Object Identifier for Subject Domain Policy > Enter another Policy Mapping [y/N]
Is this a critical extension [y/N]?
chains.sh: #11919: BridgeWithPolicyExtensionAndMapping: Creating certficate BridgeCANavy.der signed by CANavy  - PASSED
chains.sh: Importing certificate BridgeCANavy.der to BridgeDB database
certutil -A -n Bridge -t u,u,u -d BridgeDB -f BridgeDB/dbpasswd -i BridgeCANavy.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11920: BridgeWithPolicyExtensionAndMapping: Importing certificate BridgeCANavy.der to BridgeDB database  - PASSED
chains.sh: Generating PKCS7 package from BridgeDB database
cmsutil -O -r "Bridge@CAArmy,Bridge@CANavy" -d BridgeDB > Bridge.p7
chains.sh: #11921: BridgeWithPolicyExtensionAndMapping: Generating PKCS7 package from BridgeDB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11922: BridgeWithPolicyExtensionAndMapping: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11923: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA1Req.der -o CA1Bridge.der -f BridgeDB/dbpasswd -m 502161109   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.1
1
n
y
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11924: BridgeWithPolicyExtensionAndMapping: Creating certficate CA1Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA1Bridge.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11925: BridgeWithPolicyExtensionAndMapping: Importing certificate CA1Bridge.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11926: BridgeWithPolicyExtensionAndMapping: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11927: BridgeWithPolicyExtensionAndMapping: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Bridge.der signed by Bridge
certutil -C -c Bridge -v 60 -d BridgeDB -i CA2Req.der -o CA2Bridge.der -f BridgeDB/dbpasswd -m 502161110   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.1.0
1
n
y
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.1.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11928: BridgeWithPolicyExtensionAndMapping: Creating certficate CA2Bridge.der signed by Bridge  - PASSED
chains.sh: Importing certificate CA2Bridge.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Bridge.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11929: BridgeWithPolicyExtensionAndMapping: Importing certificate CA2Bridge.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11930: BridgeWithPolicyExtensionAndMapping: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11931: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502161111   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.1
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.1
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11932: BridgeWithPolicyExtensionAndMapping: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11933: BridgeWithPolicyExtensionAndMapping: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11934: BridgeWithPolicyExtensionAndMapping: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11935: BridgeWithPolicyExtensionAndMapping: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502161112   --extCP < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
OID.2.0
1
n
n
n
===
Enter a CertPolicy Object Identifier (dotted decimal format)
or "any" for AnyPolicy: > Choose the type of qualifier for policy: OID.2.0
	1 - CPS Pointer qualifier
	2 - User notice qualifier
	Any other number to finish
		Choice:  > Enter CPS pointer URI:  > Enter another policy qualifier [y/N]
Enter another PolicyInformation field [y/N]?
Is this a critical extension [y/N]?
chains.sh: #11936: BridgeWithPolicyExtensionAndMapping: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11937: BridgeWithPolicyExtensionAndMapping: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11938: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161103 (0x1dee5ecf)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Army ROOT CA,O=Army,C=US"
        Validity:
            Not Before: Tue May 02 16:16:54 2017
            Not After : Mon May 02 16:16:54 2067
        Subject: "CN=Army ROOT CA,O=Army,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b4:16:0f:af:da:05:5f:de:7d:85:bb:68:b8:5e:a0:fc:
                    d2:86:8b:5e:54:09:22:cd:c8:2c:43:38:c5:55:82:92:
                    3e:d4:05:71:ec:26:2a:d4:7f:e8:f8:6e:d5:08:f2:ba:
                    95:4a:da:0e:2f:3c:29:d1:c9:7c:f2:4d:d1:51:8c:ec:
                    e9:02:79:64:04:11:81:ab:ab:68:44:98:c2:06:2c:e0:
                    be:e7:5a:86:75:19:93:e1:43:9d:40:ac:34:4c:ab:1a:
                    91:28:15:0c:73:23:23:8d:db:76:a8:ef:45:73:c3:83:
                    8b:bb:57:a7:a3:04:3d:fa:2c:a6:be:95:28:1a:36:61:
                    02:2a:3f:dd:6d:82:fe:59:fa:4b:a1:86:fe:1a:24:e3:
                    80:1e:66:a2:12:68:be:24:4a:ce:b8:f3:3a:f3:da:cf:
                    40:d4:6a:82:ab:16:d4:08:dc:6e:a4:b0:53:61:30:ed:
                    6a:ad:e0:55:9c:49:14:86:ff:f5:0e:e3:58:5e:c5:22:
                    9f:65:2f:cb:73:64:50:73:a5:af:f7:53:92:d0:a7:23:
                    e2:de:e3:66:17:2c:d9:20:d4:04:43:c0:49:4c:b8:ec:
                    57:ea:24:94:fe:b6:d7:a3:df:8a:3b:8c:29:b7:20:f0:
                    a4:92:41:a3:ea:88:38:9d:06:80:90:b9:e6:46:93:21
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5f:b8:ab:6d:03:ad:e9:d8:91:8c:02:24:69:23:52:02:
        f1:4f:c3:16:35:f6:1f:ba:d3:96:c0:ad:c0:b0:b5:4f:
        01:3a:44:9d:b6:ff:f8:4a:d0:ae:67:ce:7e:f2:ff:b8:
        0d:ba:cb:f2:d4:e6:97:6d:46:fc:1d:f9:56:25:f8:d8:
        c0:e8:2a:61:0d:42:fc:22:ce:ab:16:37:61:91:49:1b:
        aa:8e:4a:e3:09:f4:0d:bb:be:37:37:b9:46:3d:56:0f:
        03:d8:d3:8b:75:44:14:dd:69:ae:92:ba:70:25:49:44:
        f8:b4:a8:87:bc:0d:40:bc:e9:91:4d:c4:c4:da:51:b0:
        55:7e:2c:f7:97:a9:f6:0b:7f:2d:1d:7e:ec:97:2a:0c:
        80:1d:9e:98:53:fe:75:eb:e1:ee:94:22:65:d7:63:53:
        3f:bc:6a:4e:27:21:8e:6d:79:6c:47:81:9d:6a:6e:f2:
        c4:a4:5d:ea:17:36:9f:06:bb:fa:42:b4:28:11:56:ba:
        9b:1c:39:d2:e0:c2:b6:47:f0:fc:26:83:44:fa:d1:02:
        1b:72:ca:a7:98:b6:59:ac:05:95:c5:a9:1b:aa:ff:38:
        08:f9:af:7d:6d:85:6e:9b:57:6c:34:be:03:0a:a6:3e:
        4e:f8:fc:3a:fc:ec:6c:01:0c:1d:8e:f3:81:ff:09:02
    Fingerprint (SHA-256):
        CE:0D:AC:25:0F:1C:B3:3A:12:C4:B1:D7:91:79:E1:C0:6F:F0:43:C1:33:C3:C9:A9:70:BC:0B:16:72:9A:C0:03
    Fingerprint (SHA1):
        1F:CF:3B:BD:AB:B9:5F:6A:BA:8E:C0:86:4A:57:CA:FC:EC:5E:1E:72
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CAArmy Intermediate,O=CAArmy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11939: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11940: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11941: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11942: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11943: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11944: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11945: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE1CA1.der CA1Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11946: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11947: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.1.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161104 (0x1dee5ed0)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Navy ROOT CA,O=Navy,C=US"
        Validity:
            Not Before: Tue May 02 16:16:56 2017
            Not After : Mon May 02 16:16:56 2067
        Subject: "CN=Navy ROOT CA,O=Navy,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:4e:d8:62:59:99:0c:39:f9:58:ef:e7:30:34:92:33:
                    3a:4a:21:51:4e:3c:5d:0b:7a:a1:bd:98:9a:83:40:7e:
                    0d:76:93:32:69:5b:a3:7d:f6:3e:88:e8:fd:df:5f:5b:
                    bf:95:a0:f3:e9:44:a4:e0:39:f1:9b:9e:b6:da:45:a3:
                    d2:07:cc:5d:23:8d:4c:aa:61:42:26:9e:3a:84:6f:fe:
                    01:d7:96:b9:e0:ce:1f:66:c6:87:d9:2c:fa:85:5e:66:
                    49:ff:e6:ff:68:81:2c:48:5d:d6:f9:97:89:2a:c1:83:
                    87:3d:9c:cd:f8:95:6f:d6:04:5b:9a:5b:69:66:c5:a2:
                    ac:8a:96:a7:9d:96:44:8e:26:24:0b:46:59:57:c1:3b:
                    ed:7c:71:a1:1b:7b:80:51:1a:63:37:e6:9f:da:ea:ac:
                    bf:d5:4f:a2:dc:cc:7e:57:b8:28:f3:45:42:10:81:21:
                    0a:4f:61:4a:15:7a:ba:41:14:d5:d1:4a:c9:02:90:53:
                    a5:2f:ab:c5:4e:c7:f7:c5:2d:ea:b1:20:a3:82:56:22:
                    6f:24:ee:ce:a3:01:63:68:80:d0:bf:d6:eb:e5:fe:33:
                    12:50:fd:70:0b:06:d7:08:53:b7:4b:56:be:19:27:7e:
                    a0:98:65:4b:6d:4a:70:bb:07:94:3a:ce:f9:df:6d:87
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        3b:c0:b0:e2:72:08:2e:56:c6:23:44:27:00:b1:46:d2:
        f5:43:31:e3:f8:47:cc:97:71:ee:b0:e3:ec:b7:1a:24:
        65:e4:f8:28:c1:cd:29:5b:c2:b1:b2:fa:ca:8b:15:26:
        71:8e:6c:b5:25:c4:b7:ee:14:93:af:63:73:a4:a5:15:
        a0:26:0a:6a:23:0f:95:3e:d3:46:c9:6b:47:61:41:ec:
        5d:9b:20:ea:4f:98:01:f6:54:42:73:99:dd:23:8a:b0:
        6e:d8:a5:b2:74:6a:d6:e5:f5:af:af:14:fc:dd:f1:d8:
        fc:8f:b9:23:43:0a:96:78:b8:86:37:f9:0e:df:08:2c:
        66:d6:71:8e:bc:c8:7a:de:12:4b:e0:28:4c:3b:3b:2a:
        d4:44:97:09:cc:bd:ac:88:cf:58:66:0e:5d:e9:5b:30:
        22:18:3e:30:30:6b:17:b3:0c:b0:d8:8c:a2:09:30:16:
        19:3c:ce:f7:bd:6f:e3:aa:e9:3a:bc:a7:bc:de:46:6a:
        7a:51:91:1a:f5:4c:00:38:8f:e1:db:87:2c:59:3f:c3:
        75:a0:ef:20:c1:87:e7:74:39:71:5d:87:a1:36:1d:7a:
        d0:00:ef:1a:2c:b6:68:8a:8d:75:09:15:34:67:66:51:
        68:3f:11:7f:0f:2c:de:85:4e:16:99:b3:61:a1:8a:89
    Fingerprint (SHA-256):
        42:D2:69:B0:A2:D3:18:9F:D4:33:2D:39:1D:75:E7:81:2A:C3:8E:27:D7:47:B3:E8:7A:90:14:A9:B1:99:12:1C
    Fingerprint (SHA1):
        1F:C3:E5:7F:0D:A5:4D:D7:C8:67:E1:E9:F6:90:D6:B4:59:95:67:58
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=Bridge Bridge,O=Bridge,C=US"
Certificate 4 Subject: "CN=CANavy Intermediate,O=CANavy,C=US"
Returned value is 0, expected result is pass
chains.sh: #11948: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.0  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der  -t Navy.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Navy ROOT CA,O=Navy,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11949: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCANavy.der CANavyNavy.der with flags  -pp      -o OID.2.1  -t Navy.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der
vfychain  -pp -vv      -o OID.1.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11950: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der
vfychain  -pp -vv      -o OID.1.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11951: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.1.1  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der
vfychain  -pp -vv      -o OID.2.0  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11952: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.0  -t Army.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der
vfychain  -pp -vv      -o OID.2.1  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der  -t Army.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 4. CN=Army ROOT CA,O=Army,C=US [Certificate Authority]:
  ERROR -8032: Cert chain fails policy validation
Returned value is 1, expected result is fail
chains.sh: #11953: BridgeWithPolicyExtensionAndMapping: Verifying certificate(s)  EE2CA2.der CA2Bridge.der BridgeCAArmy.der CAArmyArmy.der with flags  -pp      -o OID.2.1  -t Army.der - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #11954: RealCerts: Creating DB AllDB  - PASSED
chains.sh: Importing certificate TestCA.ca.cert to AllDB database
certutil -A -n TestCA.ca  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestCA.ca.cert
chains.sh: #11955: RealCerts: Importing certificate TestCA.ca.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser50.cert to AllDB database
certutil -A -n TestUser50  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert
chains.sh: #11956: RealCerts: Importing certificate TestUser50.cert to AllDB database  - PASSED
chains.sh: Importing certificate TestUser51.cert to AllDB database
certutil -A -n TestUser51  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert
chains.sh: #11957: RealCerts: Importing certificate TestUser51.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalRootCA.cert to AllDB database
certutil -A -n PayPalRootCA  -t "CT,C,C" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalRootCA.cert
chains.sh: #11958: RealCerts: Importing certificate PayPalRootCA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalICA.cert to AllDB database
certutil -A -n PayPalICA  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalICA.cert
chains.sh: #11959: RealCerts: Importing certificate PayPalICA.cert to AllDB database  - PASSED
chains.sh: Importing certificate PayPalEE.cert to AllDB database
certutil -A -n PayPalEE  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert
chains.sh: #11960: RealCerts: Importing certificate PayPalEE.cert to AllDB database  - PASSED
chains.sh: Importing certificate BrAirWaysBadSig.cert to AllDB database
certutil -A -n BrAirWaysBadSig  -t "" -d AllDB -f AllDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert
chains.sh: #11961: RealCerts: Importing certificate BrAirWaysBadSig.cert to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser50.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser50,E=TestUser50@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11962: RealCerts: Verifying certificate(s)  TestUser50.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/TestUser51.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Feb 20 16:25:05 2013
            Not After : Tue Feb 20 16:25:05 2063
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c4:58:78:2a:a3:8a:14:49:b6:2d:13:eb:e2:b0:e5:6a:
                    02:ff:7f:a3:29:87:eb:50:34:c0:2e:26:92:a0:ce:75:
                    28:86:62:62:88:0a:c5:a0:35:37:f4:f9:cc:a2:07:9c:
                    90:8b:0f:6b:c6:3b:b8:cb:6c:ad:bd:08:0a:3c:0d:be:
                    92:b6:be:72:ee:c3:53:10:04:bc:4d:c9:12:2c:3d:c8:
                    e8:66:01:fe:13:d3:94:ad:4a:be:ea:52:44:bb:c1:e2:
                    7b:c8:50:57:7b:ea:a0:eb:24:ba:7f:89:b8:12:57:a1:
                    cd:e0:5c:01:37:a7:27:85:b4:97:fd:99:56:85:40:c3
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        ba:fc:34:78:a1:c1:07:50:6c:48:42:c8:dd:fa:8c:59:
        d8:af:3d:4c:87:b8:54:93:20:63:e1:16:18:a7:fa:aa:
        b3:92:c4:1a:a6:e6:b8:9c:db:c0:c2:88:d3:c4:9d:c8:
        8b:26:b0:d0:6e:e8:be:8a:a5:83:e6:88:b7:0c:9a:d2:
        b7:0f:fd:32:77:a9:84:6d:9c:84:6f:b1:2e:49:20:eb:
        be:5d:5d:e6:a7:0a:f2:b5:5e:8e:fc:62:b2:30:43:b9:
        4b:05:b4:79:e8:cb:63:43:f9:6e:ca:42:1c:7e:ec:bd:
        37:84:8f:b7:bd:1f:d5:b3:dd:fe:01:98:78:37:45:65
    Fingerprint (SHA-256):
        E0:53:A5:70:5A:29:33:E1:E2:BB:1C:6E:CC:90:1C:74:EF:78:9B:7C:B9:C0:EB:47:23:E5:9D:3E:99:EF:41:65
    Fingerprint (SHA1):
        1A:47:38:A7:FC:C0:BC:A3:03:B4:7E:9A:24:73:96:37:A9:AB:66:40
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=TestUser51,E=TestUser51@bogus.com,O=BOGUS NSS,L=Mo
    untain View,ST=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #11963: RealCerts: Verifying certificate(s)  TestUser51.cert with flags -d AllDB -pp       - PASSED
chains.sh: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1 
vfychain -d AllDB -pp -vv      -o OID.2.16.840.1.114412.1.1  /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/PayPalEE.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:ac:5c:26:6a:0b:40:9b:8f:0b:79:f2:ae:46:25:77
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=
            DigiCert Inc,C=US"
        Validity:
            Not Before: Fri Nov 10 00:00:00 2006
            Not After : Mon Nov 10 00:00:00 2031
        Subject: "CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O
            =DigiCert Inc,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c6:cc:e5:73:e6:fb:d4:bb:e5:2d:2d:32:a6:df:e5:81:
                    3f:c9:cd:25:49:b6:71:2a:c3:d5:94:34:67:a2:0a:1c:
                    b0:5f:69:a6:40:b1:c4:b7:b2:8f:d0:98:a4:a9:41:59:
                    3a:d3:dc:94:d6:3c:db:74:38:a4:4a:cc:4d:25:82:f7:
                    4a:a5:53:12:38:ee:f3:49:6d:71:91:7e:63:b6:ab:a6:
                    5f:c3:a4:84:f8:4f:62:51:be:f8:c5:ec:db:38:92:e3:
                    06:e5:08:91:0c:c4:28:41:55:fb:cb:5a:89:15:7e:71:
                    e8:35:bf:4d:72:09:3d:be:3a:38:50:5b:77:31:1b:8d:
                    b3:c7:24:45:9a:a7:ac:6d:00:14:5a:04:b7:ba:13:eb:
                    51:0a:98:41:41:22:4e:65:61:87:81:41:50:a6:79:5c:
                    89:de:19:4a:57:d5:2e:e6:5d:1c:53:2c:7e:98:cd:1a:
                    06:16:a4:68:73:d0:34:04:13:5c:a1:71:d3:5a:7c:55:
                    db:5e:64:e1:37:87:30:56:04:e5:11:b4:29:80:12:f1:
                    79:39:88:a2:02:11:7c:27:66:b7:88:b7:78:f2:ca:0a:
                    a8:38:ab:0a:64:c2:bf:66:5d:95:84:c1:a1:25:1e:87:
                    5d:1a:50:0b:20:12:cc:41:bb:6e:0b:51:38:b8:4b:cb
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Certificate Signing
                    CRL Signing
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
            Name: Certificate Subject Key ID
            Data:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
            Name: Certificate Authority Key Identifier
            Key ID:
                b1:3e:c3:69:03:f8:bf:47:01:d4:98:26:1a:08:02:ef:
                63:64:2b:c3
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        1c:1a:06:97:dc:d7:9c:9f:3c:88:66:06:08:57:21:db:
        21:47:f8:2a:67:aa:bf:18:32:76:40:10:57:c1:8a:f3:
        7a:d9:11:65:8e:35:fa:9e:fc:45:b5:9e:d9:4c:31:4b:
        b8:91:e8:43:2c:8e:b3:78:ce:db:e3:53:79:71:d6:e5:
        21:94:01:da:55:87:9a:24:64:f6:8a:66:cc:de:9c:37:
        cd:a8:34:b1:69:9b:23:c8:9e:78:22:2b:70:43:e3:55:
        47:31:61:19:ef:58:c5:85:2f:4e:30:f6:a0:31:16:23:
        c8:e7:e2:65:16:33:cb:bf:1a:1b:a0:3d:f8:ca:5e:8b:
        31:8b:60:08:89:2d:0c:06:5c:52:b7:c4:f9:0a:98:d1:
        15:5f:9f:12:be:7c:36:63:38:bd:44:a4:7f:e4:26:2b:
        0a:c4:97:69:0d:e9:8c:e2:c0:10:57:b8:c8:76:12:91:
        55:f2:48:69:d8:bc:2a:02:5b:0f:44:d4:20:31:db:f4:
        ba:70:26:5d:90:60:9e:bc:4b:17:09:2f:b4:cb:1e:43:
        68:c9:07:27:c1:d2:5c:f7:ea:21:b9:68:12:9c:3c:9c:
        bf:9e:fc:80:5c:9b:63:cd:ec:47:aa:25:27:67:a0:37:
        f3:00:82:7d:54:d7:a9:f8:e9:2e:13:a3:77:e8:1f:4a
    Fingerprint (SHA-256):
        74:31:E5:F4:C3:C1:CE:46:90:77:4F:0B:61:E0:54:40:88:3B:A9:A0:1E:D0:0B:A6:AB:D7:80:6E:D3:B1:18:CF
    Fingerprint (SHA1):
        5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=paypal.com,OU=PayPal Production,O="PayPal, Inc.",L
    =San Jose,ST=California,C=US"
Certificate 2 Subject: "CN=DigiCert SHA2 High Assurance Server CA,OU=www.digi
    cert.com,O=DigiCert Inc,C=US"
Returned value is 0, expected result is pass
chains.sh: #11964: RealCerts: Verifying certificate(s)  PayPalEE.cert with flags -d AllDB -pp      -o OID.2.16.840.1.114412.1.1  - PASSED
chains.sh: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp      
vfychain -d AllDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/BrAirWaysBadSig.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 0. BrAirWaysBadSig :
  ERROR -8181: Peer's Certificate has expired.
Returned value is 1, expected result is fail
chains.sh: #11965: RealCerts: Verifying certificate(s)  BrAirWaysBadSig.cert with flags -d AllDB -pp       - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #11966: DSA: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root -k dsa -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161113 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #11967: DSA: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #11968: DSA: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #11969: DSA: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US" -k dsa -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11970: DSA: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA1Req.der -o CA1Root.der -f RootDB/dbpasswd -m 502161114   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11971: DSA: Creating certficate CA1Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA1Root.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11972: DSA: Importing certificate CA1Root.der to CA1DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #11973: DSA: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US" -k dsa -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11974: DSA: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE1Req.der -o EE1CA1.der -f CA1DB/dbpasswd -m 502161115   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11975: DSA: Creating certficate EE1CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE1CA1.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11976: DSA: Importing certificate EE1CA1.der to EE1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #11977: DSA: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US" -k dsa -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11978: DSA: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA2Req.der -o CA2Root.der -f RootDB/dbpasswd -m 502161116   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11979: DSA: Creating certficate CA2Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA2Root.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11980: DSA: Importing certificate CA2Root.der to CA2DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #11981: DSA: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US" -k rsa -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11982: DSA: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE2Req.der -o EE2CA2.der -f CA2DB/dbpasswd -m 502161117   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11983: DSA: Creating certficate EE2CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE2CA2.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11984: DSA: Importing certificate EE2CA2.der to EE2DB database  - PASSED
chains.sh: Creating DB CA3DB
certutil -N -d CA3DB -f CA3DB/dbpasswd
chains.sh: #11985: DSA: Creating DB CA3DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA3Req.der
certutil -s "CN=CA3 Intermediate, O=CA3, C=US" -k rsa -R -2 -d CA3DB -f CA3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11986: DSA: Creating Intermediate certifiate request CA3Req.der  - PASSED
chains.sh: Creating certficate CA3Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA3Req.der -o CA3Root.der -f RootDB/dbpasswd -m 502161118   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11987: DSA: Creating certficate CA3Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA3Root.der to CA3DB database
certutil -A -n CA3 -t u,u,u -d CA3DB -f CA3DB/dbpasswd -i CA3Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11988: DSA: Importing certificate CA3Root.der to CA3DB database  - PASSED
chains.sh: Creating DB EE3DB
certutil -N -d EE3DB -f EE3DB/dbpasswd
chains.sh: #11989: DSA: Creating DB EE3DB  - PASSED
chains.sh: Creating EE certifiate request EE3Req.der
certutil -s "CN=EE3 EE, O=EE3, C=US" -k dsa -R  -d EE3DB -f EE3DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE3Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11990: DSA: Creating EE certifiate request EE3Req.der  - PASSED
chains.sh: Creating certficate EE3CA3.der signed by CA3
certutil -C -c CA3 -v 60 -d CA3DB -i EE3Req.der -o EE3CA3.der -f CA3DB/dbpasswd -m 502161119   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11991: DSA: Creating certficate EE3CA3.der signed by CA3  - PASSED
chains.sh: Importing certificate EE3CA3.der to EE3DB database
certutil -A -n EE3 -t u,u,u -d EE3DB -f EE3DB/dbpasswd -i EE3CA3.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11992: DSA: Importing certificate EE3CA3.der to EE3DB database  - PASSED
chains.sh: Creating DB CA4DB
certutil -N -d CA4DB -f CA4DB/dbpasswd
chains.sh: #11993: DSA: Creating DB CA4DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA4Req.der
certutil -s "CN=CA4 Intermediate, O=CA4, C=US" -k rsa -R -2 -d CA4DB -f CA4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #11994: DSA: Creating Intermediate certifiate request CA4Req.der  - PASSED
chains.sh: Creating certficate CA4Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA4Req.der -o CA4Root.der -f RootDB/dbpasswd -m 502161120   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11995: DSA: Creating certficate CA4Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA4Root.der to CA4DB database
certutil -A -n CA4 -t u,u,u -d CA4DB -f CA4DB/dbpasswd -i CA4Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #11996: DSA: Importing certificate CA4Root.der to CA4DB database  - PASSED
chains.sh: Creating DB EE4DB
certutil -N -d EE4DB -f EE4DB/dbpasswd
chains.sh: #11997: DSA: Creating DB EE4DB  - PASSED
chains.sh: Creating EE certifiate request EE4Req.der
certutil -s "CN=EE4 EE, O=EE4, C=US" -k rsa -R  -d EE4DB -f EE4DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE4Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #11998: DSA: Creating EE certifiate request EE4Req.der  - PASSED
chains.sh: Creating certficate EE4CA4.der signed by CA4
certutil -C -c CA4 -v 60 -d CA4DB -i EE4Req.der -o EE4CA4.der -f CA4DB/dbpasswd -m 502161121   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #11999: DSA: Creating certficate EE4CA4.der signed by CA4  - PASSED
chains.sh: Importing certificate EE4CA4.der to EE4DB database
certutil -A -n EE4 -t u,u,u -d EE4DB -f EE4DB/dbpasswd -i EE4CA4.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12000: DSA: Importing certificate EE4CA4.der to EE4DB database  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12001: DSA: Creating DB AllDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE1CA1.der CA1Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161113 (0x1dee5ed9)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:17:12 2017
            Not After : Mon May 02 16:17:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    27:42:55:5d:9f:2c:0f:b5:be:d6:21:af:f0:00:02:e0:
                    bf:6b:d5:96:c3:a9:42:15:06:87:c1:ae:4c:ab:d7:0a:
                    83:6b:98:77:99:28:91:9f:74:3f:10:2b:5a:92:80:1d:
                    13:69:60:7a:f7:78:9d:99:91:43:1f:d6:42:7b:9b:af:
                    19:fb:3d:93:b6:90:e9:0a:e7:c0:db:41:93:3b:d3:b9:
                    c9:03:09:dc:f9:72:9b:5b:9e:dc:d5:3a:50:5b:23:f2:
                    17:14:d7:82:8b:a0:74:a9:c5:7f:83:4a:9c:b1:e0:15:
                    89:c5:92:c7:47:b0:2f:a2:3d:9f:39:99:22:d0:99:fd:
                    f7:67:ea:b8:ff:94:20:0e:40:34:26:18:8f:37:3d:5d:
                    87:04:b8:09:14:f2:cd:a0:45:32:39:74:ce:eb:98:f3:
                    f7:30:49:51:2f:a2:7e:47:a4:31:15:08:2e:6a:11:9e:
                    69:46:22:a7:5e:8d:65:3e:8a:2c:c3:44:bf:10:4c:51:
                    0d:0d:c4:d1:99:57:eb:88:56:b9:01:e2:7d:5d:b4:3e:
                    1e:66:40:52:c4:13:c4:9f:ce:82:f2:60:78:20:f4:c9:
                    df:d1:94:ed:2c:ad:69:e7:07:0e:18:7c:bc:ae:2f:7a:
                    e7:74:44:f5:a1:8a:56:48:7f:52:aa:d5:7a:d8:41:e8
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:c7:a7:93:d0:33:90:a6:dd:20:8a:70:
        b5:c1:19:37:d0:02:9f:e7:cf:96:eb:d7:dd:9d:39:c9:
        2c:02:1c:5d:53:2a:2c:e0:04:4f:34:0a:c6:d9:89:59:
        b5:74:ec:9c:b4:46:8a:19:bd:d1:b7:5a:11:b1:db
    Fingerprint (SHA-256):
        F1:AF:04:C1:B8:8D:07:A5:34:55:49:62:B2:94:C6:44:5E:60:1B:14:5E:F4:30:40:55:DE:CB:2D:E6:9B:CC:D1
    Fingerprint (SHA1):
        04:19:30:B9:46:8E:4C:A1:06:ED:63:00:24:82:CB:B2:12:1A:34:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12002: DSA: Verifying certificate(s)  EE1CA1.der CA1Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE2CA2.der CA2Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161113 (0x1dee5ed9)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:17:12 2017
            Not After : Mon May 02 16:17:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    27:42:55:5d:9f:2c:0f:b5:be:d6:21:af:f0:00:02:e0:
                    bf:6b:d5:96:c3:a9:42:15:06:87:c1:ae:4c:ab:d7:0a:
                    83:6b:98:77:99:28:91:9f:74:3f:10:2b:5a:92:80:1d:
                    13:69:60:7a:f7:78:9d:99:91:43:1f:d6:42:7b:9b:af:
                    19:fb:3d:93:b6:90:e9:0a:e7:c0:db:41:93:3b:d3:b9:
                    c9:03:09:dc:f9:72:9b:5b:9e:dc:d5:3a:50:5b:23:f2:
                    17:14:d7:82:8b:a0:74:a9:c5:7f:83:4a:9c:b1:e0:15:
                    89:c5:92:c7:47:b0:2f:a2:3d:9f:39:99:22:d0:99:fd:
                    f7:67:ea:b8:ff:94:20:0e:40:34:26:18:8f:37:3d:5d:
                    87:04:b8:09:14:f2:cd:a0:45:32:39:74:ce:eb:98:f3:
                    f7:30:49:51:2f:a2:7e:47:a4:31:15:08:2e:6a:11:9e:
                    69:46:22:a7:5e:8d:65:3e:8a:2c:c3:44:bf:10:4c:51:
                    0d:0d:c4:d1:99:57:eb:88:56:b9:01:e2:7d:5d:b4:3e:
                    1e:66:40:52:c4:13:c4:9f:ce:82:f2:60:78:20:f4:c9:
                    df:d1:94:ed:2c:ad:69:e7:07:0e:18:7c:bc:ae:2f:7a:
                    e7:74:44:f5:a1:8a:56:48:7f:52:aa:d5:7a:d8:41:e8
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:c7:a7:93:d0:33:90:a6:dd:20:8a:70:
        b5:c1:19:37:d0:02:9f:e7:cf:96:eb:d7:dd:9d:39:c9:
        2c:02:1c:5d:53:2a:2c:e0:04:4f:34:0a:c6:d9:89:59:
        b5:74:ec:9c:b4:46:8a:19:bd:d1:b7:5a:11:b1:db
    Fingerprint (SHA-256):
        F1:AF:04:C1:B8:8D:07:A5:34:55:49:62:B2:94:C6:44:5E:60:1B:14:5E:F4:30:40:55:DE:CB:2D:E6:9B:CC:D1
    Fingerprint (SHA1):
        04:19:30:B9:46:8E:4C:A1:06:ED:63:00:24:82:CB:B2:12:1A:34:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12003: DSA: Verifying certificate(s)  EE2CA2.der CA2Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE3CA3.der CA3Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161113 (0x1dee5ed9)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:17:12 2017
            Not After : Mon May 02 16:17:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    27:42:55:5d:9f:2c:0f:b5:be:d6:21:af:f0:00:02:e0:
                    bf:6b:d5:96:c3:a9:42:15:06:87:c1:ae:4c:ab:d7:0a:
                    83:6b:98:77:99:28:91:9f:74:3f:10:2b:5a:92:80:1d:
                    13:69:60:7a:f7:78:9d:99:91:43:1f:d6:42:7b:9b:af:
                    19:fb:3d:93:b6:90:e9:0a:e7:c0:db:41:93:3b:d3:b9:
                    c9:03:09:dc:f9:72:9b:5b:9e:dc:d5:3a:50:5b:23:f2:
                    17:14:d7:82:8b:a0:74:a9:c5:7f:83:4a:9c:b1:e0:15:
                    89:c5:92:c7:47:b0:2f:a2:3d:9f:39:99:22:d0:99:fd:
                    f7:67:ea:b8:ff:94:20:0e:40:34:26:18:8f:37:3d:5d:
                    87:04:b8:09:14:f2:cd:a0:45:32:39:74:ce:eb:98:f3:
                    f7:30:49:51:2f:a2:7e:47:a4:31:15:08:2e:6a:11:9e:
                    69:46:22:a7:5e:8d:65:3e:8a:2c:c3:44:bf:10:4c:51:
                    0d:0d:c4:d1:99:57:eb:88:56:b9:01:e2:7d:5d:b4:3e:
                    1e:66:40:52:c4:13:c4:9f:ce:82:f2:60:78:20:f4:c9:
                    df:d1:94:ed:2c:ad:69:e7:07:0e:18:7c:bc:ae:2f:7a:
                    e7:74:44:f5:a1:8a:56:48:7f:52:aa:d5:7a:d8:41:e8
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:c7:a7:93:d0:33:90:a6:dd:20:8a:70:
        b5:c1:19:37:d0:02:9f:e7:cf:96:eb:d7:dd:9d:39:c9:
        2c:02:1c:5d:53:2a:2c:e0:04:4f:34:0a:c6:d9:89:59:
        b5:74:ec:9c:b4:46:8a:19:bd:d1:b7:5a:11:b1:db
    Fingerprint (SHA-256):
        F1:AF:04:C1:B8:8D:07:A5:34:55:49:62:B2:94:C6:44:5E:60:1B:14:5E:F4:30:40:55:DE:CB:2D:E6:9B:CC:D1
    Fingerprint (SHA1):
        04:19:30:B9:46:8E:4C:A1:06:ED:63:00:24:82:CB:B2:12:1A:34:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE3 EE,O=EE3,C=US"
Certificate 2 Subject: "CN=CA3 Intermediate,O=CA3,C=US"
Returned value is 0, expected result is pass
chains.sh: #12004: DSA: Verifying certificate(s)  EE3CA3.der CA3Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der
vfychain -d AllDB -pp -vv       EE4CA4.der CA4Root.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161113 (0x1dee5ed9)
        Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:17:12 2017
            Not After : Mon May 02 16:17:12 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: ANSI X9.57 DSA Signature
                Args:
                    30:82:02:28:02:82:01:01:00:c6:2a:47:73:ea:78:fa:
                    65:47:69:39:10:08:55:6a:dd:bf:77:e1:9a:69:73:ba:
                    66:37:08:93:9e:db:5d:01:08:b8:3a:73:e9:85:5f:a7:
                    2b:63:7f:d0:c6:4c:dc:fc:8b:a6:03:c9:9c:80:5e:ec:
                    c6:21:23:f7:8e:a4:7b:77:83:02:44:f8:05:d7:36:52:
                    13:57:78:97:f3:7b:cf:1f:c9:2a:a4:71:9d:a8:d8:5d:
                    c5:3b:64:3a:72:60:62:b0:b8:f3:b1:e7:b9:76:df:74:
                    be:87:6a:d2:f1:a9:44:8b:63:76:4f:5d:21:63:b5:4f:
                    3c:7b:61:b2:f3:ea:c5:d8:ef:30:50:59:33:61:c0:f3:
                    6e:21:cf:15:35:4a:87:2b:c3:f6:5a:1f:24:22:c5:eb:
                    47:34:4a:1b:b5:2e:71:52:8f:2d:7d:a9:96:8a:7c:61:
                    db:c0:dc:f1:ca:28:69:1c:97:ad:ea:0d:9e:02:e6:e5:
                    7d:ad:e0:42:91:4d:fa:e2:81:16:2b:c2:96:3b:32:8c:
                    20:69:8b:5b:17:3c:f9:13:6c:98:27:1c:ca:cf:33:aa:
                    93:21:af:17:6e:5e:00:37:d9:34:8a:47:d2:1c:67:32:
                    60:b6:c7:b0:fd:32:90:93:32:aa:11:ba:23:19:39:6a:
                    42:7c:1f:b7:28:db:64:ad:d9:02:1d:00:e6:a3:c9:c6:
                    51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:1e:ba:4e:e6:
                    c8:90:98:1d:3a:95:f4:f1:02:82:01:00:70:32:58:5d:
                    b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:ac:18:41:64:
                    b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:1f:38:63:5e:
                    0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:92:16:06:59:
                    29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:7e:7b:1e:8b:
                    47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:3a:41:d4:f3:
                    1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:ed:6f:67:b0:
                    c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:1c:6e:2e:48:
                    ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:f5:39:d8:92:
                    90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:89:ea:94:2b:
                    56:33:73:58:48:bf:23:72:19:5f:19:ac:ff:09:c8:cd:
                    ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:85:cd:88:fe:
                    d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:c6:70:6b:ba:
                    77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:be:bd:71:ba:
                    0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:cd:bb:65:12:
                    cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:57:dd:77:32:
                    f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
            DSA Public Key:
                Prime:
                    c6:2a:47:73:ea:78:fa:65:47:69:39:10:08:55:6a:dd:
                    bf:77:e1:9a:69:73:ba:66:37:08:93:9e:db:5d:01:08:
                    b8:3a:73:e9:85:5f:a7:2b:63:7f:d0:c6:4c:dc:fc:8b:
                    a6:03:c9:9c:80:5e:ec:c6:21:23:f7:8e:a4:7b:77:83:
                    02:44:f8:05:d7:36:52:13:57:78:97:f3:7b:cf:1f:c9:
                    2a:a4:71:9d:a8:d8:5d:c5:3b:64:3a:72:60:62:b0:b8:
                    f3:b1:e7:b9:76:df:74:be:87:6a:d2:f1:a9:44:8b:63:
                    76:4f:5d:21:63:b5:4f:3c:7b:61:b2:f3:ea:c5:d8:ef:
                    30:50:59:33:61:c0:f3:6e:21:cf:15:35:4a:87:2b:c3:
                    f6:5a:1f:24:22:c5:eb:47:34:4a:1b:b5:2e:71:52:8f:
                    2d:7d:a9:96:8a:7c:61:db:c0:dc:f1:ca:28:69:1c:97:
                    ad:ea:0d:9e:02:e6:e5:7d:ad:e0:42:91:4d:fa:e2:81:
                    16:2b:c2:96:3b:32:8c:20:69:8b:5b:17:3c:f9:13:6c:
                    98:27:1c:ca:cf:33:aa:93:21:af:17:6e:5e:00:37:d9:
                    34:8a:47:d2:1c:67:32:60:b6:c7:b0:fd:32:90:93:32:
                    aa:11:ba:23:19:39:6a:42:7c:1f:b7:28:db:64:ad:d9
                Subprime:
                    e6:a3:c9:c6:51:92:8b:b3:98:8f:97:b8:31:0d:4a:03:
                    1e:ba:4e:e6:c8:90:98:1d:3a:95:f4:f1
                Base:
                    70:32:58:5d:b3:bf:c3:62:63:0b:f8:a5:e1:ed:eb:79:
                    ac:18:41:64:b3:da:4c:a7:92:63:b1:33:7c:cb:43:dc:
                    1f:38:63:5e:0e:6d:45:d1:c9:67:f3:cf:3d:2d:16:4e:
                    92:16:06:59:29:89:6f:54:ff:c5:71:c8:3a:95:84:b6:
                    7e:7b:1e:8b:47:9d:7a:3a:36:9b:70:2f:d1:bd:ef:e8:
                    3a:41:d4:f3:1f:81:c7:1f:96:7c:30:ab:f4:7a:ac:93:
                    ed:6f:67:b0:c9:5b:f3:83:9d:a0:d7:b9:01:ed:28:ae:
                    1c:6e:2e:48:ac:9f:7d:f3:00:48:ee:0e:fb:7e:5e:cb:
                    f5:39:d8:92:90:61:2d:1e:3c:d3:55:0d:34:d1:81:c4:
                    89:ea:94:2b:56:33:73:58:48:bf:23:72:19:5f:19:ac:
                    ff:09:c8:cd:ab:71:ef:9e:20:fd:e3:b8:27:9e:65:b1:
                    85:cd:88:fe:d4:d7:64:4d:e1:e8:a6:e5:96:c8:5d:9c:
                    c6:70:6b:ba:77:4e:90:4a:b0:96:c5:a0:9e:2c:01:03:
                    be:bd:71:ba:0a:6f:9f:e5:db:04:08:f2:9e:0f:1b:ac:
                    cd:bb:65:12:cf:77:c9:7d:be:94:4b:9c:5b:de:0d:fa:
                    57:dd:77:32:f0:5b:34:fd:19:95:33:60:87:e2:a2:f4
                PublicValue:
                    27:42:55:5d:9f:2c:0f:b5:be:d6:21:af:f0:00:02:e0:
                    bf:6b:d5:96:c3:a9:42:15:06:87:c1:ae:4c:ab:d7:0a:
                    83:6b:98:77:99:28:91:9f:74:3f:10:2b:5a:92:80:1d:
                    13:69:60:7a:f7:78:9d:99:91:43:1f:d6:42:7b:9b:af:
                    19:fb:3d:93:b6:90:e9:0a:e7:c0:db:41:93:3b:d3:b9:
                    c9:03:09:dc:f9:72:9b:5b:9e:dc:d5:3a:50:5b:23:f2:
                    17:14:d7:82:8b:a0:74:a9:c5:7f:83:4a:9c:b1:e0:15:
                    89:c5:92:c7:47:b0:2f:a2:3d:9f:39:99:22:d0:99:fd:
                    f7:67:ea:b8:ff:94:20:0e:40:34:26:18:8f:37:3d:5d:
                    87:04:b8:09:14:f2:cd:a0:45:32:39:74:ce:eb:98:f3:
                    f7:30:49:51:2f:a2:7e:47:a4:31:15:08:2e:6a:11:9e:
                    69:46:22:a7:5e:8d:65:3e:8a:2c:c3:44:bf:10:4c:51:
                    0d:0d:c4:d1:99:57:eb:88:56:b9:01:e2:7d:5d:b4:3e:
                    1e:66:40:52:c4:13:c4:9f:ce:82:f2:60:78:20:f4:c9:
                    df:d1:94:ed:2c:ad:69:e7:07:0e:18:7c:bc:ae:2f:7a:
                    e7:74:44:f5:a1:8a:56:48:7f:52:aa:d5:7a:d8:41:e8
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: ANSI X9.57 DSA Signature with SHA-1 Digest
    Signature:
        30:3d:02:1d:00:c7:a7:93:d0:33:90:a6:dd:20:8a:70:
        b5:c1:19:37:d0:02:9f:e7:cf:96:eb:d7:dd:9d:39:c9:
        2c:02:1c:5d:53:2a:2c:e0:04:4f:34:0a:c6:d9:89:59:
        b5:74:ec:9c:b4:46:8a:19:bd:d1:b7:5a:11:b1:db
    Fingerprint (SHA-256):
        F1:AF:04:C1:B8:8D:07:A5:34:55:49:62:B2:94:C6:44:5E:60:1B:14:5E:F4:30:40:55:DE:CB:2D:E6:9B:CC:D1
    Fingerprint (SHA1):
        04:19:30:B9:46:8E:4C:A1:06:ED:63:00:24:82:CB:B2:12:1A:34:79
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE4 EE,O=EE4,C=US"
Certificate 2 Subject: "CN=CA4 Intermediate,O=CA4,C=US"
Returned value is 0, expected result is pass
chains.sh: #12005: DSA: Verifying certificate(s)  EE4CA4.der CA4Root.der with flags -d AllDB -pp       -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12006: Revocation: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 10 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12007: Revocation: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12008: Revocation: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #12009: Revocation: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12010: Revocation: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 11   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12011: Revocation: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12012: Revocation: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12013: Revocation: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12014: Revocation: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 12   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12015: Revocation: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12016: Revocation: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #12017: Revocation: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12018: Revocation: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 13   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12019: Revocation: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12020: Revocation: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB EE12DB
certutil -N -d EE12DB -f EE12DB/dbpasswd
chains.sh: #12021: Revocation: Creating DB EE12DB  - PASSED
chains.sh: Creating EE certifiate request EE12Req.der
certutil -s "CN=EE12 EE, O=EE12, C=US"  -R  -d EE12DB -f EE12DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE12Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12022: Revocation: Creating EE certifiate request EE12Req.der  - PASSED
chains.sh: Creating certficate EE12CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE12Req.der -o EE12CA1.der -f CA1DB/dbpasswd -m 14   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12023: Revocation: Creating certficate EE12CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE12CA1.der to EE12DB database
certutil -A -n EE12 -t u,u,u -d EE12DB -f EE12DB/dbpasswd -i EE12CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12024: Revocation: Importing certificate EE12CA1.der to EE12DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12025: Revocation: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12026: Revocation: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 15   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12027: Revocation: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12028: Revocation: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #12029: Revocation: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12030: Revocation: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 16   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12031: Revocation: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12032: Revocation: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502161734Z
nextupdate=20180502161734Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 16:17:34 2017
    Next Update: Wed May 02 16:17:34 2018
    CRL Extensions:
chains.sh: #12033: Revocation: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502161734Z
nextupdate=20180502161734Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 16:17:34 2017
    Next Update: Wed May 02 16:17:34 2018
    CRL Extensions:
chains.sh: #12034: Revocation: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502161734Z
nextupdate=20180502161734Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 16:17:34 2017
    Next Update: Wed May 02 16:17:34 2018
    CRL Extensions:
chains.sh: #12035: Revocation: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502161735Z
nextupdate=20180502161735Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 16:17:35 2017
    Next Update: Wed May 02 16:17:35 2018
    CRL Extensions:
chains.sh: #12036: Revocation: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 14 issued by CA1
crlutil -M -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502161736Z
addcert 14 20170502161736Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 16:17:36 2017
    Next Update: Wed May 02 16:17:34 2018
    Entry 1 (0x1):
        Serial Number: 14 (0xe)
        Revocation Date: Tue May 02 16:17:36 2017
    CRL Extensions:
chains.sh: #12037: Revocation: Revoking certificate with SN 14 issued by CA1  - PASSED
chains.sh: Revoking certificate with SN 15 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502161737Z
addcert 15 20170502161737Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 16:17:37 2017
    Next Update: Wed May 02 16:17:34 2018
    Entry 1 (0x1):
        Serial Number: 15 (0xf)
        Revocation Date: Tue May 02 16:17:37 2017
    CRL Extensions:
chains.sh: #12038: Revocation: Revoking certificate with SN 15 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12039: Revocation: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12040: Revocation: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #12041: Revocation: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA0Root.der to AllDB database
certutil -A -n CA0  -t "" -d AllDB -f AllDB/dbpasswd -i CA0Root.der
chains.sh: #12042: Revocation: Importing certificate CA0Root.der to AllDB database  - PASSED
chains.sh: Importing CRL CA0.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA0.crl
chains.sh: #12043: Revocation: Importing CRL CA0.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA1CA0.der to AllDB database
certutil -A -n CA1  -t "" -d AllDB -f AllDB/dbpasswd -i CA1CA0.der
chains.sh: #12044: Revocation: Importing certificate CA1CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA1.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA1.crl
chains.sh: #12045: Revocation: Importing CRL CA1.crl to AllDB database  - PASSED
chains.sh: Importing certificate CA2CA0.der to AllDB database
certutil -A -n CA2  -t "" -d AllDB -f AllDB/dbpasswd -i CA2CA0.der
chains.sh: #12046: Revocation: Importing certificate CA2CA0.der to AllDB database  - PASSED
chains.sh: Importing CRL CA2.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i CA2.crl
chains.sh: #12047: Revocation: Importing CRL CA2.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:17:24 2017
            Not After : Mon May 02 16:17:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:45:55:ba:d9:51:3d:f4:55:d9:ea:66:c8:4c:2d:80:
                    71:c5:4b:9c:c8:26:85:d4:54:c1:96:4b:86:95:ac:35:
                    75:3c:b8:5c:f9:b4:87:63:cf:2e:21:df:30:09:d8:37:
                    8a:12:c1:56:d8:fa:30:53:fc:ce:a2:23:be:ac:9c:11:
                    da:1d:9a:fc:53:b3:7e:9c:49:56:0f:85:a6:a0:a1:06:
                    48:a8:93:41:1c:fe:b2:68:6e:11:7e:76:7c:da:d0:7b:
                    cb:b5:4b:f0:88:a8:3c:14:2a:08:7e:fe:cd:ee:70:25:
                    aa:fd:2f:39:44:e1:b3:05:34:20:8f:5a:06:ef:a1:41:
                    06:4d:af:c4:ae:0c:01:e6:35:12:6d:f4:f9:3f:92:46:
                    16:61:bb:d4:74:9b:25:fc:96:54:d1:f3:21:31:b1:c0:
                    df:cb:d9:fb:30:15:70:ad:2e:85:e6:f3:91:d8:1f:9a:
                    0a:8b:cc:f3:ed:60:46:26:63:e6:67:17:c6:1b:4f:ee:
                    af:74:18:7c:48:26:40:48:9d:07:69:73:24:7e:71:9b:
                    28:7b:09:d2:0c:7d:4e:81:e8:71:3f:cd:b2:c4:7f:09:
                    d1:a4:0f:a7:d5:8d:72:43:e3:28:37:db:41:6b:49:e6:
                    fd:2f:46:10:ca:f9:5b:fd:c1:17:c5:e2:0d:07:5f:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:6f:dc:d3:71:fe:84:db:df:25:45:51:49:26:53:d8:
        08:9c:13:22:8a:c5:ea:58:cc:42:d7:f0:db:ae:ba:db:
        47:d9:32:82:37:d8:61:c7:92:f5:76:a1:ea:cd:4d:dd:
        1d:7a:51:32:92:58:26:e3:52:15:8d:3f:ea:54:b0:83:
        ea:c7:aa:43:ea:e4:82:8f:85:18:23:a8:bb:d9:ba:7b:
        0f:97:03:a7:b0:08:97:e2:6e:38:f1:be:d4:70:6d:52:
        e4:2d:9f:db:32:1b:6c:45:74:a8:64:84:87:8e:1f:7d:
        64:db:0a:5a:eb:a2:f8:d8:33:7d:ff:f4:7e:d4:8e:9a:
        91:63:1d:ed:b8:b3:d5:bc:b7:eb:41:d8:d1:f6:f2:c0:
        29:4a:32:ff:d0:30:4c:24:0a:3e:8d:8f:e0:fa:ca:e7:
        04:37:23:b1:db:e4:98:96:89:23:c5:12:84:c7:4f:bc:
        a2:1e:a1:26:a8:c1:68:e4:e7:8e:9c:ed:33:6e:a3:c1:
        90:19:6d:70:00:c1:9a:c5:53:85:7c:6e:99:17:85:98:
        ca:30:c3:de:1f:f5:00:71:2a:77:a8:6a:93:da:e4:a1:
        94:1e:5f:5d:37:d6:ca:64:b2:56:d0:d0:22:64:13:d0:
        ea:6f:5e:a6:50:28:37:11:d8:19:41:d7:ae:7c:d1:3b
    Fingerprint (SHA-256):
        5C:E0:68:C1:81:0B:43:68:C4:CE:87:66:92:AA:0D:60:29:D5:5E:DB:A2:7E:1D:9A:B6:BA:C8:35:A9:92:20:CB
    Fingerprint (SHA1):
        71:B5:B6:DB:DA:80:97:38:A3:68:EE:31:D6:DB:F1:05:96:B0:3E:60
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12048: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -m crl     EE12CA1.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12049: Revocation: Verifying certificate(s)  EE12CA1.der with flags -d AllDB -pp   -g leaf -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE11CA1.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 10 (0xa)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:17:24 2017
            Not After : Mon May 02 16:17:24 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    bc:45:55:ba:d9:51:3d:f4:55:d9:ea:66:c8:4c:2d:80:
                    71:c5:4b:9c:c8:26:85:d4:54:c1:96:4b:86:95:ac:35:
                    75:3c:b8:5c:f9:b4:87:63:cf:2e:21:df:30:09:d8:37:
                    8a:12:c1:56:d8:fa:30:53:fc:ce:a2:23:be:ac:9c:11:
                    da:1d:9a:fc:53:b3:7e:9c:49:56:0f:85:a6:a0:a1:06:
                    48:a8:93:41:1c:fe:b2:68:6e:11:7e:76:7c:da:d0:7b:
                    cb:b5:4b:f0:88:a8:3c:14:2a:08:7e:fe:cd:ee:70:25:
                    aa:fd:2f:39:44:e1:b3:05:34:20:8f:5a:06:ef:a1:41:
                    06:4d:af:c4:ae:0c:01:e6:35:12:6d:f4:f9:3f:92:46:
                    16:61:bb:d4:74:9b:25:fc:96:54:d1:f3:21:31:b1:c0:
                    df:cb:d9:fb:30:15:70:ad:2e:85:e6:f3:91:d8:1f:9a:
                    0a:8b:cc:f3:ed:60:46:26:63:e6:67:17:c6:1b:4f:ee:
                    af:74:18:7c:48:26:40:48:9d:07:69:73:24:7e:71:9b:
                    28:7b:09:d2:0c:7d:4e:81:e8:71:3f:cd:b2:c4:7f:09:
                    d1:a4:0f:a7:d5:8d:72:43:e3:28:37:db:41:6b:49:e6:
                    fd:2f:46:10:ca:f9:5b:fd:c1:17:c5:e2:0d:07:5f:ef
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        9b:6f:dc:d3:71:fe:84:db:df:25:45:51:49:26:53:d8:
        08:9c:13:22:8a:c5:ea:58:cc:42:d7:f0:db:ae:ba:db:
        47:d9:32:82:37:d8:61:c7:92:f5:76:a1:ea:cd:4d:dd:
        1d:7a:51:32:92:58:26:e3:52:15:8d:3f:ea:54:b0:83:
        ea:c7:aa:43:ea:e4:82:8f:85:18:23:a8:bb:d9:ba:7b:
        0f:97:03:a7:b0:08:97:e2:6e:38:f1:be:d4:70:6d:52:
        e4:2d:9f:db:32:1b:6c:45:74:a8:64:84:87:8e:1f:7d:
        64:db:0a:5a:eb:a2:f8:d8:33:7d:ff:f4:7e:d4:8e:9a:
        91:63:1d:ed:b8:b3:d5:bc:b7:eb:41:d8:d1:f6:f2:c0:
        29:4a:32:ff:d0:30:4c:24:0a:3e:8d:8f:e0:fa:ca:e7:
        04:37:23:b1:db:e4:98:96:89:23:c5:12:84:c7:4f:bc:
        a2:1e:a1:26:a8:c1:68:e4:e7:8e:9c:ed:33:6e:a3:c1:
        90:19:6d:70:00:c1:9a:c5:53:85:7c:6e:99:17:85:98:
        ca:30:c3:de:1f:f5:00:71:2a:77:a8:6a:93:da:e4:a1:
        94:1e:5f:5d:37:d6:ca:64:b2:56:d0:d0:22:64:13:d0:
        ea:6f:5e:a6:50:28:37:11:d8:19:41:d7:ae:7c:d1:3b
    Fingerprint (SHA-256):
        5C:E0:68:C1:81:0B:43:68:C4:CE:87:66:92:AA:0D:60:29:D5:5E:DB:A2:7E:1D:9A:B6:BA:C8:35:A9:92:20:CB
    Fingerprint (SHA1):
        71:B5:B6:DB:DA:80:97:38:A3:68:EE:31:D6:DB:F1:05:96:B0:3E:60
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12050: Revocation: Verifying certificate(s)  EE11CA1.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der
vfychain -d AllDB -pp -vv   -g chain -m crl     EE21CA2.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12051: Revocation: Verifying certificate(s)  EE21CA2.der with flags -d AllDB -pp   -g chain -m crl     -t Root.der - PASSED
chains.sh: Creating DB RootDB
certutil -N -d RootDB -f RootDB/dbpasswd
chains.sh: #12052: CRLDP: Creating DB RootDB  - PASSED
chains.sh: Creating Root CA Root
certutil -s "CN=Root ROOT CA, O=Root, C=US" -S -n Root  -t CTu,CTu,CTu -v 600 -x -d RootDB -1 -2 -5 -f RootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161122 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12053: CRLDP: Creating Root CA Root  - PASSED
chains.sh: Exporting Root CA Root.der
certutil -L -d RootDB -r -n Root -o Root.der
chains.sh: #12054: CRLDP: Exporting Root CA Root.der  - PASSED
chains.sh: Creating DB CA0DB
certutil -N -d CA0DB -f CA0DB/dbpasswd
chains.sh: #12055: CRLDP: Creating DB CA0DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA0Req.der
certutil -s "CN=CA0 Intermediate, O=CA0, C=US"  -R -2 -d CA0DB -f CA0DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA0Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12056: CRLDP: Creating Intermediate certifiate request CA0Req.der  - PASSED
chains.sh: Creating certficate CA0Root.der signed by Root
certutil -C -c Root -v 60 -d RootDB -i CA0Req.der -o CA0Root.der -f RootDB/dbpasswd -m 502161123   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12057: CRLDP: Creating certficate CA0Root.der signed by Root  - PASSED
chains.sh: Importing certificate CA0Root.der to CA0DB database
certutil -A -n CA0 -t u,u,u -d CA0DB -f CA0DB/dbpasswd -i CA0Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12058: CRLDP: Importing certificate CA0Root.der to CA0DB database  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12059: CRLDP: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502160894.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12060: CRLDP: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA1Req.der -o CA1CA0.der -f CA0DB/dbpasswd -m 10   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502160868.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12061: CRLDP: Creating certficate CA1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA1CA0.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12062: CRLDP: Importing certificate CA1CA0.der to CA1DB database  - PASSED
chains.sh: Creating DB EE11DB
certutil -N -d EE11DB -f EE11DB/dbpasswd
chains.sh: #12063: CRLDP: Creating DB EE11DB  - PASSED
chains.sh: Creating EE certifiate request EE11Req.der
certutil -s "CN=EE11 EE, O=EE11, C=US"  -R  -d EE11DB -f EE11DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE11Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502160894.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12064: CRLDP: Creating EE certifiate request EE11Req.der  - PASSED
chains.sh: Creating certficate EE11CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i EE11Req.der -o EE11CA1.der -f CA1DB/dbpasswd -m 502161124   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12065: CRLDP: Creating certficate EE11CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate EE11CA1.der to EE11DB database
certutil -A -n EE11 -t u,u,u -d EE11DB -f EE11DB/dbpasswd -i EE11CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12066: CRLDP: Importing certificate EE11CA1.der to EE11DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12067: CRLDP: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502160894.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12068: CRLDP: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i CA2Req.der -o CA2CA0.der -f CA0DB/dbpasswd -m 20   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502160869.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12069: CRLDP: Creating certficate CA2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate CA2CA0.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12070: CRLDP: Importing certificate CA2CA0.der to CA2DB database  - PASSED
chains.sh: Creating DB EE21DB
certutil -N -d EE21DB -f EE21DB/dbpasswd
chains.sh: #12071: CRLDP: Creating DB EE21DB  - PASSED
chains.sh: Creating EE certifiate request EE21Req.der
certutil -s "CN=EE21 EE, O=EE21, C=US"  -R  -d EE21DB -f EE21DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE21Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12072: CRLDP: Creating EE certifiate request EE21Req.der  - PASSED
chains.sh: Creating certficate EE21CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE21Req.der -o EE21CA2.der -f CA2DB/dbpasswd -m 502161125   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12073: CRLDP: Creating certficate EE21CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE21CA2.der to EE21DB database
certutil -A -n EE21 -t u,u,u -d EE21DB -f EE21DB/dbpasswd -i EE21CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12074: CRLDP: Importing certificate EE21CA2.der to EE21DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12075: CRLDP: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502160894.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12076: CRLDP: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE1Req.der -o EE1CA0.der -f CA0DB/dbpasswd -m 30   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502160870.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12077: CRLDP: Creating certficate EE1CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE1CA0.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12078: CRLDP: Importing certificate EE1CA0.der to EE1DB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12079: CRLDP: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  -4 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0-502160894.crl
-1
-1
-1
n
n
===
Generating key.  This may take a few moments...
Enter the type of the distribution point name:
	1 - Full Name
	2 - Relative Name
	Any other number to finish
		Choice:  > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Select one of the following for the reason flags
	0 - unused
	1 - keyCompromise
	2 - caCompromise
	3 - affiliationChanged
	4 - superseded
	5 - cessationOfOperation
	6 - certificateHold
	Any other number to finish		Choice:  > Enter value for the CRL Issuer name:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Enter another value for the CRLDistributionPoint extension [y/N]?
Is this a critical extension [y/N]?
chains.sh: #12080: CRLDP: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2CA0.der signed by CA0
certutil -C -c CA0 -v 60 -d CA0DB -i EE2Req.der -o EE2CA0.der -f CA0DB/dbpasswd -m 40   --extAIA < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
1
7
http://localhost.localdomain:9600/localhost-17356-CA0Root-502160871.der
0
n
n
===
Enter access method type for Authority Information Access extension:
	1 - CA Issuers
	2 - OCSP
	Anyother number to finish
	Choice > 
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > 
Enter data:
Select one of the following general name type: 
	2 - rfc822Name
	3 - dnsName
	5 - directoryName
	7 - uniformResourceidentifier
	8 - ipAddress
	9 - registerID
	Any other number to finish
		Choice: > Add another location to the Authority Information Access extension [y/N]
Is this a critical extension [y/N]?
chains.sh: #12081: CRLDP: Creating certficate EE2CA0.der signed by CA0  - PASSED
chains.sh: Importing certificate EE2CA0.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2CA0.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12082: CRLDP: Importing certificate EE2CA0.der to EE2DB database  - PASSED
chains.sh: Create CRL for RootDB
crlutil -G -d RootDB -n Root -f RootDB/dbpasswd -o Root.crl
=== Crlutil input data ===
update=20170502161752Z
nextupdate=20180502161752Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=Root ROOT CA,O=Root,C=US"
    This Update: Tue May 02 16:17:52 2017
    Next Update: Wed May 02 16:17:52 2018
    CRL Extensions:
chains.sh: #12083: CRLDP: Create CRL for RootDB  - PASSED
chains.sh: Create CRL for CA0DB
crlutil -G -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502161753Z
nextupdate=20180502161753Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 16:17:53 2017
    Next Update: Wed May 02 16:17:53 2018
    CRL Extensions:
chains.sh: #12084: CRLDP: Create CRL for CA0DB  - PASSED
chains.sh: Create CRL for CA1DB
crlutil -G -d CA1DB -n CA1 -f CA1DB/dbpasswd -o CA1.crl
=== Crlutil input data ===
update=20170502161753Z
nextupdate=20180502161753Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
    This Update: Tue May 02 16:17:53 2017
    Next Update: Wed May 02 16:17:53 2018
    CRL Extensions:
chains.sh: #12085: CRLDP: Create CRL for CA1DB  - PASSED
chains.sh: Create CRL for CA2DB
crlutil -G -d CA2DB -n CA2 -f CA2DB/dbpasswd -o CA2.crl
=== Crlutil input data ===
update=20170502161753Z
nextupdate=20180502161753Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA2 Intermediate,O=CA2,C=US"
    This Update: Tue May 02 16:17:53 2017
    Next Update: Wed May 02 16:17:53 2018
    CRL Extensions:
chains.sh: #12086: CRLDP: Create CRL for CA2DB  - PASSED
chains.sh: Revoking certificate with SN 20 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502161754Z
addcert 20 20170502161754Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 16:17:54 2017
    Next Update: Wed May 02 16:17:53 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 16:17:54 2017
    CRL Extensions:
chains.sh: #12087: CRLDP: Revoking certificate with SN 20 issued by CA0  - PASSED
chains.sh: Revoking certificate with SN 40 issued by CA0
crlutil -M -d CA0DB -n CA0 -f CA0DB/dbpasswd -o CA0.crl
=== Crlutil input data ===
update=20170502161755Z
addcert 40 20170502161755Z
===
CRL Info:
:
    Version: 2 (0x1)
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Issuer: "CN=CA0 Intermediate,O=CA0,C=US"
    This Update: Tue May 02 16:17:55 2017
    Next Update: Wed May 02 16:17:53 2018
    Entry 1 (0x1):
        Serial Number: 20 (0x14)
        Revocation Date: Tue May 02 16:17:54 2017
    Entry 2 (0x2):
        Serial Number: 40 (0x28)
        Revocation Date: Tue May 02 16:17:55 2017
    CRL Extensions:
chains.sh: #12088: CRLDP: Revoking certificate with SN 40 issued by CA0  - PASSED
chains.sh: Creating DB AllDB
certutil -N -d AllDB -f AllDB/dbpasswd
chains.sh: #12089: CRLDP: Creating DB AllDB  - PASSED
chains.sh: Importing certificate Root.der to AllDB database
certutil -A -n Root  -t "CTu,CTu,CTu" -d AllDB -f AllDB/dbpasswd -i Root.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12090: CRLDP: Importing certificate Root.der to AllDB database  - PASSED
chains.sh: Importing CRL Root.crl to AllDB database
crlutil -I -d AllDB -f AllDB/dbpasswd -i Root.crl
chains.sh: #12091: CRLDP: Importing CRL Root.crl to AllDB database  - PASSED
chains.sh: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE11CA1.der CA1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161122 (0x1dee5ee2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:17:41 2017
            Not After : Mon May 02 16:17:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:fa:27:90:5a:3d:fb:ea:eb:e6:fe:bb:5b:27:6f:a3:
                    85:3f:e0:9d:63:d8:10:5d:8a:35:41:6a:96:a7:51:9e:
                    42:7d:1a:89:30:dc:c3:ad:07:81:69:2b:aa:74:91:34:
                    2f:72:03:86:f8:87:b3:2a:5a:f3:b4:51:3d:0b:5d:19:
                    2a:4d:11:5b:15:46:bb:31:d4:fc:02:ee:9a:73:e6:b1:
                    68:0b:14:1e:15:ff:ae:c7:10:fd:69:14:23:cd:30:96:
                    71:71:70:2c:94:ed:d9:f9:c1:75:60:eb:d7:f0:a9:ba:
                    f2:39:42:db:1b:21:01:0b:c4:d2:74:15:97:dd:45:31:
                    c4:35:5b:1c:08:c0:02:b6:f2:33:7b:92:14:47:34:76:
                    f9:93:39:c9:dc:62:57:d6:4d:2d:bf:00:77:18:2e:7c:
                    c5:7c:5b:e2:3b:ca:07:4c:fb:f9:6f:79:16:9c:7c:ab:
                    ac:8a:2f:d8:59:95:12:59:cd:83:7c:82:4c:93:13:b8:
                    74:37:7a:97:68:fd:c3:80:79:f8:21:d6:28:3a:9f:2e:
                    3f:51:0e:8b:d9:77:d6:58:da:f1:19:20:77:b8:79:26:
                    39:e3:c1:da:8c:ce:e9:08:73:94:c9:07:e3:00:72:c5:
                    ad:14:57:7c:f2:09:dd:e1:a2:a6:2c:21:88:14:d6:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:07:ff:01:38:6e:6f:ee:87:7a:b7:7e:59:6c:39:a7:
        d6:6c:46:ea:60:0b:cf:c2:61:9f:87:1c:7f:0c:8e:74:
        a1:7f:a2:e3:85:c5:87:be:dc:81:6a:c1:13:cf:7b:70:
        0d:fe:14:98:32:ce:2f:da:52:b1:84:36:6d:f2:b2:dd:
        cd:55:bf:7c:f1:e0:6f:0b:04:f2:87:25:e6:2e:8c:e5:
        96:c1:25:c5:c5:7a:23:1a:08:a1:4a:1e:85:47:e7:7f:
        c0:92:1d:e7:6d:77:60:49:a1:bd:23:f4:c3:93:71:18:
        7a:2c:75:cc:41:cf:95:43:29:59:99:1b:74:f5:55:83:
        ee:5b:a8:48:51:1a:71:17:fa:0c:1c:74:f3:20:8a:ba:
        3b:2e:df:e3:a4:da:12:51:bc:3a:58:e0:12:1e:e4:3e:
        4a:6d:47:4e:36:e0:00:37:ab:db:2c:a5:f2:a5:2d:3a:
        c6:cd:9b:4d:82:8e:f0:f2:f6:ef:3c:da:c2:b0:2c:2a:
        79:02:7b:96:38:5e:68:ad:fd:fc:df:7f:9d:43:74:45:
        52:73:84:85:50:89:f9:37:7f:74:37:73:d2:8a:82:1e:
        b5:c9:1c:c6:9c:47:45:97:22:00:d4:b8:6b:5c:2c:01:
        91:95:52:af:bd:2f:61:cd:d3:16:6e:f8:11:d5:53:27
    Fingerprint (SHA-256):
        22:FD:59:C8:28:6D:51:98:3C:A1:B0:B3:4D:12:58:0B:A8:13:FC:88:4A:A6:48:12:10:C0:D6:DD:1F:A7:F1:BF
    Fingerprint (SHA1):
        BA:18:54:D6:F2:F6:8A:C4:1E:DD:FB:A6:AC:B0:BB:A5:8F:D3:E3:6A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE11 EE,O=EE11,C=US"
Certificate 2 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Certificate 3 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12092: CRLDP: Verifying certificate(s)  EE11CA1.der CA1CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g chain -h requireFreshInfo -m crl -f    EE21CA2.der CA2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12093: CRLDP: Verifying certificate(s)  EE21CA2.der CA2CA0.der with flags -d AllDB -pp   -g chain -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE1CA0.der  -t Root.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161122 (0x1dee5ee2)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=Root ROOT CA,O=Root,C=US"
        Validity:
            Not Before: Tue May 02 16:17:41 2017
            Not After : Mon May 02 16:17:41 2067
        Subject: "CN=Root ROOT CA,O=Root,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b9:fa:27:90:5a:3d:fb:ea:eb:e6:fe:bb:5b:27:6f:a3:
                    85:3f:e0:9d:63:d8:10:5d:8a:35:41:6a:96:a7:51:9e:
                    42:7d:1a:89:30:dc:c3:ad:07:81:69:2b:aa:74:91:34:
                    2f:72:03:86:f8:87:b3:2a:5a:f3:b4:51:3d:0b:5d:19:
                    2a:4d:11:5b:15:46:bb:31:d4:fc:02:ee:9a:73:e6:b1:
                    68:0b:14:1e:15:ff:ae:c7:10:fd:69:14:23:cd:30:96:
                    71:71:70:2c:94:ed:d9:f9:c1:75:60:eb:d7:f0:a9:ba:
                    f2:39:42:db:1b:21:01:0b:c4:d2:74:15:97:dd:45:31:
                    c4:35:5b:1c:08:c0:02:b6:f2:33:7b:92:14:47:34:76:
                    f9:93:39:c9:dc:62:57:d6:4d:2d:bf:00:77:18:2e:7c:
                    c5:7c:5b:e2:3b:ca:07:4c:fb:f9:6f:79:16:9c:7c:ab:
                    ac:8a:2f:d8:59:95:12:59:cd:83:7c:82:4c:93:13:b8:
                    74:37:7a:97:68:fd:c3:80:79:f8:21:d6:28:3a:9f:2e:
                    3f:51:0e:8b:d9:77:d6:58:da:f1:19:20:77:b8:79:26:
                    39:e3:c1:da:8c:ce:e9:08:73:94:c9:07:e3:00:72:c5:
                    ad:14:57:7c:f2:09:dd:e1:a2:a6:2c:21:88:14:d6:61
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        33:07:ff:01:38:6e:6f:ee:87:7a:b7:7e:59:6c:39:a7:
        d6:6c:46:ea:60:0b:cf:c2:61:9f:87:1c:7f:0c:8e:74:
        a1:7f:a2:e3:85:c5:87:be:dc:81:6a:c1:13:cf:7b:70:
        0d:fe:14:98:32:ce:2f:da:52:b1:84:36:6d:f2:b2:dd:
        cd:55:bf:7c:f1:e0:6f:0b:04:f2:87:25:e6:2e:8c:e5:
        96:c1:25:c5:c5:7a:23:1a:08:a1:4a:1e:85:47:e7:7f:
        c0:92:1d:e7:6d:77:60:49:a1:bd:23:f4:c3:93:71:18:
        7a:2c:75:cc:41:cf:95:43:29:59:99:1b:74:f5:55:83:
        ee:5b:a8:48:51:1a:71:17:fa:0c:1c:74:f3:20:8a:ba:
        3b:2e:df:e3:a4:da:12:51:bc:3a:58:e0:12:1e:e4:3e:
        4a:6d:47:4e:36:e0:00:37:ab:db:2c:a5:f2:a5:2d:3a:
        c6:cd:9b:4d:82:8e:f0:f2:f6:ef:3c:da:c2:b0:2c:2a:
        79:02:7b:96:38:5e:68:ad:fd:fc:df:7f:9d:43:74:45:
        52:73:84:85:50:89:f9:37:7f:74:37:73:d2:8a:82:1e:
        b5:c9:1c:c6:9c:47:45:97:22:00:d4:b8:6b:5c:2c:01:
        91:95:52:af:bd:2f:61:cd:d3:16:6e:f8:11:d5:53:27
    Fingerprint (SHA-256):
        22:FD:59:C8:28:6D:51:98:3C:A1:B0:B3:4D:12:58:0B:A8:13:FC:88:4A:A6:48:12:10:C0:D6:DD:1F:A7:F1:BF
    Fingerprint (SHA1):
        BA:18:54:D6:F2:F6:8A:C4:1E:DD:FB:A6:AC:B0:BB:A5:8F:D3:E3:6A
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA0 Intermediate,O=CA0,C=US"
Returned value is 0, expected result is pass
chains.sh: #12094: CRLDP: Verifying certificate(s)  EE1CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der
vfychain -d AllDB -pp -vv   -g leaf -h requireFreshInfo -m crl -f    EE2CA0.der  -t Root.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. Root [Certificate Authority]:
  ERROR -8180: Peer's Certificate has been revoked.
  ERROR -8180: Peer's Certificate has been revoked.
Returned value is 1, expected result is fail
chains.sh: #12095: CRLDP: Verifying certificate(s)  EE2CA0.der with flags -d AllDB -pp   -g leaf -h requireFreshInfo -m crl -f    -t Root.der - PASSED
chains.sh: Creating DB RootCADB
certutil -N -d RootCADB -f RootCADB/dbpasswd
chains.sh: #12096: TrustAnchors: Creating DB RootCADB  - PASSED
chains.sh: Creating Root CA RootCA
certutil -s "CN=RootCA ROOT CA, O=RootCA, C=US" -S -n RootCA  -t CTu,CTu,CTu -v 600 -x -d RootCADB -1 -2 -5 -f RootCADB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161126 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12097: TrustAnchors: Creating Root CA RootCA  - PASSED
chains.sh: Exporting Root CA RootCA.der
certutil -L -d RootCADB -r -n RootCA -o RootCA.der
chains.sh: #12098: TrustAnchors: Exporting Root CA RootCA.der  - PASSED
chains.sh: Creating DB CA1DB
certutil -N -d CA1DB -f CA1DB/dbpasswd
chains.sh: #12099: TrustAnchors: Creating DB CA1DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA1Req.der
certutil -s "CN=CA1 Intermediate, O=CA1, C=US"  -R -2 -d CA1DB -f CA1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12100: TrustAnchors: Creating Intermediate certifiate request CA1Req.der  - PASSED
chains.sh: Creating certficate CA1RootCA.der signed by RootCA
certutil -C -c RootCA -v 60 -d RootCADB -i CA1Req.der -o CA1RootCA.der -f RootCADB/dbpasswd -m 502161127   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12101: TrustAnchors: Creating certficate CA1RootCA.der signed by RootCA  - PASSED
chains.sh: Importing certificate CA1RootCA.der to CA1DB database
certutil -A -n CA1 -t u,u,u -d CA1DB -f CA1DB/dbpasswd -i CA1RootCA.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12102: TrustAnchors: Importing certificate CA1RootCA.der to CA1DB database  - PASSED
chains.sh: Creating DB CA2DB
certutil -N -d CA2DB -f CA2DB/dbpasswd
chains.sh: #12103: TrustAnchors: Creating DB CA2DB  - PASSED
chains.sh: Creating Intermediate certifiate request CA2Req.der
certutil -s "CN=CA2 Intermediate, O=CA2, C=US"  -R -2 -d CA2DB -f CA2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o CA2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12104: TrustAnchors: Creating Intermediate certifiate request CA2Req.der  - PASSED
chains.sh: Creating certficate CA2CA1.der signed by CA1
certutil -C -c CA1 -v 60 -d CA1DB -i CA2Req.der -o CA2CA1.der -f CA1DB/dbpasswd -m 502161128   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12105: TrustAnchors: Creating certficate CA2CA1.der signed by CA1  - PASSED
chains.sh: Importing certificate CA2CA1.der to CA2DB database
certutil -A -n CA2 -t u,u,u -d CA2DB -f CA2DB/dbpasswd -i CA2CA1.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12106: TrustAnchors: Importing certificate CA2CA1.der to CA2DB database  - PASSED
chains.sh: Creating DB EE1DB
certutil -N -d EE1DB -f EE1DB/dbpasswd
chains.sh: #12107: TrustAnchors: Creating DB EE1DB  - PASSED
chains.sh: Creating EE certifiate request EE1Req.der
certutil -s "CN=EE1 EE, O=EE1, C=US"  -R  -d EE1DB -f EE1DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE1Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12108: TrustAnchors: Creating EE certifiate request EE1Req.der  - PASSED
chains.sh: Creating certficate EE1CA2.der signed by CA2
certutil -C -c CA2 -v 60 -d CA2DB -i EE1Req.der -o EE1CA2.der -f CA2DB/dbpasswd -m 502161129   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12109: TrustAnchors: Creating certficate EE1CA2.der signed by CA2  - PASSED
chains.sh: Importing certificate EE1CA2.der to EE1DB database
certutil -A -n EE1 -t u,u,u -d EE1DB -f EE1DB/dbpasswd -i EE1CA2.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12110: TrustAnchors: Importing certificate EE1CA2.der to EE1DB database  - PASSED
chains.sh: Creating DB OtherRootDB
certutil -N -d OtherRootDB -f OtherRootDB/dbpasswd
chains.sh: #12111: TrustAnchors: Creating DB OtherRootDB  - PASSED
chains.sh: Creating Root CA OtherRoot
certutil -s "CN=OtherRoot ROOT CA, O=OtherRoot, C=US" -S -n OtherRoot  -t CTu,CTu,CTu -v 600 -x -d OtherRootDB -1 -2 -5 -f OtherRootDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -m 502161130 < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
5
6
9
n
y
-1
n
5
6
7
9
n
===
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > 		0 - SSL Client
		1 - SSL Server
		2 - S/MIME
		3 - Object Signing
		4 - Reserved for future use
		5 - SSL CA
		6 - S/MIME CA
		7 - Object Signing CA
		Other to finish
 > Notice: Trust flag u is set automatically if the private key is present.
Is this a critical extension [y/N]?
chains.sh: #12112: TrustAnchors: Creating Root CA OtherRoot  - PASSED
chains.sh: Exporting Root CA OtherRoot.der
certutil -L -d OtherRootDB -r -n OtherRoot -o OtherRoot.der
chains.sh: #12113: TrustAnchors: Exporting Root CA OtherRoot.der  - PASSED
chains.sh: Creating DB OtherIntermediateDB
certutil -N -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd
chains.sh: #12114: TrustAnchors: Creating DB OtherIntermediateDB  - PASSED
chains.sh: Creating Intermediate certifiate request OtherIntermediateReq.der
certutil -s "CN=OtherIntermediate Intermediate, O=OtherIntermediate, C=US"  -R -2 -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o OtherIntermediateReq.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
y
-1
y
===
Generating key.  This may take a few moments...
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
chains.sh: #12115: TrustAnchors: Creating Intermediate certifiate request OtherIntermediateReq.der  - PASSED
chains.sh: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot
certutil -C -c OtherRoot -v 60 -d OtherRootDB -i OtherIntermediateReq.der -o OtherIntermediateOtherRoot.der -f OtherRootDB/dbpasswd -m 502161131   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12116: TrustAnchors: Creating certficate OtherIntermediateOtherRoot.der signed by OtherRoot  - PASSED
chains.sh: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database
certutil -A -n OtherIntermediate -t u,u,u -d OtherIntermediateDB -f OtherIntermediateDB/dbpasswd -i OtherIntermediateOtherRoot.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12117: TrustAnchors: Importing certificate OtherIntermediateOtherRoot.der to OtherIntermediateDB database  - PASSED
chains.sh: Creating DB EE2DB
certutil -N -d EE2DB -f EE2DB/dbpasswd
chains.sh: #12118: TrustAnchors: Creating DB EE2DB  - PASSED
chains.sh: Creating EE certifiate request EE2Req.der
certutil -s "CN=EE2 EE, O=EE2, C=US"  -R  -d EE2DB -f EE2DB/dbpasswd -z /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/tests_noise -o EE2Req.der  < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
Generating key.  This may take a few moments...
chains.sh: #12119: TrustAnchors: Creating EE certifiate request EE2Req.der  - PASSED
chains.sh: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate
certutil -C -c OtherIntermediate -v 60 -d OtherIntermediateDB -i EE2Req.der -o EE2OtherIntermediate.der -f OtherIntermediateDB/dbpasswd -m 502161132   < /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/cu_data
=== Certutil input data ===
===
chains.sh: #12120: TrustAnchors: Creating certficate EE2OtherIntermediate.der signed by OtherIntermediate  - PASSED
chains.sh: Importing certificate EE2OtherIntermediate.der to EE2DB database
certutil -A -n EE2 -t u,u,u -d EE2DB -f EE2DB/dbpasswd -i EE2OtherIntermediate.der
Notice: Trust flag u is set automatically if the private key is present.
chains.sh: #12121: TrustAnchors: Importing certificate EE2OtherIntermediate.der to EE2DB database  - PASSED
chains.sh: Creating DB DBOnlyDB
certutil -N -d DBOnlyDB -f DBOnlyDB/dbpasswd
chains.sh: #12122: TrustAnchors: Creating DB DBOnlyDB  - PASSED
chains.sh: Importing certificate RootCA.der to DBOnlyDB database
certutil -A -n RootCA  -t "CT,C,C" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i RootCA.der
chains.sh: #12123: TrustAnchors: Importing certificate RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to DBOnlyDB database
certutil -A -n CA1  -t "" -d DBOnlyDB -f DBOnlyDB/dbpasswd -i CA1RootCA.der
chains.sh: #12124: TrustAnchors: Importing certificate CA1RootCA.der to DBOnlyDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp      
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161126 (0x1dee5ee6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:17:59 2017
            Not After : Mon May 02 16:17:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:bb:a2:6d:7a:4a:e7:d8:b5:b6:66:bf:b0:a1:67:ec:
                    3d:09:26:71:97:de:b9:32:0d:d9:a0:9d:db:e2:bd:2a:
                    21:25:92:c4:6e:2e:69:55:8a:f4:14:af:ed:07:3c:7c:
                    21:95:98:18:61:ba:14:e0:d7:88:b9:8b:09:05:8e:21:
                    90:61:f0:ed:7f:1d:09:4d:8f:0e:7e:11:2a:39:7d:92:
                    b7:e4:0c:ca:da:f6:b3:28:91:ba:b8:cb:49:31:d8:91:
                    77:64:78:cc:2d:df:cb:02:b1:cb:16:64:b6:d0:0a:78:
                    03:80:30:c7:7c:4f:0c:62:d1:77:e5:13:54:3f:d8:3a:
                    7d:35:13:cd:6e:2e:95:7a:d1:dd:57:d6:34:8f:b9:8b:
                    68:8a:83:65:c3:3a:14:2c:56:68:a7:05:93:1e:d9:1e:
                    82:ad:7b:af:2c:ac:5f:6e:c2:c9:fd:e7:51:96:d5:a1:
                    b9:32:ef:30:17:17:49:93:58:3d:9c:a8:50:62:dd:76:
                    8b:3e:ab:61:c7:dc:94:69:50:27:dc:e5:7b:20:fa:17:
                    6d:a9:3a:31:c0:be:a3:92:6a:0e:5b:63:53:ee:a8:b2:
                    df:11:3d:18:85:08:04:d5:10:e1:fd:4a:95:51:5c:1c:
                    87:0d:60:8c:71:e0:03:b9:1c:62:99:ca:bd:78:55:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:f3:f8:af:cc:a2:e6:95:d5:1f:c1:52:10:00:06:0f:
        4a:2f:b8:98:4c:58:c5:89:29:a2:61:bc:20:56:20:ed:
        8d:86:97:96:8f:1c:70:ec:d7:01:21:e2:9b:0d:21:e4:
        b6:f7:04:95:e8:14:c7:31:66:b4:30:b7:af:d8:cd:cd:
        3f:52:ed:57:05:22:04:69:bf:78:31:02:a2:ea:9b:68:
        bc:85:a3:c2:ba:69:57:42:ae:b6:1d:6f:51:c4:df:e7:
        3a:8d:82:e6:17:3e:8d:01:1c:0a:dd:40:82:65:cf:d0:
        f5:ea:89:d3:36:ac:cf:05:f5:c9:51:bd:20:43:c3:bd:
        e8:95:a8:83:f7:21:80:bd:4d:98:06:92:df:4c:cd:a4:
        81:6d:47:f8:6e:0d:45:76:4b:1f:2d:f9:06:90:be:f4:
        3a:37:58:45:63:e9:d9:70:17:fe:a3:58:71:ec:ab:fa:
        69:3e:dc:8d:8d:ec:8a:59:12:6a:20:fa:34:68:63:d8:
        2b:bd:e7:a5:a3:b0:a6:d5:81:00:41:a7:c3:c5:8b:de:
        16:45:f6:2a:ea:5f:49:64:f0:80:44:5d:27:00:e0:a0:
        d1:51:31:7a:3c:87:25:00:a0:0a:c1:1e:e6:c3:86:45:
        65:f1:c7:cb:04:06:03:ee:24:41:49:f2:e7:98:47:d5
    Fingerprint (SHA-256):
        64:9D:36:FB:32:D2:50:ED:3C:49:39:7B:8F:D4:7E:7A:F3:83:5E:0D:51:57:CA:38:ED:C3:F5:00:9E:6C:39:C8
    Fingerprint (SHA1):
        01:F9:2D:2C:C2:D2:9F:AE:7A:01:91:BA:E9:7D:82:37:12:23:8A:0D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12125: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161128 (0x1dee5ee8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:18:01 2017
            Not After : Mon May 02 16:18:01 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:c0:c4:2f:f5:84:ea:85:51:77:69:5b:d6:98:53:be:
                    8b:51:a1:d7:fd:7d:3b:b0:d2:47:0a:19:da:6e:3c:dc:
                    b2:48:cf:84:d5:03:22:85:59:90:dd:9c:18:58:f1:b3:
                    47:da:ae:46:4b:37:93:3a:b2:21:f0:a3:67:c6:4c:4b:
                    b0:70:5b:83:01:f8:fc:4d:64:eb:df:a0:7c:ad:09:58:
                    c8:41:3a:b2:43:d0:f8:c9:2b:65:3a:db:a8:8c:cf:e4:
                    c3:2e:59:77:1d:0b:a9:7b:59:83:a4:1c:c1:b3:83:87:
                    ef:50:7e:cd:b3:30:80:63:1c:b3:3f:96:20:d8:2b:ac:
                    7e:3b:fe:61:43:63:77:02:61:21:51:78:00:2c:1e:cc:
                    52:2c:cb:28:4d:e1:32:43:8a:0d:f1:7f:1c:c7:6a:1a:
                    b3:72:3a:af:5f:ed:9c:8f:ad:e1:86:66:41:14:00:e2:
                    10:f3:2b:bd:66:c0:40:e7:ae:f8:93:83:de:9f:96:95:
                    55:22:25:85:a1:a7:85:bb:f7:6b:27:9f:20:49:96:a4:
                    e6:d2:02:89:e3:71:ab:07:73:a1:41:13:56:67:b8:87:
                    a4:5b:c2:ee:6f:7c:aa:15:84:4f:d6:50:2d:64:cc:2f:
                    10:12:84:dc:eb:08:fc:b2:3d:05:4a:3d:c3:b8:60:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:51:4b:b2:f7:3f:66:c5:39:f5:43:c3:5c:9c:46:53:
        69:0a:4c:21:7e:db:f3:08:58:07:7c:7f:f0:f5:0f:65:
        8c:63:75:28:41:0e:59:6c:95:57:f8:43:ab:66:2d:7c:
        b1:4f:7d:11:0c:f9:88:ed:33:79:a7:01:e1:62:ef:49:
        60:d9:eb:01:1d:b8:a5:32:ed:71:9e:fa:4b:03:e1:5a:
        e7:5e:90:6c:af:47:74:9a:ff:ab:80:a4:7a:50:a1:24:
        e7:6e:d9:21:5b:a9:cf:fa:c3:bd:a1:b0:00:be:45:cc:
        16:01:cf:08:6f:fd:60:e0:65:e1:27:ca:b1:ed:bc:e2:
        bf:03:c3:33:52:e8:79:e4:43:54:c1:8c:5f:3d:a7:92:
        93:9c:6a:37:16:a9:32:8d:ad:60:56:af:95:f9:9e:da:
        41:bd:9b:1c:61:cd:e7:ab:d4:92:e8:42:27:bd:38:10:
        a6:7f:3d:12:cd:36:57:ab:b9:7f:d2:11:61:b6:42:25:
        95:62:73:9e:f4:37:e4:33:a6:7d:af:c8:99:9f:e2:c7:
        bf:e9:74:23:50:b7:08:ff:ee:14:f3:70:8e:60:08:1e:
        02:82:a2:07:44:24:3a:4a:a2:34:7e:d4:5a:d3:1f:a5:
        51:80:41:8d:23:68:d3:0d:88:b5:5a:0e:cd:fc:52:f7
    Fingerprint (SHA-256):
        BB:7E:DE:C6:1B:B8:F8:8A:53:41:01:1D:9A:94:EF:F7:48:E2:6B:1A:8B:0D:55:81:2F:DE:00:8D:1C:CB:D1:C3
    Fingerprint (SHA1):
        98:3F:0D:96:4C:E2:4B:9E:73:57:2D:66:4A:2D:24:E6:7E:07:45:28
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12126: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d DBOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA
vfychain -d DBOnlyDB -pp -vv       EE1CA2.der CA2CA1.der  -t RootCA
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161126 (0x1dee5ee6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:17:59 2017
            Not After : Mon May 02 16:17:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:bb:a2:6d:7a:4a:e7:d8:b5:b6:66:bf:b0:a1:67:ec:
                    3d:09:26:71:97:de:b9:32:0d:d9:a0:9d:db:e2:bd:2a:
                    21:25:92:c4:6e:2e:69:55:8a:f4:14:af:ed:07:3c:7c:
                    21:95:98:18:61:ba:14:e0:d7:88:b9:8b:09:05:8e:21:
                    90:61:f0:ed:7f:1d:09:4d:8f:0e:7e:11:2a:39:7d:92:
                    b7:e4:0c:ca:da:f6:b3:28:91:ba:b8:cb:49:31:d8:91:
                    77:64:78:cc:2d:df:cb:02:b1:cb:16:64:b6:d0:0a:78:
                    03:80:30:c7:7c:4f:0c:62:d1:77:e5:13:54:3f:d8:3a:
                    7d:35:13:cd:6e:2e:95:7a:d1:dd:57:d6:34:8f:b9:8b:
                    68:8a:83:65:c3:3a:14:2c:56:68:a7:05:93:1e:d9:1e:
                    82:ad:7b:af:2c:ac:5f:6e:c2:c9:fd:e7:51:96:d5:a1:
                    b9:32:ef:30:17:17:49:93:58:3d:9c:a8:50:62:dd:76:
                    8b:3e:ab:61:c7:dc:94:69:50:27:dc:e5:7b:20:fa:17:
                    6d:a9:3a:31:c0:be:a3:92:6a:0e:5b:63:53:ee:a8:b2:
                    df:11:3d:18:85:08:04:d5:10:e1:fd:4a:95:51:5c:1c:
                    87:0d:60:8c:71:e0:03:b9:1c:62:99:ca:bd:78:55:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:f3:f8:af:cc:a2:e6:95:d5:1f:c1:52:10:00:06:0f:
        4a:2f:b8:98:4c:58:c5:89:29:a2:61:bc:20:56:20:ed:
        8d:86:97:96:8f:1c:70:ec:d7:01:21:e2:9b:0d:21:e4:
        b6:f7:04:95:e8:14:c7:31:66:b4:30:b7:af:d8:cd:cd:
        3f:52:ed:57:05:22:04:69:bf:78:31:02:a2:ea:9b:68:
        bc:85:a3:c2:ba:69:57:42:ae:b6:1d:6f:51:c4:df:e7:
        3a:8d:82:e6:17:3e:8d:01:1c:0a:dd:40:82:65:cf:d0:
        f5:ea:89:d3:36:ac:cf:05:f5:c9:51:bd:20:43:c3:bd:
        e8:95:a8:83:f7:21:80:bd:4d:98:06:92:df:4c:cd:a4:
        81:6d:47:f8:6e:0d:45:76:4b:1f:2d:f9:06:90:be:f4:
        3a:37:58:45:63:e9:d9:70:17:fe:a3:58:71:ec:ab:fa:
        69:3e:dc:8d:8d:ec:8a:59:12:6a:20:fa:34:68:63:d8:
        2b:bd:e7:a5:a3:b0:a6:d5:81:00:41:a7:c3:c5:8b:de:
        16:45:f6:2a:ea:5f:49:64:f0:80:44:5d:27:00:e0:a0:
        d1:51:31:7a:3c:87:25:00:a0:0a:c1:1e:e6:c3:86:45:
        65:f1:c7:cb:04:06:03:ee:24:41:49:f2:e7:98:47:d5
    Fingerprint (SHA-256):
        64:9D:36:FB:32:D2:50:ED:3C:49:39:7B:8F:D4:7E:7A:F3:83:5E:0D:51:57:CA:38:ED:C3:F5:00:9E:6C:39:C8
    Fingerprint (SHA1):
        01:F9:2D:2C:C2:D2:9F:AE:7A:01:91:BA:E9:7D:82:37:12:23:8A:0D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12127: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d DBOnlyDB -pp       -t RootCA - PASSED
chains.sh: Creating DB TrustOnlyDB
certutil -N -d TrustOnlyDB -f TrustOnlyDB/dbpasswd
chains.sh: #12128: TrustAnchors: Creating DB TrustOnlyDB  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der CA2CA1.der CA1RootCA.der  -t RootCA.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161126 (0x1dee5ee6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:17:59 2017
            Not After : Mon May 02 16:17:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:bb:a2:6d:7a:4a:e7:d8:b5:b6:66:bf:b0:a1:67:ec:
                    3d:09:26:71:97:de:b9:32:0d:d9:a0:9d:db:e2:bd:2a:
                    21:25:92:c4:6e:2e:69:55:8a:f4:14:af:ed:07:3c:7c:
                    21:95:98:18:61:ba:14:e0:d7:88:b9:8b:09:05:8e:21:
                    90:61:f0:ed:7f:1d:09:4d:8f:0e:7e:11:2a:39:7d:92:
                    b7:e4:0c:ca:da:f6:b3:28:91:ba:b8:cb:49:31:d8:91:
                    77:64:78:cc:2d:df:cb:02:b1:cb:16:64:b6:d0:0a:78:
                    03:80:30:c7:7c:4f:0c:62:d1:77:e5:13:54:3f:d8:3a:
                    7d:35:13:cd:6e:2e:95:7a:d1:dd:57:d6:34:8f:b9:8b:
                    68:8a:83:65:c3:3a:14:2c:56:68:a7:05:93:1e:d9:1e:
                    82:ad:7b:af:2c:ac:5f:6e:c2:c9:fd:e7:51:96:d5:a1:
                    b9:32:ef:30:17:17:49:93:58:3d:9c:a8:50:62:dd:76:
                    8b:3e:ab:61:c7:dc:94:69:50:27:dc:e5:7b:20:fa:17:
                    6d:a9:3a:31:c0:be:a3:92:6a:0e:5b:63:53:ee:a8:b2:
                    df:11:3d:18:85:08:04:d5:10:e1:fd:4a:95:51:5c:1c:
                    87:0d:60:8c:71:e0:03:b9:1c:62:99:ca:bd:78:55:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:f3:f8:af:cc:a2:e6:95:d5:1f:c1:52:10:00:06:0f:
        4a:2f:b8:98:4c:58:c5:89:29:a2:61:bc:20:56:20:ed:
        8d:86:97:96:8f:1c:70:ec:d7:01:21:e2:9b:0d:21:e4:
        b6:f7:04:95:e8:14:c7:31:66:b4:30:b7:af:d8:cd:cd:
        3f:52:ed:57:05:22:04:69:bf:78:31:02:a2:ea:9b:68:
        bc:85:a3:c2:ba:69:57:42:ae:b6:1d:6f:51:c4:df:e7:
        3a:8d:82:e6:17:3e:8d:01:1c:0a:dd:40:82:65:cf:d0:
        f5:ea:89:d3:36:ac:cf:05:f5:c9:51:bd:20:43:c3:bd:
        e8:95:a8:83:f7:21:80:bd:4d:98:06:92:df:4c:cd:a4:
        81:6d:47:f8:6e:0d:45:76:4b:1f:2d:f9:06:90:be:f4:
        3a:37:58:45:63:e9:d9:70:17:fe:a3:58:71:ec:ab:fa:
        69:3e:dc:8d:8d:ec:8a:59:12:6a:20:fa:34:68:63:d8:
        2b:bd:e7:a5:a3:b0:a6:d5:81:00:41:a7:c3:c5:8b:de:
        16:45:f6:2a:ea:5f:49:64:f0:80:44:5d:27:00:e0:a0:
        d1:51:31:7a:3c:87:25:00:a0:0a:c1:1e:e6:c3:86:45:
        65:f1:c7:cb:04:06:03:ee:24:41:49:f2:e7:98:47:d5
    Fingerprint (SHA-256):
        64:9D:36:FB:32:D2:50:ED:3C:49:39:7B:8F:D4:7E:7A:F3:83:5E:0D:51:57:CA:38:ED:C3:F5:00:9E:6C:39:C8
    Fingerprint (SHA1):
        01:F9:2D:2C:C2:D2:9F:AE:7A:01:91:BA:E9:7D:82:37:12:23:8A:0D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12129: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der CA1RootCA.der with flags -d TrustOnlyDB -pp       -t RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der
vfychain -d TrustOnlyDB -pp -vv       EE1CA2.der  -t CA2CA1.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161128 (0x1dee5ee8)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=CA1 Intermediate,O=CA1,C=US"
        Validity:
            Not Before: Tue May 02 16:18:01 2017
            Not After : Mon May 02 16:18:01 2022
        Subject: "CN=CA2 Intermediate,O=CA2,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b8:c0:c4:2f:f5:84:ea:85:51:77:69:5b:d6:98:53:be:
                    8b:51:a1:d7:fd:7d:3b:b0:d2:47:0a:19:da:6e:3c:dc:
                    b2:48:cf:84:d5:03:22:85:59:90:dd:9c:18:58:f1:b3:
                    47:da:ae:46:4b:37:93:3a:b2:21:f0:a3:67:c6:4c:4b:
                    b0:70:5b:83:01:f8:fc:4d:64:eb:df:a0:7c:ad:09:58:
                    c8:41:3a:b2:43:d0:f8:c9:2b:65:3a:db:a8:8c:cf:e4:
                    c3:2e:59:77:1d:0b:a9:7b:59:83:a4:1c:c1:b3:83:87:
                    ef:50:7e:cd:b3:30:80:63:1c:b3:3f:96:20:d8:2b:ac:
                    7e:3b:fe:61:43:63:77:02:61:21:51:78:00:2c:1e:cc:
                    52:2c:cb:28:4d:e1:32:43:8a:0d:f1:7f:1c:c7:6a:1a:
                    b3:72:3a:af:5f:ed:9c:8f:ad:e1:86:66:41:14:00:e2:
                    10:f3:2b:bd:66:c0:40:e7:ae:f8:93:83:de:9f:96:95:
                    55:22:25:85:a1:a7:85:bb:f7:6b:27:9f:20:49:96:a4:
                    e6:d2:02:89:e3:71:ab:07:73:a1:41:13:56:67:b8:87:
                    a4:5b:c2:ee:6f:7c:aa:15:84:4f:d6:50:2d:64:cc:2f:
                    10:12:84:dc:eb:08:fc:b2:3d:05:4a:3d:c3:b8:60:47
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        2c:51:4b:b2:f7:3f:66:c5:39:f5:43:c3:5c:9c:46:53:
        69:0a:4c:21:7e:db:f3:08:58:07:7c:7f:f0:f5:0f:65:
        8c:63:75:28:41:0e:59:6c:95:57:f8:43:ab:66:2d:7c:
        b1:4f:7d:11:0c:f9:88:ed:33:79:a7:01:e1:62:ef:49:
        60:d9:eb:01:1d:b8:a5:32:ed:71:9e:fa:4b:03:e1:5a:
        e7:5e:90:6c:af:47:74:9a:ff:ab:80:a4:7a:50:a1:24:
        e7:6e:d9:21:5b:a9:cf:fa:c3:bd:a1:b0:00:be:45:cc:
        16:01:cf:08:6f:fd:60:e0:65:e1:27:ca:b1:ed:bc:e2:
        bf:03:c3:33:52:e8:79:e4:43:54:c1:8c:5f:3d:a7:92:
        93:9c:6a:37:16:a9:32:8d:ad:60:56:af:95:f9:9e:da:
        41:bd:9b:1c:61:cd:e7:ab:d4:92:e8:42:27:bd:38:10:
        a6:7f:3d:12:cd:36:57:ab:b9:7f:d2:11:61:b6:42:25:
        95:62:73:9e:f4:37:e4:33:a6:7d:af:c8:99:9f:e2:c7:
        bf:e9:74:23:50:b7:08:ff:ee:14:f3:70:8e:60:08:1e:
        02:82:a2:07:44:24:3a:4a:a2:34:7e:d4:5a:d3:1f:a5:
        51:80:41:8d:23:68:d3:0d:88:b5:5a:0e:cd:fc:52:f7
    Fingerprint (SHA-256):
        BB:7E:DE:C6:1B:B8:F8:8A:53:41:01:1D:9A:94:EF:F7:48:E2:6B:1A:8B:0D:55:81:2F:DE:00:8D:1C:CB:D1:C3
    Fingerprint (SHA1):
        98:3F:0D:96:4C:E2:4B:9E:73:57:2D:66:4A:2D:24:E6:7E:07:45:28
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12130: TrustAnchors: Verifying certificate(s)  EE1CA2.der with flags -d TrustOnlyDB -pp       -t CA2CA1.der - PASSED
chains.sh: Creating DB TrustAndDBDB
certutil -N -d TrustAndDBDB -f TrustAndDBDB/dbpasswd
chains.sh: #12131: TrustAnchors: Creating DB TrustAndDBDB  - PASSED
chains.sh: Importing certificate RootCA.der to TrustAndDBDB database
certutil -A -n RootCA  -t "CT,C,C" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i RootCA.der
chains.sh: #12132: TrustAnchors: Importing certificate RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to TrustAndDBDB database
certutil -A -n CA1  -t "" -d TrustAndDBDB -f TrustAndDBDB/dbpasswd -i CA1RootCA.der
chains.sh: #12133: TrustAnchors: Importing certificate CA1RootCA.der to TrustAndDBDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp      
vfychain -d TrustAndDBDB -pp -vv       EE1CA2.der CA2CA1.der 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161126 (0x1dee5ee6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:17:59 2017
            Not After : Mon May 02 16:17:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:bb:a2:6d:7a:4a:e7:d8:b5:b6:66:bf:b0:a1:67:ec:
                    3d:09:26:71:97:de:b9:32:0d:d9:a0:9d:db:e2:bd:2a:
                    21:25:92:c4:6e:2e:69:55:8a:f4:14:af:ed:07:3c:7c:
                    21:95:98:18:61:ba:14:e0:d7:88:b9:8b:09:05:8e:21:
                    90:61:f0:ed:7f:1d:09:4d:8f:0e:7e:11:2a:39:7d:92:
                    b7:e4:0c:ca:da:f6:b3:28:91:ba:b8:cb:49:31:d8:91:
                    77:64:78:cc:2d:df:cb:02:b1:cb:16:64:b6:d0:0a:78:
                    03:80:30:c7:7c:4f:0c:62:d1:77:e5:13:54:3f:d8:3a:
                    7d:35:13:cd:6e:2e:95:7a:d1:dd:57:d6:34:8f:b9:8b:
                    68:8a:83:65:c3:3a:14:2c:56:68:a7:05:93:1e:d9:1e:
                    82:ad:7b:af:2c:ac:5f:6e:c2:c9:fd:e7:51:96:d5:a1:
                    b9:32:ef:30:17:17:49:93:58:3d:9c:a8:50:62:dd:76:
                    8b:3e:ab:61:c7:dc:94:69:50:27:dc:e5:7b:20:fa:17:
                    6d:a9:3a:31:c0:be:a3:92:6a:0e:5b:63:53:ee:a8:b2:
                    df:11:3d:18:85:08:04:d5:10:e1:fd:4a:95:51:5c:1c:
                    87:0d:60:8c:71:e0:03:b9:1c:62:99:ca:bd:78:55:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:f3:f8:af:cc:a2:e6:95:d5:1f:c1:52:10:00:06:0f:
        4a:2f:b8:98:4c:58:c5:89:29:a2:61:bc:20:56:20:ed:
        8d:86:97:96:8f:1c:70:ec:d7:01:21:e2:9b:0d:21:e4:
        b6:f7:04:95:e8:14:c7:31:66:b4:30:b7:af:d8:cd:cd:
        3f:52:ed:57:05:22:04:69:bf:78:31:02:a2:ea:9b:68:
        bc:85:a3:c2:ba:69:57:42:ae:b6:1d:6f:51:c4:df:e7:
        3a:8d:82:e6:17:3e:8d:01:1c:0a:dd:40:82:65:cf:d0:
        f5:ea:89:d3:36:ac:cf:05:f5:c9:51:bd:20:43:c3:bd:
        e8:95:a8:83:f7:21:80:bd:4d:98:06:92:df:4c:cd:a4:
        81:6d:47:f8:6e:0d:45:76:4b:1f:2d:f9:06:90:be:f4:
        3a:37:58:45:63:e9:d9:70:17:fe:a3:58:71:ec:ab:fa:
        69:3e:dc:8d:8d:ec:8a:59:12:6a:20:fa:34:68:63:d8:
        2b:bd:e7:a5:a3:b0:a6:d5:81:00:41:a7:c3:c5:8b:de:
        16:45:f6:2a:ea:5f:49:64:f0:80:44:5d:27:00:e0:a0:
        d1:51:31:7a:3c:87:25:00:a0:0a:c1:1e:e6:c3:86:45:
        65:f1:c7:cb:04:06:03:ee:24:41:49:f2:e7:98:47:d5
    Fingerprint (SHA-256):
        64:9D:36:FB:32:D2:50:ED:3C:49:39:7B:8F:D4:7E:7A:F3:83:5E:0D:51:57:CA:38:ED:C3:F5:00:9E:6C:39:C8
    Fingerprint (SHA1):
        01:F9:2D:2C:C2:D2:9F:AE:7A:01:91:BA:E9:7D:82:37:12:23:8A:0D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12134: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp       - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv       EE2OtherIntermediate.der OtherIntermediateOtherRoot.der  -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161130 (0x1dee5eea)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 16:18:05 2017
            Not After : Mon May 02 16:18:05 2067
        Subject: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    b7:f1:2e:2c:60:2a:93:9a:06:b4:d0:2b:ab:c8:bb:b6:
                    68:95:85:99:1e:79:62:69:d6:fa:53:19:62:9e:07:fe:
                    bf:8b:e4:00:09:93:fc:5f:35:68:15:f6:39:05:8b:b4:
                    2d:51:c6:fb:1c:85:9d:ea:06:e2:29:25:ff:ca:0e:4d:
                    d6:53:4e:98:f7:11:c1:f1:11:1c:b2:ea:a4:f2:ce:5b:
                    af:51:81:df:c2:41:62:94:c2:a0:d6:ad:91:28:2b:ed:
                    26:ad:bf:77:31:67:40:c5:33:d5:48:c9:19:f3:b1:60:
                    5e:99:b9:fd:a8:c2:8f:01:86:1d:a4:2d:61:b7:48:e5:
                    c2:5c:04:83:1b:2d:3e:27:cc:ab:31:12:b2:57:71:5a:
                    22:25:c0:de:34:ef:3d:37:81:2e:36:73:dc:cb:07:d4:
                    2f:14:21:84:fd:10:68:73:55:61:27:2a:bc:39:33:3b:
                    20:60:51:96:ad:b5:22:c8:1c:e4:8e:04:fd:43:53:02:
                    94:41:c4:25:06:82:73:a2:c7:55:be:26:b5:3b:43:73:
                    d2:37:da:e3:9c:83:02:62:70:ac:98:d6:a9:90:63:68:
                    92:f9:b8:fd:e9:c4:9a:90:88:38:7a:d2:57:a4:80:a1:
                    d5:ff:72:7e:ca:bb:cc:01:ec:b6:67:f6:91:d1:c0:7b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        09:c2:c8:da:d3:4a:f7:72:e4:a1:19:78:0e:a4:ea:4d:
        7f:fe:bc:2e:54:e8:92:55:cc:0c:7e:ee:f4:17:38:87:
        d5:b4:8d:f0:ad:55:23:b8:67:4e:81:04:fa:e8:30:3f:
        6b:46:e3:2f:57:d8:6c:c2:37:9d:06:a1:78:7c:53:3d:
        9f:74:8f:9d:01:05:5b:b3:76:04:2a:55:0e:15:d8:52:
        83:fc:42:d9:c6:1a:db:0f:7b:d4:e6:89:26:cb:7d:03:
        fa:2e:c8:25:fa:67:77:e3:ff:20:74:bd:0c:e1:4e:16:
        f1:7f:4e:48:54:8a:c4:1b:5a:a8:2b:f2:43:19:9b:85:
        3f:d8:50:04:e9:1d:c6:9a:0a:12:2e:82:1e:7c:a2:69:
        c4:fe:77:04:db:de:3e:8c:06:f6:09:f6:f5:76:88:d9:
        dd:35:b9:c3:31:f5:14:3f:7b:e8:eb:06:99:ac:c5:b6:
        7a:f5:3c:e0:00:6b:ab:aa:ef:e9:b8:c1:f5:27:1c:09:
        07:aa:11:b6:b3:3e:08:cb:77:d8:d3:bb:c2:48:ef:e0:
        cc:e3:68:1f:f1:8b:c7:e8:da:0d:d6:ff:89:64:e2:1d:
        29:49:ff:cb:7e:9b:e3:b8:71:ed:96:9e:7a:9c:4b:54:
        13:3c:a0:75:e3:9f:07:41:f7:d4:f8:cc:52:54:5b:20
    Fingerprint (SHA-256):
        AD:64:55:A5:C2:D3:1D:95:DC:E7:26:6E:17:1F:30:38:BC:6C:E8:16:8C:19:68:AB:48:BA:B4:4A:58:29:36:02
    Fingerprint (SHA1):
        E2:89:92:80:F7:17:54:36:B1:9F:36:82:0B:EF:6F:00:8A:94:99:6D
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Certificate 2 Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate
    ,C=US"
Returned value is 0, expected result is pass
chains.sh: #12135: TrustAnchors: Verifying certificate(s)  EE2OtherIntermediate.der OtherIntermediateOtherRoot.der with flags -d TrustAndDBDB -pp       -t OtherRoot.der - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der
vfychain -d TrustAndDBDB -pp -vv -T      EE1CA2.der CA2CA1.der  -t OtherIntermediateOtherRoot.der -t OtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161126 (0x1dee5ee6)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Validity:
            Not Before: Tue May 02 16:17:59 2017
            Not After : Mon May 02 16:17:59 2067
        Subject: "CN=RootCA ROOT CA,O=RootCA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    ad:bb:a2:6d:7a:4a:e7:d8:b5:b6:66:bf:b0:a1:67:ec:
                    3d:09:26:71:97:de:b9:32:0d:d9:a0:9d:db:e2:bd:2a:
                    21:25:92:c4:6e:2e:69:55:8a:f4:14:af:ed:07:3c:7c:
                    21:95:98:18:61:ba:14:e0:d7:88:b9:8b:09:05:8e:21:
                    90:61:f0:ed:7f:1d:09:4d:8f:0e:7e:11:2a:39:7d:92:
                    b7:e4:0c:ca:da:f6:b3:28:91:ba:b8:cb:49:31:d8:91:
                    77:64:78:cc:2d:df:cb:02:b1:cb:16:64:b6:d0:0a:78:
                    03:80:30:c7:7c:4f:0c:62:d1:77:e5:13:54:3f:d8:3a:
                    7d:35:13:cd:6e:2e:95:7a:d1:dd:57:d6:34:8f:b9:8b:
                    68:8a:83:65:c3:3a:14:2c:56:68:a7:05:93:1e:d9:1e:
                    82:ad:7b:af:2c:ac:5f:6e:c2:c9:fd:e7:51:96:d5:a1:
                    b9:32:ef:30:17:17:49:93:58:3d:9c:a8:50:62:dd:76:
                    8b:3e:ab:61:c7:dc:94:69:50:27:dc:e5:7b:20:fa:17:
                    6d:a9:3a:31:c0:be:a3:92:6a:0e:5b:63:53:ee:a8:b2:
                    df:11:3d:18:85:08:04:d5:10:e1:fd:4a:95:51:5c:1c:
                    87:0d:60:8c:71:e0:03:b9:1c:62:99:ca:bd:78:55:dd
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        5e:f3:f8:af:cc:a2:e6:95:d5:1f:c1:52:10:00:06:0f:
        4a:2f:b8:98:4c:58:c5:89:29:a2:61:bc:20:56:20:ed:
        8d:86:97:96:8f:1c:70:ec:d7:01:21:e2:9b:0d:21:e4:
        b6:f7:04:95:e8:14:c7:31:66:b4:30:b7:af:d8:cd:cd:
        3f:52:ed:57:05:22:04:69:bf:78:31:02:a2:ea:9b:68:
        bc:85:a3:c2:ba:69:57:42:ae:b6:1d:6f:51:c4:df:e7:
        3a:8d:82:e6:17:3e:8d:01:1c:0a:dd:40:82:65:cf:d0:
        f5:ea:89:d3:36:ac:cf:05:f5:c9:51:bd:20:43:c3:bd:
        e8:95:a8:83:f7:21:80:bd:4d:98:06:92:df:4c:cd:a4:
        81:6d:47:f8:6e:0d:45:76:4b:1f:2d:f9:06:90:be:f4:
        3a:37:58:45:63:e9:d9:70:17:fe:a3:58:71:ec:ab:fa:
        69:3e:dc:8d:8d:ec:8a:59:12:6a:20:fa:34:68:63:d8:
        2b:bd:e7:a5:a3:b0:a6:d5:81:00:41:a7:c3:c5:8b:de:
        16:45:f6:2a:ea:5f:49:64:f0:80:44:5d:27:00:e0:a0:
        d1:51:31:7a:3c:87:25:00:a0:0a:c1:1e:e6:c3:86:45:
        65:f1:c7:cb:04:06:03:ee:24:41:49:f2:e7:98:47:d5
    Fingerprint (SHA-256):
        64:9D:36:FB:32:D2:50:ED:3C:49:39:7B:8F:D4:7E:7A:F3:83:5E:0D:51:57:CA:38:ED:C3:F5:00:9E:6C:39:C8
    Fingerprint (SHA1):
        01:F9:2D:2C:C2:D2:9F:AE:7A:01:91:BA:E9:7D:82:37:12:23:8A:0D
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=EE1 EE,O=EE1,C=US"
Certificate 2 Subject: "CN=CA2 Intermediate,O=CA2,C=US"
Certificate 3 Subject: "CN=CA1 Intermediate,O=CA1,C=US"
Returned value is 0, expected result is pass
chains.sh: #12136: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d TrustAndDBDB -pp -T      -t OtherIntermediateOtherRoot.der -t OtherRoot.der - PASSED
chains.sh: Creating DB ExplicitDistrustDB
certutil -N -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd
chains.sh: #12137: TrustAnchors: Creating DB ExplicitDistrustDB  - PASSED
chains.sh: Importing certificate RootCA.der to ExplicitDistrustDB database
certutil -A -n RootCA  -t "CT,C,C" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i RootCA.der
chains.sh: #12138: TrustAnchors: Importing certificate RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate CA1RootCA.der to ExplicitDistrustDB database
certutil -A -n CA1  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i CA1RootCA.der
chains.sh: #12139: TrustAnchors: Importing certificate CA1RootCA.der to ExplicitDistrustDB database  - PASSED
chains.sh: Importing certificate OtherRoot.der to ExplicitDistrustDB database
certutil -A -n OtherRoot  -t "p,p,p" -d ExplicitDistrustDB -f ExplicitDistrustDB/dbpasswd -i OtherRoot.der
chains.sh: #12140: TrustAnchors: Importing certificate OtherRoot.der to ExplicitDistrustDB database  - PASSED
chains.sh: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der
vfychain -d ExplicitDistrustDB -pp -vv       EE1CA2.der CA2CA1.der  -t CA1RootCA.der
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CA1 [Certificate Authority]:
  ERROR -8171: Peer's certificate has been marked as not trusted by the user.
Returned value is 1, expected result is fail
chains.sh: #12141: TrustAnchors: Verifying certificate(s)  EE1CA2.der CA2CA1.der with flags -d ExplicitDistrustDB -pp       -t CA1RootCA.der - PASSED
chains.sh: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der
vfychain -d ExplicitDistrustDB -pp -vv       EE2OtherIntermediate.der  -t OtherIntermediateOtherRoot.der
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 502161131 (0x1dee5eeb)
        Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
        Issuer: "CN=OtherRoot ROOT CA,O=OtherRoot,C=US"
        Validity:
            Not Before: Tue May 02 16:18:07 2017
            Not After : Mon May 02 16:18:07 2022
        Subject: "CN=OtherIntermediate Intermediate,O=OtherIntermediate,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    aa:7e:3c:4b:68:d9:0c:6d:23:3d:e5:81:f5:1b:b2:8e:
                    3d:de:8a:93:f3:b8:55:14:eb:4d:51:65:7f:98:c9:b2:
                    0e:07:6a:fd:ba:5e:50:c5:16:89:1c:fb:79:e6:19:4f:
                    f2:38:be:5b:ef:b2:9c:54:3c:f1:7d:3f:e2:16:a9:6c:
                    90:ec:31:8f:6f:81:f8:77:10:77:0a:96:ba:4a:ae:c2:
                    ab:b6:53:10:03:29:58:08:36:56:dc:6e:30:f4:1c:1e:
                    a7:25:82:7b:e7:1a:a8:e5:6a:a6:0a:51:1e:09:5d:af:
                    4e:15:ef:0b:8e:e2:8c:81:39:9f:e5:58:79:5e:54:88:
                    9a:93:38:b2:2b:0b:2b:75:02:a9:ee:a9:e6:8e:15:55:
                    f5:74:f9:2e:a9:ea:7a:bf:88:3f:4e:ce:ad:6e:6e:c0:
                    9a:a7:4c:ff:d2:59:43:e6:eb:9d:12:6b:4e:4c:69:33:
                    93:0c:82:38:46:b8:1b:0a:4a:c7:6e:84:1e:cd:ef:02:
                    36:8c:9f:03:18:c3:04:8d:86:1d:82:fa:f0:7e:5a:4c:
                    99:10:7f:7c:25:c5:8f:ff:a4:d1:5a:f8:fd:84:9b:c1:
                    03:39:13:4c:a2:62:98:b7:db:81:07:53:fc:95:a5:74:
                    cc:6c:7a:fd:79:83:4e:ee:63:91:15:eb:3b:81:6d:d5
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Basic Constraints
            Critical: True
            Data: Is a CA with no maximum path length.
    Signature Algorithm: PKCS #1 SHA-256 With RSA Encryption
    Signature:
        7c:b9:ee:94:94:a5:4e:cc:1d:58:a5:e2:55:ce:61:52:
        6d:f6:2e:3e:93:c2:5c:50:34:ea:8e:2a:3f:73:65:02:
        17:4c:bd:11:5e:1e:3b:1f:1a:62:31:df:5d:7d:95:d1:
        8d:76:3e:e3:23:4d:89:2a:07:ef:66:d6:36:3c:84:7f:
        7f:fa:58:9a:9f:0a:06:1a:30:d7:ce:21:62:ac:a0:cf:
        e6:b8:00:81:84:26:e3:57:9f:1b:22:8a:cd:70:ba:f9:
        ce:b0:b5:1b:4c:4c:78:06:c6:c3:71:92:67:1b:6c:64:
        aa:7f:2a:f3:6d:9e:44:0e:eb:f4:89:36:58:18:fb:01:
        f1:e5:51:6c:4f:aa:15:27:7b:57:2e:d4:29:47:23:2f:
        92:42:28:1e:19:a2:93:c2:cd:30:e6:09:46:40:76:27:
        30:76:75:39:ab:95:69:9d:84:93:f1:c9:ec:a9:33:9c:
        8b:53:97:e3:66:b3:f4:4b:54:2a:36:48:dd:61:fd:ec:
        a8:c9:62:91:85:6d:87:1b:95:7a:5e:e5:04:e9:5e:f2:
        f0:a0:bd:82:bf:d9:b4:db:25:a1:62:79:0d:64:6b:0b:
        9a:67:e0:77:e0:60:9e:15:04:f0:39:ad:eb:64:50:76:
        83:17:42:76:4b:f7:16:ec:d9:42:1e:c5:31:53:b5:36
    Fingerprint (SHA-256):
        B1:4B:4C:9D:BF:DD:93:86:B9:1C:D2:77:5C:50:3C:A9:C6:5C:40:AB:47:F3:97:AA:F2:B5:C3:8F:92:BC:EF:0F
    Fingerprint (SHA1):
        2C:E3:09:D8:AF:23:D0:D9:17:6C:00:D0:FB:37:F5:FF:E6:D8:0B:D2
    Mozilla-CA-Policy: false (attribute missing)
Certificate 1 Subject: "CN=EE2 EE,O=EE2,C=US"
Returned value is 0, expected result is pass
chains.sh: #12142: Verifying certificate(s)  EE2OtherIntermediate.der with flags -d ExplicitDistrustDB -pp       -t OtherIntermediateOtherRoot.der - PASSED
chains.sh: Creating DB trustanchorsDB
certutil -N -d trustanchorsDB -f trustanchorsDB/dbpasswd
chains.sh: #12143: TrustAnchors: Creating DB trustanchorsDB  - PASSED
chains.sh: Importing certificate NameConstraints.ca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ca.cert
chains.sh: #12144: TrustAnchors: Importing certificate NameConstraints.ca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database
certutil -A -n NameConstraints.ncca  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.ncca.cert
chains.sh: #12145: TrustAnchors: Importing certificate NameConstraints.ncca.cert to trustanchorsDB database  - PASSED
chains.sh: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database
certutil -A -n NameConstraints.dcisscopy  -t "CT,C,C" -d trustanchorsDB -f trustanchorsDB/dbpasswd -i /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcisscopy.cert
chains.sh: #12146: TrustAnchors: Importing certificate NameConstraints.dcisscopy.cert to trustanchorsDB database  - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server1.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12147: TrustAnchors: Verifying certificate(s)  NameConstraints.server1.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12148: TrustAnchors: Verifying certificate(s)  NameConstraints.server2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server3.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test.example,O=BOGUS NSS,L=Mountain View,ST=Califo
    rnia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12149: TrustAnchors: Verifying certificate(s)  NameConstraints.server3.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12150: TrustAnchors: Verifying certificate(s)  NameConstraints.server4.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12151: TrustAnchors: Verifying certificate(s)  NameConstraints.server5.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server6.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate2.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test2.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=BOGUS NSS,L=Mountain View,
    ST=California,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA,O=BOGUS NSS,L=Mountain View,ST
    =California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12152: TrustAnchors: Verifying certificate(s)  NameConstraints.server6.cert NameConstraints.intermediate2.cert NameConstraints.intermediate.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server7.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,OU=bar,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12153: TrustAnchors: Verifying certificate(s)  NameConstraints.server7.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server8.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=bat.foo.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12154: TrustAnchors: Verifying certificate(s)  NameConstraints.server8.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server9.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12155: TrustAnchors: Verifying certificate(s)  NameConstraints.server9.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server10.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12156: TrustAnchors: Verifying certificate(s)  NameConstraints.server10.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server11.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1 (0x1)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=U
            S"
        Validity:
            Not Before: Wed Dec 04 01:22:58 2013
            Not After : Mon Dec 04 01:22:58 2023
        Subject: "CN=NSS Test CA,O=BOGUS NSS,L=Mountain View,ST=California,C=
            US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    d8:a2:61:5c:94:82:74:ad:40:d1:ea:b6:ba:d2:e5:49:
                    0e:fa:dc:08:c1:30:0e:1e:ca:b2:db:2c:ef:84:25:03:
                    7f:18:db:32:ec:d9:18:75:8d:32:bc:86:93:ea:92:8c:
                    c7:e2:a5:24:64:83:03:89:1f:97:aa:a6:42:6b:5b:a4:
                    0d:ae:51:8a:56:b3:b0:38:0c:d6:32:b7:a1:05:53:b1:
                    75:87:0c:33:76:28:02:36:e1:0e:d8:6b:a7:60:36:26:
                    7b:d9:99:a3:b1:ed:61:a5:fd:dc:4c:33:a0:68:73:5f:
                    be:96:e0:79:c5:ca:70:29:93:51:0d:63:37:c1:c9:71
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        99:2b:25:2a:61:3a:ad:77:42:92:ec:03:db:87:48:21:
        a9:86:67:80:3e:99:dd:13:d7:aa:53:10:01:4d:7d:03:
        2b:d0:8e:03:8b:b0:b7:38:0b:24:12:74:45:90:95:99:
        b6:d6:9d:e2:2d:ba:28:8f:59:57:1b:c1:44:97:a0:d8:
        30:d3:43:38:68:97:29:40:cf:24:61:29:6c:4d:6d:24:
        fe:73:1c:34:2d:be:0d:1c:8b:f3:6c:eb:0c:d7:d0:c6:
        5c:72:ca:41:74:30:59:94:9d:95:04:59:6a:fa:65:ca:
        f4:86:72:8a:a0:59:b6:31:25:ad:e8:2a:f0:d1:57:95
    Fingerprint (SHA-256):
        A5:97:EA:1F:13:1C:89:B0:76:A6:36:A7:F2:59:9D:81:92:15:A3:49:71:D0:2F:24:D3:F0:19:7B:46:EB:38:C1
    Fingerprint (SHA1):
        56:18:A9:C1:8A:81:01:7A:FC:AA:54:68:9F:6E:7F:3C:0F:11:CA:41
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=site.example,O=Foo,ST=CA,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA 2,O=Foo,ST=CA,C=US"
Certificate 3 Subject: "CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,S
    T=California,C=US"
Returned value is 0, expected result is pass
chains.sh: #12157: TrustAnchors: Verifying certificate(s)  NameConstraints.server11.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server12.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate4.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12158: TrustAnchors: Verifying certificate(s)  NameConstraints.server12.cert NameConstraints.intermediate4.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server13.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. CN=NSS Intermediate CA3,O=BOGUS NSS,L=Mountain View,ST=California,C=US [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12159: TrustAnchors: Verifying certificate(s)  NameConstraints.server13.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server14.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate5.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate3.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 3. NameConstraints.ca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12160: TrustAnchors: Verifying certificate(s)  NameConstraints.server14.cert NameConstraints.intermediate5.cert NameConstraints.intermediate3.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server15.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8157: Certificate extension not found.
Returned value is 1, expected result is fail
chains.sh: #12161: TrustAnchors: Verifying certificate(s)  NameConstraints.server15.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server16.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 2. NameConstraints.ncca [Certificate Authority]:
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12162: TrustAnchors: Verifying certificate(s)  NameConstraints.server16.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.server17.cert /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.intermediate6.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View,
            ST=CA,C=US"
        Validity:
            Not Before: Sat Jan 04 01:22:59 2014
            Not After : Sat Nov 04 01:22:59 2023
        Subject: "CN=NSS Name Constrained Root CA,O=BOGUS NSS,L=Mountain View
            ,ST=CA,C=US"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    e2:de:c4:e3:a7:09:e3:b3:85:70:e6:da:bc:af:24:28:
                    c0:ac:99:38:ae:ea:b9:32:a5:57:9d:1c:77:06:24:c4:
                    71:69:63:73:97:44:44:35:9f:e2:37:71:8d:bd:ef:04:
                    4d:cc:a0:31:0b:fc:db:6d:58:70:c9:28:61:38:f6:ba:
                    ca:1b:ee:0e:e1:b4:99:78:95:78:73:e2:67:21:6d:a9:
                    f2:4a:29:1c:61:0a:21:0c:d1:70:0d:38:fc:95:75:85:
                    49:e0:4b:e0:1b:69:96:8d:07:f9:ae:71:f3:cf:25:34:
                    a1:d2:63:bb:d0:25:96:0f:c2:a6:7f:c2:47:3d:ed:1b
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Name Constraints
            Permitted Subtree:
                DNS name: ".example"
                    Minimum: 0 (0x0)
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        84:54:cb:5c:0a:63:14:04:d9:6f:63:d6:22:89:45:91:
        33:d6:f3:66:c4:06:cc:5f:d0:91:9c:e8:66:58:c5:89:
        3f:10:68:ec:08:66:80:05:e2:f6:25:d9:15:18:f5:8a:
        9b:71:23:af:80:79:eb:a3:94:26:d7:60:50:4c:3b:df:
        46:70:2f:d4:51:6d:b9:e2:ac:57:28:2a:c5:c4:2d:1b:
        c8:cb:8d:43:6a:4e:a8:27:9d:4b:a9:9c:07:11:d2:4e:
        5e:98:db:ec:02:e2:74:a6:80:a9:bd:fb:03:e2:77:bd:
        df:23:0c:ba:2b:be:44:e6:20:6d:4e:fa:79:41:4e:34
    Fingerprint (SHA-256):
        63:EF:E9:FE:7D:06:80:C9:BF:27:95:BB:FB:0F:A5:92:23:5E:C7:AE:BC:7D:E1:39:BC:4A:B3:E3:47:5C:01:29
    Fingerprint (SHA1):
        56:B5:8D:10:3C:0D:28:DC:F1:80:FB:2E:C4:3C:85:8B:20:02:68:CA
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=test4.example,O=BOGUS NSS,L=Mountain View,ST=Calif
    ornia,C=US"
Certificate 2 Subject: "CN=NSS Intermediate CA6,O=OtherOrg,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12163: TrustAnchors: Verifying certificate(s)  NameConstraints.server17.cert NameConstraints.intermediate6.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissblocked.cert 
Chain is bad!
PROBLEM WITH THE CERT CHAIN:
CERT 1. NameConstraints.dcisscopy [Certificate Authority]:
Email Address(es): igca@sgdn.pm.gouv.fr
  ERROR -8080: The Certifying Authority for this certificate is not permitted to issue a certificate with this name.
Returned value is 1, expected result is fail
chains.sh: #12164: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissblocked.cert with flags -d trustanchorsDB -pp       - PASSED
chains.sh: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp      
vfychain -d trustanchorsDB -pp -vv       /builddir/build/BUILD/nss-3.29.1/nss/tests/libpkix/certs/NameConstraints.dcissallowed.cert 
Chain is good!
Root Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 998899 (0xf3df3)
        Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
        Issuer: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,S
            T=France,C=FR"
        Validity:
            Not Before: Sun Feb 02 17:21:27 2014
            Not After : Fri Feb 02 17:21:27 2024
        Subject: "E=igca@sgdn.pm.gouv.fr,CN=IGC/A,OU=DCSSI,O=PM/SGDN,L=Paris,
            ST=France,C=FR"
        Subject Public Key Info:
            Public Key Algorithm: PKCS #1 RSA Encryption
            RSA Public Key:
                Modulus:
                    c0:e2:f3:2e:4e:9b:5e:f8:e5:17:d3:51:71:0f:9f:b7:
                    bb:4b:3d:e1:33:a6:f9:d1:ad:5a:31:ca:6d:ad:5b:ed:
                    19:5a:32:1d:a9:31:5b:83:ee:3b:19:83:92:b4:5c:0f:
                    1c:74:e5:f5:ef:22:a3:d8:22:a8:13:0e:18:37:26:54:
                    ab:ee:7a:d6:d5:4c:42:67:6c:81:fd:0c:46:7d:d8:d9:
                    b7:8d:b6:1c:76:13:10:06:aa:b3:18:74:2e:09:95:3a:
                    a1:a1:98:8c:ff:26:23:95:5d:87:a1:a8:6d:ea:8d:66:
                    de:ab:17:43:1c:3d:14:20:10:2f:c6:ff:c2:96:d3:ce:
                    5f:9f:0f:d4:88:1d:b5:d1:b1:f6:c0:ae:1f:0a:1c:bf:
                    b4:97:11:7f:6d:5b:a6:e3:f6:fc:db:bd:c1:3a:82:01:
                    5c:17:31:f5:28:35:fc:44:f0:2f:e3:08:f5:db:b3:10:
                    10:5e:73:7d:ef:79:9b:50:9c:f2:54:32:ea:17:59:73:
                    29:fe:d2:19:9e:d8:b7:23:b2:3e:f6:4f:e6:25:b3:f0:
                    e5:f3:19:32:ae:e8:a1:ed:33:f9:9c:bd:b8:47:49:26:
                    82:b4:92:53:66:da:41:e2:af:60:90:74:d3:07:95:6c:
                    65:79:25:15:95:9e:31:77:2e:e5:ff:ce:04:db:a9:01
                Exponent: 65537 (0x10001)
        Signed Extensions:
            Name: Certificate Type
            Data: <SSL CA,S/MIME CA,ObjectSigning CA>
            Name: Certificate Basic Constraints
            Data: Is a CA with no maximum path length.
            Name: Certificate Key Usage
            Usages: Certificate Signing
                    CRL Signing
    Signature Algorithm: PKCS #1 SHA-1 With RSA Encryption
    Signature:
        3f:c0:72:d5:d7:cb:fa:59:84:d5:df:5e:41:5d:8f:d9:
        c1:20:44:21:29:68:bd:e3:b0:d0:42:23:64:2a:82:6a:
        b2:0b:35:82:76:71:94:fe:ba:aa:ea:bc:94:81:0f:1f:
        f7:aa:81:9d:88:ea:9d:ab:4d:52:ae:fc:1e:a8:bc:43:
        2e:2d:9a:25:e8:5a:c0:53:ea:ea:e4:33:f1:fa:dc:4d:
        f0:1f:68:fa:6b:60:f3:75:a7:44:66:07:41:59:be:a3:
        a0:a1:aa:fc:39:b5:3b:b1:47:f4:9a:71:bf:ff:6e:c4:
        9b:b7:e7:8f:fc:ef:ea:98:bc:f7:07:73:8f:d8:08:04:
        82:f3:16:30:3a:a2:57:12:4b:7c:41:b6:94:96:fa:8c:
        5c:8f:64:21:21:fd:36:cb:e9:4e:98:88:7c:99:6c:4e:
        bc:1c:77:73:a3:ed:86:47:fb:e8:5c:5f:59:92:bf:d2:
        18:95:35:d6:f5:e8:7e:0e:71:3e:fa:21:1f:11:8a:a1:
        f0:f4:e7:e1:2d:c2:49:cb:c2:ab:56:b8:87:b2:1d:6d:
        b5:74:65:7e:13:cb:c8:07:f6:ee:b7:d0:cc:b8:40:db:
        9b:65:c9:c0:f5:62:90:62:61:7a:5a:c7:73:ca:e1:65:
        2a:43:6b:62:0b:10:ad:20:29:a3:4f:73:9f:a0:7a:5b
    Fingerprint (SHA-256):
        C1:CB:93:FA:F9:26:39:68:57:0E:02:E7:5A:65:20:37:9F:F4:72:57:F1:C5:A8:08:72:6A:F0:4D:59:40:D9:6C
    Fingerprint (SHA1):
        48:FA:DF:4D:92:76:B9:29:EC:A0:EC:31:53:A9:1C:B9:C0:C1:E6:55
    Mozilla-CA-Policy: false (attribute missing)
    Certificate Trust Flags:
        SSL Flags:
            Valid CA
            Trusted CA
            Trusted Client CA
        Email Flags:
            Valid CA
            Trusted CA
        Object Signing Flags:
            Valid CA
            Trusted CA
Certificate 1 Subject: "CN=foo.example.fr,O=Foo,ST=CA,C=US"
Returned value is 0, expected result is pass
chains.sh: #12165: TrustAnchors: Verifying certificate(s)  NameConstraints.dcissallowed.cert with flags -d trustanchorsDB -pp       - PASSED
trying to kill httpserv with PID 31733 at Tue May  2 16:18:18 UTC 2017
kill -USR1 31733
httpserv: normal termination
httpserv -b -p 9600 2>/dev/null;
httpserv with PID 31733 killed at Tue May  2 16:18:18 UTC 2017
TIMESTAMP chains END: Tue May  2 16:18:18 UTC 2017
Running tests for ec
TIMESTAMP ec BEGIN: Tue May  2 16:18:18 UTC 2017
Running ec tests for ecperf
TIMESTAMP ecperf BEGIN: Tue May  2 16:18:18 UTC 2017
ecperf.sh: ecperf test ===============================
./ecperf.sh: line 43: ecperf: command not found
ecperf.sh: #12166: ec(perf) test - PASSED
TIMESTAMP ecperf END: Tue May  2 16:18:18 UTC 2017
Running ec tests for ectest
TIMESTAMP ectest BEGIN: Tue May  2 16:18:18 UTC 2017
ectest.sh: freebl and pk11 ectest tests ===============================
No password file "../tests.pw" exists.
Test curve25519 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12167: ec test certutil keygen - curve25519 - PASSED
Test secp256r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12168: ec test certutil keygen - secp256r1 - PASSED
Test secp384r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12169: ec test certutil keygen - secp384r1 - PASSED
Test secp521r1 key generation using certutil ...
Generating key.  This may take a few moments...
ectest.sh: #12170: ec test certutil keygen - secp521r1 - PASSED
Test sect571r1 key generation using certutil that should fail because it's not implemented ...
Generating key.  This may take a few moments...
certutil: unable to generate key(s)
: SEC_ERROR_INVALID_KEY: The key does not support the requested operation.
ectest.sh: #12171: ec test certutil keygen - secp521r1 - PASSED
ectest.sh: #12172: pk11 ec tests - PASSED
TIMESTAMP ectest END: Tue May  2 16:18:20 UTC 2017
TIMESTAMP ec END: Tue May  2 16:18:20 UTC 2017
Running tests for gtests
TIMESTAMP gtests BEGIN: Tue May  2 16:18:20 UTC 2017
gtests: der_gtest pk11_gtest util_gtest
gtests.sh: der_gtest ===============================
executing der_gtest
[==========] Running 16 tests from 2 test cases.
[----------] Global test environment set-up.
[----------] 13 tests from DERIntegerDecodingTest
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus126
[       OK ] DERIntegerDecodingTest.DecodeLongMinus126 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130
[       OK ] DERIntegerDecodingTest.DecodeLong130 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong130Padded
[       OK ] DERIntegerDecodingTest.DecodeLong130Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong0
[       OK ] DERIntegerDecodingTest.DecodeLong0 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLong1
[       OK ] DERIntegerDecodingTest.DecodeLong1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinus1Padded
[       OK ] DERIntegerDecodingTest.DecodeLongMinus1Padded (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMax
[       OK ] DERIntegerDecodingTest.DecodeLongMax (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMin
[       OK ] DERIntegerDecodingTest.DecodeLongMin (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinPlus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMinMinus1
[       OK ] DERIntegerDecodingTest.DecodeLongMinMinus1 (0 ms)
[ RUN      ] DERIntegerDecodingTest.DecodeLongMaxPlus1
[       OK ] DERIntegerDecodingTest.DecodeLongMaxPlus1 (0 ms)
[----------] 13 tests from DERIntegerDecodingTest (0 ms total)
[----------] 3 tests from DERPrivateKeyImportTest
[ RUN      ] DERPrivateKeyImportTest.ImportPrivateRSAKey
[       OK ] DERPrivateKeyImportTest.ImportPrivateRSAKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportInvalidPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportInvalidPrivateKey (0 ms)
[ RUN      ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey
[       OK ] DERPrivateKeyImportTest.ImportZeroLengthPrivateKey (0 ms)
[----------] 3 tests from DERPrivateKeyImportTest (0 ms total)
[----------] Global test environment tear-down
[==========] 16 tests from 2 test cases ran. (0 ms total)
[  PASSED  ] 16 tests.
gtests.sh: #12173: der_gtest run successfully  - PASSED
test output dir: /builddir/build/BUILD/nss-3.29.1/tests_results/security/localhost.1/sharedb/der_gtest/report.xml
executing sed to parse the xml report
processing the parsed report
gtests.sh: #12174: 'DERIntegerDecodingTest: DecodeLongMinus126' - PASSED
gtests.sh: #12175: 'DERIntegerDecodingTest: DecodeLong130' - PASSED
gtests.sh: #12176: 'DERIntegerDecodingTest: DecodeLong130Padded' - PASSED
gtests.sh: #12177: 'DERIntegerDecodingTest: DecodeLong0' - PASSED
gtests.sh: #12178: 'DERIntegerDecodingTest: DecodeLong1' - PASSED
gtests.sh: #12179: 'DERIntegerDecodingTest: DecodeLongMinus1' - PASSED
gtests.sh: #12180: 'DERIntegerDecodingTest: DecodeLongMinus1Padded' - PASSED
gtests.sh: #12181: 'DERIntegerDecodingTest: DecodeLongMax' - PASSED
gtests.sh: #12182: 'DERIntegerDecodingTest: DecodeLongMin' - PASSED
gtests.sh: #12183: 'DERIntegerDecodingTest: DecodeLongMaxMinus1' - PASSED
gtests.sh: #12184: 'DERIntegerDecodingTest: DecodeLongMinPlus1' - PASSED
gtests.sh: #12185: 'DERIntegerDecodingTest: DecodeLongMinMinus1' - PASSED
gtests.sh: #12186: 'DERIntegerDecodingTest: DecodeLongMaxPlus1' - PASSED
gtests.sh: #12187: 'DERPrivateKeyImportTest: ImportPrivateRSAKey' - PASSED
gtests.sh: #12188: 'DERPrivateKeyImportTest: ImportInvalidPrivateKey' - PASSED
gtests.sh: #12189: 'DERPrivateKeyImportTest: ImportZeroLengthPrivateKey' - PASSED
gtests.sh: #12190: Skipping pk11_gtest (not built) - UNKNOWN
gtests.sh: #12191: Skipping util_gtest (not built) - UNKNOWN
TIMESTAMP gtests END: Tue May  2 16:18:20 UTC 2017
Running tests for ssl_gtests
TIMESTAMP ssl_gtests BEGIN: Tue May  2 16:18:20 UTC 2017
ssl_gtest.sh: SSL Gtests ===============================
ssl_gtest.sh: #12192: create ssl_gtest database  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12193: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12194: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12195: create certificate: sign kex - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12196: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12197: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12198: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12199: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12200: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12201: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12202: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12203: create certificate: ca  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12204: create certificate: sign  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12205: create certificate: kex  - PASSED
Generating key.  This may take a few moments...
		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > 		0 - Digital Signature
		1 - Non-repudiation
		2 - Key encipherment
		3 - Data encipherment
		4 - Key agreement
		5 - Cert signing key
		6 - CRL signing key
		Other to finish
 > Is this a critical extension [y/N]?
Is this a CA certificate [y/N]?
Enter the path length constraint, enter to skip [<0 for unlimited path]: > Is this a critical extension [y/N]?
ssl_gtest.sh: #12206: create certificate: sign  - PASSED
ssl_gtest.sh: #12207: Skipping ssl_gtest (not built) - UNKNOWN
TIMESTAMP ssl_gtests END: Tue May  2 16:18:26 UTC 2017
SUMMARY:
========
NSS variables:
--------------
HOST=localhost
DOMSUF=localdomain
BUILD_OPT=1
USE_X32=
USE_64=1
NSS_CYCLES=""
NSS_TESTS="libpkix cert dbtests tools fips sdr crmf smime ssl ocsp merge pkits chains ec gtests ssl_gtests"
NSS_SSL_TESTS="crl fips_normal normal_fips iopr policy"
NSS_SSL_RUN="cov auth stapling stress"
NSS_AIA_PATH=
NSS_AIA_HTTP=
NSS_AIA_OCSP=
IOPR_HOSTADDR_LIST=
PKITS_DATA=
Tests summary:
--------------
Passed:             12195
Failed:             0
Failed with core:   0
ASan failures:      0
Unknown status:     12
TinderboxPrint:Unknown: 12
+ popd
~/build/BUILD/nss-3.29.1
+ killall selfserv_9590
selfserv_9590: no process found
+ :
+ '[' x == x ']'
++ grep -c FAILED ./tests_results/security/localhost.1/output.log
+ TEST_FAILURES=0
+ GREP_EXIT_STATUS=1
okay: test suite detected no failures
test suite completed
Processing files: nss-3.29.1-2.1.module_7e01f122.aarch64
+ '[' 1 -eq 1 ']'
+ echo 'okay: test suite detected no failures'
+ echo 'test suite completed'
+ exit 0
Executing(%license): /bin/sh -e /var/tmp/rpm-tmp.Daourq
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ LICENSEDIR=/builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/licenses/nss
+ export LICENSEDIR
+ /usr/bin/mkdir -p /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/licenses/nss
+ cp -pr nss/COPYING /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64/usr/share/licenses/nss
+ exit 0
Provides: config(nss) = 3.29.1-2.1.module_7e01f122 libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.10.2)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.11.9)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.10)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.4)(64bit) libnss3.so(NSS_3.12.5)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.7)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.13.2)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.15.4)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.19)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.2.1)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.7.1)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssckbi.so()(64bit) libnssckbi.so(NSS_3.1)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.12.10)(64bit) libsmime3.so(NSS_3.12.2)(64bit) libsmime3.so(NSS_3.13)(64bit) libsmime3.so(NSS_3.15)(64bit) libsmime3.so(NSS_3.16)(64bit) libsmime3.so(NSS_3.18)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.2.1)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.4.1)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.7)(64bit) libsmime3.so(NSS_3.7.2)(64bit) libsmime3.so(NSS_3.8)(64bit) libsmime3.so(NSS_3.9)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.11.4)(64bit) libssl3.so(NSS_3.11.8)(64bit) libssl3.so(NSS_3.12.10)(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.2.1)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.21)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.23)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.28)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) nss = 3.29.1-2.1.module_7e01f122 nss(aarch-64) = 3.29.1-2.1.module_7e01f122
Requires(interp): /bin/sh /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): /bin/sh /usr/sbin/update-alternatives
Requires(postun): /bin/sh /usr/sbin/update-alternatives
Requires: ld-linux-aarch64.so.1()(64bit) ld-linux-aarch64.so.1(GLIBC_2.17)(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.17)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.1)(64bit) libnss3.so(NSS_3.11.2)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.3)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.19.1)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.21)(64bit) libnss3.so(NSS_3.22)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.3.1)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.3)(64bit) libnssutil3.so(NSSUTIL_3.12.5)(64bit) libnssutil3.so(NSSUTIL_3.13)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libnssutil3.so(NSSUTIL_3.17.1)(64bit) libnssutil3.so(NSSUTIL_3.21)(64bit) libnssutil3.so(NSSUTIL_3.24)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.17)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Conflicts: firefox < 50.1.0-3 seamonkey < 2.46-2 thunderbird < 45.6.0-5 xulrunner < 44.0-9
Processing files: nss-tools-3.29.1-2.1.module_7e01f122.aarch64
Provides: nss-tools = 3.29.1-2.1.module_7e01f122 nss-tools(aarch-64) = 3.29.1-2.1.module_7e01f122
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: ld-linux-aarch64.so.1()(64bit) ld-linux-aarch64.so.1(GLIBC_2.17)(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.17)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnss3.so()(64bit) libnss3.so(NSS_3.10)(64bit) libnss3.so(NSS_3.11)(64bit) libnss3.so(NSS_3.11.7)(64bit) libnss3.so(NSS_3.12)(64bit) libnss3.so(NSS_3.12.1)(64bit) libnss3.so(NSS_3.12.3)(64bit) libnss3.so(NSS_3.12.6)(64bit) libnss3.so(NSS_3.12.9)(64bit) libnss3.so(NSS_3.13)(64bit) libnss3.so(NSS_3.14)(64bit) libnss3.so(NSS_3.14.1)(64bit) libnss3.so(NSS_3.15)(64bit) libnss3.so(NSS_3.16.1)(64bit) libnss3.so(NSS_3.16.2)(64bit) libnss3.so(NSS_3.18)(64bit) libnss3.so(NSS_3.2)(64bit) libnss3.so(NSS_3.3)(64bit) libnss3.so(NSS_3.30)(64bit) libnss3.so(NSS_3.4)(64bit) libnss3.so(NSS_3.5)(64bit) libnss3.so(NSS_3.6)(64bit) libnss3.so(NSS_3.7)(64bit) libnss3.so(NSS_3.8)(64bit) libnss3.so(NSS_3.9)(64bit) libnss3.so(NSS_3.9.2)(64bit) libnss3.so(NSS_3.9.3)(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.12.7)(64bit) libnssutil3.so(NSSUTIL_3.15)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) libpthread.so.0(GLIBC_2.17)(64bit) libsmime3.so()(64bit) libsmime3.so(NSS_3.10)(64bit) libsmime3.so(NSS_3.2)(64bit) libsmime3.so(NSS_3.3)(64bit) libsmime3.so(NSS_3.4)(64bit) libsmime3.so(NSS_3.6)(64bit) libsmime3.so(NSS_3.9.3)(64bit) libsoftokn3.so()(64bit) libssl3.so()(64bit) libssl3.so(NSS_3.12.6)(64bit) libssl3.so(NSS_3.13.2)(64bit) libssl3.so(NSS_3.14)(64bit) libssl3.so(NSS_3.15)(64bit) libssl3.so(NSS_3.15.4)(64bit) libssl3.so(NSS_3.2)(64bit) libssl3.so(NSS_3.20)(64bit) libssl3.so(NSS_3.22)(64bit) libssl3.so(NSS_3.24)(64bit) libssl3.so(NSS_3.27)(64bit) libssl3.so(NSS_3.4)(64bit) libssl3.so(NSS_3.7.4)(64bit) libz.so.1()(64bit) rtld(GNU_HASH)
Processing files: nss-sysinit-3.29.1-2.1.module_7e01f122.aarch64
Provides: libnsssysinit.so()(64bit) nss-sysinit = 3.29.1-2.1.module_7e01f122 nss-sysinit(aarch-64) = 3.29.1-2.1.module_7e01f122 nss-system-init
Requires(interp): /bin/sh
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires(post): coreutils sed
Requires: /bin/sh ld-linux-aarch64.so.1()(64bit) ld-linux-aarch64.so.1(GLIBC_2.17)(64bit) libc.so.6()(64bit) libc.so.6(GLIBC_2.17)(64bit) libdl.so.2()(64bit) libnspr4.so()(64bit) libnssutil3.so()(64bit) libnssutil3.so(NSSUTIL_3.12)(64bit) libnssutil3.so(NSSUTIL_3.14)(64bit) libplc4.so()(64bit) libplds4.so()(64bit) libpthread.so.0()(64bit) rtld(GNU_HASH)
Processing files: nss-devel-3.29.1-2.1.module_7e01f122.aarch64
Provides: nss-devel = 3.29.1-2.1.module_7e01f122 nss-devel(aarch-64) = 3.29.1-2.1.module_7e01f122 nss-static = 3.29.1-2.1.module_7e01f122 pkgconfig(nss) = 3.29.1
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Requires: /bin/sh /usr/bin/pkg-config pkgconfig(nspr) >= 4.13.0 pkgconfig(nss-util) >= 3.29.1
Processing files: nss-pkcs11-devel-3.29.1-2.1.module_7e01f122.aarch64
Provides: nss-pkcs11-devel = 3.29.1-2.1.module_7e01f122 nss-pkcs11-devel(aarch-64) = 3.29.1-2.1.module_7e01f122 nss-pkcs11-devel-static = 3.29.1-2.1.module_7e01f122
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Processing files: nss-debuginfo-3.29.1-2.1.module_7e01f122.aarch64
Provides: nss-debuginfo = 3.29.1-2.1.module_7e01f122 nss-debuginfo(aarch-64) = 3.29.1-2.1.module_7e01f122
Requires(rpmlib): rpmlib(CompressedFileNames) <= 3.0.4-1 rpmlib(FileDigests) <= 4.6.0-1 rpmlib(PayloadFilesHavePrefix) <= 4.0-1
Checking for unpackaged file(s): /usr/lib/rpm/check-files /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64
Wrote: /builddir/build/RPMS/nss-3.29.1-2.1.module_7e01f122.aarch64.rpm
Wrote: /builddir/build/RPMS/nss-tools-3.29.1-2.1.module_7e01f122.aarch64.rpm
Wrote: /builddir/build/RPMS/nss-sysinit-3.29.1-2.1.module_7e01f122.aarch64.rpm
Wrote: /builddir/build/RPMS/nss-devel-3.29.1-2.1.module_7e01f122.aarch64.rpm
Wrote: /builddir/build/RPMS/nss-pkcs11-devel-3.29.1-2.1.module_7e01f122.aarch64.rpm
Wrote: /builddir/build/RPMS/nss-debuginfo-3.29.1-2.1.module_7e01f122.aarch64.rpm
Executing(%clean): /bin/sh -e /var/tmp/rpm-tmp.mRrER0
+ umask 022
+ cd /builddir/build/BUILD
+ cd nss-3.29.1
+ /usr/bin/rm -rf /builddir/build/BUILDROOT/nss-3.29.1-2.1.module_7e01f122.aarch64
+ exit 0
Child return code was: 0